Ogólne informacje

Stanowisko
Red Team Operator (Senior Penetration Tester)
Wymiar czasu pracy
Pełny wymiar czasu pracy
Miasto
Budapeszt
Kraj
Węgry
Dział
Risk Advisory
Zespół
Cyber
Obszar zainteresowania
Cyber, IT - Services
Tryb pracy
Hybrydowy

Opis i wymagania

Who we are looking for
  • Minimum 2 years of professional experience in Red Team exercises
  • OSCP, CRTO, CRTP exam and other certifications obtained in penetration testing are an advantage, or more than 3 years’ focused experience in penetration testing
  • Experience with multiple programming and scripting languages (e.g., C/C++, Rust, Go, Dart, Nim and PowerShell, Python, Bash, etc.)
  • Advanced knowledge of networking concepts such as routing, switching, and Transport Layer protocols i.e., TCP/IP suite.
  • Familiar with common application layer protocols, HTTP/S, DNS, Kerberos, LDAP, etc.
  • Familiar with Active Directory and related authentication/authorization technologies.
  • Successful team members must be capable of evaluating environments, applications, systems, or processes to discover weaknesses, and subsequently leverage those discoveries into actionable real-world attack strategies.
  • Be a quick and independent learner
  • Self-dependent and creative problem solver
  • Attentiveness to detail, precision
  • Fluency in written and spoken English
  • Professional attitude
Advantages:
  • OSCP, CRTO, CRTP and other penetration testing focused certificates
  • Good command of multiple programming and scripting languages and assembly
  • Experience in system administration (Linux, Windows) or network device administration
  • Experience in Cloud environments (e.g., Amazon AWS, Microsoft Azure, Google Cloud, Alibaba Cloud)
  • Excellent communicator in English - both in technical writing and face-to-face presentations
  • German language skills 
Your future role
  • Continuously sharing knowledge and experience with junior team members
  • Continuously learn new and emerging technologies, develop tools and methodologies to assess the security of these technologies
  • Develop internal implants and artifacts for delivering payloads
  • Test and research techniques in our threat hunting lab
  • Be the technical lead of penetration testing projects
  • Participate in penetration testing and red teaming projects
  • Create testing plans for complex environments and participate in testing them
  • The red team operational tasks can be, but are not limited to:
    •  Toolset development
    •  Development of custom implants and C2 framework
    •  Red Teaming infrastructure development and implementation 
    •  Develop and maintain red teaming methodology
    •  Purple Teaming
    •  Design and planning of social engineering campaigns (e.g., Phishing)
    •  Infrastructure-level penetration testing
  • Writing and reviewing reports/presentations about the testing results and presenting and explaining them to clients at a deep technical level
What we offer
  • Opportunity to join a team of IT 50+ security experts with deep and diversified technical background
  • Opportunity to specialize in specific areas where we are committed to support the learning process and obtaining international certificates
  • Hybrid way of working
  • Challenging International environment where personal development and growth are encouraged
  • Unique opportunity to get a deep understanding of the technologies used by industry leading companies
  • Unique opportunity for a career and promotions
  • Attractive and competitive salary, including wide range of fringe benefits
About Deloitte
Deloitte is one of the world’s largest professional services organizations, offering a wide range of Consulting, Tax, Audit, and Financial Advisory Services. Deloitte is also one of the largest global service providers for Cyber Risk Services, which has achieved significant uninterrupted market growth over the past years. As we are continuously planning to expand the Cyber Services, we are looking for colleagues.
About the team
Deloitte Cyber Risk Services team has 50+ professionals working on application penetration testing, automotive security, hardware hacking and Red Teaming project for global brands all around the world.
Spend your weekdays in a highly secured cyber security lab, where it is no surprise if a car enters for security testing.
If your happy place contains high-end IT infrastructure and the latest security testing tools, this working environment might fit you just perfectly.