Ethical Hacker

About the Company

Deloitte is a leading global provider of audit and assurance, consulting, financial advisory, risk advisory, tax and related services. With a globally connected network of member firms in more than 150 countries and territories, Deloitte brings world-class capabilities and high-quality service to clients, delivering the insights they need to address their most complex business challenges. Our commitment to cybersecurity helps clients build resilience and protect their critical assets.

Job Description

We are seeking a talented and passionate Ethical Hacker to join our dynamic cybersecurity team in Glasgow. In this hybrid role, you will be instrumental in identifying vulnerabilities, conducting penetration tests, and simulating cyberattacks to strengthen our clients’ defenses. You will work with cutting-edge tools and methodologies to uncover potential weaknesses before malicious actors can exploit them, providing critical insights and recommendations to enhance security postures.

Key Responsibilities

• Conduct comprehensive penetration tests on web applications, mobile applications, network infrastructure, and cloud environments.
• Perform vulnerability assessments and provide detailed reports on findings, including severity and potential impact.
• Develop and execute exploit code to demonstrate the impact of identified vulnerabilities.
• Collaborate with development and operations teams to recommend effective remediation strategies.
• Stay up-to-date with the latest security threats, vulnerabilities, and exploitation techniques.
• Contribute to the continuous improvement of our security testing methodologies and tools.
• Provide expert advice and guidance on security best practices to clients and internal teams.
• Document all testing procedures, findings, and recommendations in clear and concise reports.

Required Skills

• Proven experience with penetration testing tools such as Burp Suite, Nmap, Metasploit, Wireshark, Nessus, Acunetix, etc.
• Strong understanding of network protocols, operating systems (Windows, Linux), and web technologies.
• Proficiency in at least one scripting language (e.g., Python, Ruby, PowerShell, Bash).
• Familiarity with common web application vulnerabilities (OWASP Top 10) and remediation techniques.
• Knowledge of various attack vectors and mitigation strategies.
• Excellent problem-solving skills and attention to detail.
• Strong written and verbal communication skills to articulate complex security issues to technical and non-technical audiences.

Preferred Qualifications

• Relevant cybersecurity certifications (e.g., OSCP, OSWE, CEH, GWAPT, GPEN).
• Experience with cloud security testing (AWS, Azure, GCP).
• Familiarity with security frameworks and standards (e.g., ISO 27001, NIST).
• Experience in a consulting environment.
• Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field.

Perks & Benefits

• Competitive salary and performance-based bonuses.
• Comprehensive health, dental, and vision insurance.
• Generous paid time off and public holidays.
• Flexible working options, including hybrid work model.
• Company-sponsored pension scheme.
• Extensive professional development and training opportunities, including certifications.
• Employee assistance program and wellness initiatives.
• Access to cutting-edge tools and technologies.
• Vibrant and collaborative work environment in central Glasgow.

Apply Now