Enterprise Cybersecurity Professional

Job Title: Cybersecurity Specialist

The role of a Cybersecurity Specialist is crucial in today's digital age. As an experienced professional, you will be responsible for identifying and mitigating potential security threats to our organization's systems and data.

• ">
• Perform penetration tests on various platforms and technologies to identify security weaknesses and misconfigurations.">
• Conduct social engineering assessments to simulate the theft of passwords, infiltrate systems, and download malware/ransomware to assess security awareness and physical security controls.">
• Review source code to identify software vulnerabilities and detect malware or malicious embedded code.">
• Assess cloud, server, network, and middleware security configurations.">
• Analyze architecture reviews for cloud and on-premises IT environments.">
• Perform attack simulation exercises/threat-led penetration tests using well-known Tactics, Techniques, and Procedures (TTPs) that cyber threat actors use to plan and execute cyber-attacks on business networks.">
• Collaborate with a team of cybersecurity specialists to maintain, develop, and update security testing methodologies.">
• Prepare reports and present on vulnerabilities and exploitation techniques to client stakeholders.">
• Coach and develop team members through sharing of experience and knowledge.">
• Develop constructive client relationships, both inside and outside the organization.">

To be successful in this role, you should have:

• ">
• A BSc degree in Computer Science, Cyber Security, Information Technology, or a related field.">
• A MSc degree in Information Security, Cyber Security, or a related field will be considered an advantage.">
• At least 2-3 years of experience in a relevant role.">
• At least one professional qualification required: eJPT, eCPPTv2, eCPTXv2, eWPTXv2, OSCP, CRTP, or other relevant qualification.">
• Working experience preferred related to the execution of penetration testing of web and mobile applications, internal and external infrastructure, execution of social engineering assessments, and/or red/purple team exercises.">
• Experience with penetration testing suites and tools (e.g., Kali Linux, Metasploit, Burp Suite, etc.).">
• Experience with offensive security (red teaming) tooling such as Cobalt Strike, Empire, Havoc, Mythic, etc., will be considered an advantage.">
• Experience with at least one scripting language (e.g., Bash, PowerShell) and/or programming language (e.g., Python, C, C#, C++, Java, etc.).">
• Able to understand basic networking concepts and Internet protocols (e.g., routing, TCP/IP, HTTP(S), SMTP, DNS, SSL/TLS, etc.).">
• Understanding of industry-recognized security testing standards, penetration testing methodology, and attack simulation tools.">
• Strong knowledge base in enterprise technologies and operations, enterprise networking, internet application security, database security evaluation, and architecture, with self-motivated learning ability.">
• Be able to conduct research and development and solve technical problems independently.">
• Be able to work as part of a multidisciplinary team.">

Ideally, you should also have:

• ">
• Experience in client service delivery and be able to manage multiple engagement teams and projects.">
• Be a team player with good communication and interpersonal skills.">
• Creative, independent with good problem-solving skills.">
• Proactive, dedicated, innovative, resourceful, strong analytical, and able to work under pressure.">
• Excellent written and verbal communication skills in English, with the ability to present ideas and results to technical and non-technical audiences.">

What We Offer:

We offer an attractive remuneration package for rewarding both personal and team performance. We are committed to being an inclusive employer and are happy to consider flexible working arrangements.

• ">
• 13th salary and yearly bonus.">
• Provident Fund.">
• Private Medical and Life Insurance.">
• Flexible working arrangements (hybrid work and flexible work schedule).">
• Friday afternoon off.">
• EY Tech MBA and EY MSc in Business Analytics.">
• EY Badges - digital learning certificates.">
• Mobility programs (if interested to work abroad).">
• Paid Sick Leave.">
• Paid Paternity Leave.">
• Yearly wellbeing days off.">
• Maternity, Wedding, and New Baby Gifts.">
• EY Employee Assistance Program (EAP) (counselling, legal, and financial consultation services).">

About Us:

We exist to build a better working world, helping to create long-term value for clients, people, and society, and build trust in the capital markets.

Enabled by data and technology, diverse teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate.

Working across assurance, consulting, law, strategy, tax, and transactions, teams ask better questions to find new answers for the complex issues facing our world today.