Penetration Tester / Ethical Hacker – Visa Support Provided

About the Company

Deloitte is a leading global provider of audit and assurance, consulting, financial advisory, risk advisory, tax, and related services. With a network of member firms in more than 150 countries and territories, Deloitte serves four out of five Fortune Global 500® companies. In the UK, Deloitte operates from numerous locations, including a strong presence in Bristol, delivering world-class professional services and innovative solutions to a diverse client base. Our cybersecurity practice is at the forefront of protecting businesses from evolving threats, offering strategic advice and hands-on technical expertise.

Job Description

We are seeking a talented and motivated Penetration Tester / Ethical Hacker to join our dynamic cybersecurity team in Bristol. This role offers an exciting opportunity to contribute to the security posture of our clients across various industries, identifying vulnerabilities before malicious actors can exploit them. You will be an integral part of a team dedicated to delivering high-quality penetration testing services, ranging from web application and network assessments to mobile and cloud security reviews. We are committed to supporting global talent and are pleased to offer visa sponsorship for eligible candidates who wish to relocate to the UK and build a career with Deloitte.

Key Responsibilities

• Execute comprehensive penetration tests against a variety of systems, including web applications, APIs, networks, mobile applications, and cloud environments.
• Identify, exploit, and document security vulnerabilities using industry-standard tools and methodologies.
• Develop clear, concise, and actionable reports detailing findings, risk assessments, and remediation recommendations for both technical and non-technical audiences.
• Collaborate with clients to understand their security objectives and provide expert advice on improving their security posture.
• Stay current with the latest cybersecurity threats, vulnerabilities, and exploitation techniques.
• Participate in the development and enhancement of penetration testing methodologies, tools, and best practices.
• Mentor junior team members and contribute to the growth of the cybersecurity practice.

Required Skills

• Proven experience in conducting penetration tests for web applications, networks, and infrastructure.
• Strong understanding of common security vulnerabilities (e.g., OWASP Top 10, SANS Top 25).
• Proficiency with penetration testing tools such as Burp Suite, Nmap, Metasploit, Nessus, Wireshark, Kali Linux.
• Solid knowledge of networking protocols (TCP/IP, HTTP/S, DNS, etc.) and operating systems (Windows, Linux).
• Familiarity with scripting languages (e.g., Python, PowerShell, Bash) for automation and exploit development.
• Excellent report writing and presentation skills, with the ability to communicate complex technical issues clearly.
• Demonstrated ability to work effectively both independently and as part of a team.

Preferred Qualifications

• Relevant industry certifications such as OSCP (Offensive Security Certified Professional), OSWE, CREST, CEH (Certified Ethical Hacker), or equivalent.
• Experience with cloud security assessments (AWS, Azure, GCP).
• Knowledge of secure coding principles and development practices.
• Experience in a client-facing consulting role.
• Familiarity with compliance frameworks (e.g., GDPR, ISO 27001, PCI DSS).

Perks & Benefits

• Competitive salary and performance-based bonuses.
• Comprehensive health and wellness benefits package.
• Generous pension scheme.
• Visa sponsorship and relocation support for eligible international candidates.
• Extensive professional development and training opportunities, including support for certifications.
• Flexible working options and a hybrid work model.
• 25 days annual leave plus public holidays, with options to buy additional days.
• Cycle to work scheme, life assurance, and various employee discounts.

Apply Now