At EY, we're all in to shape your future with confidence.
We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go.
Join EY and help to build a better working world.
EY's people in more than 150 countries are committed to operating with integrity, quality and professionalism in the provision of audit, tax, transaction and advisory services. We strive to help all our people achieve their professional and personal goals through an inclusive environment that values everyone's contributions, appreciates diversity of thought, fosters growth, and provides continuous opportunities for development. Recognized as one of Canada's top employers, EY continually strives to be a great place to work.
The Opportunity
With rapidly changing cybersecurity threats, clients from all industries look to us for trusted solutions for their increasingly complex risks. EY's Offensive Security team is a highly skilled technical team dedicated to replicating the tactic, techniques and procedures used by new and emerging threat actors while utilizing them to provide quality insights to client engagements. The team places a strong emphasis on continuous learning and personal growth for each member in an ever-evolving industry.
We are actively seeking an experienced/advanced Senior Penetration Tester to join our Offensive Security team. You'll work and collaborate with a highly skilled technical team of likeminded individuals dedicated to performing offensive security operations, ranging from infrastructure penetration testing, web application security assessments, and full-scope red team assessments with a focus on covertly obtaining and maintaining access to enterprise networks. As a member, you'll develop, deliver, and lead cybersecurity client engagements as well as internal development projects.
Your Key Responsibilities
As an experienced Senior Penetration Tester your primary focus with be performing offensive security engagements including, but not limited to, penetration testing (Infrastructure and Application), Red Team assessments, Social Engineering assessments, and Adversary Simulation. The focus of these assessment will be to emulate various real-world threats and threat actors attempting to gain access to enterprise networks and achieve a set of defined objectives, such as obtaining domain admin privileges, gaining access to sensitive information, or simulating a ransomware attack. You will be responsible for remaining up to date on current threat intelligence and threat actor groups, along with their techniques/tools, to replicate during client engagements.
Additional responsibilities include identifying and exploiting vulnerabilities in enterprise networks, application, and cloud environments using both off-the-shelf and in-house built tools, including both automated and manual approaches. Development of custom exploits to bypass security measure in place or exploit vulnerabilities where proof-of-concept/public exploits may not be available. Development of detailed reports and presentations for variously clients across many industries for both executive and technical audiences.
Client Responsibilities
MNCJobz.com will not be responsible for any payment made to a third-party. All Terms of Use are applicable.