Senior Cybersecurity Penetration Tester - WAM

Overview Join EY as a Senior Cybersecurity Penetration Tester, where you'll be part of a dynamic team of experts focused on enhancing cybersecurity measures for clients across various industries. This role allows you the flexibility to work from anywhere in the country while accessing advanced security tools to effectively combat cyber threats. Responsibilities Conduct detailed penetration testing on web applications, APIs, and thick clients to identify vulnerabilities. Lead penetration testing projects, providing technical guidance and mentorship to junior team members. Detect and exploit security weaknesses across diverse systems. Analyze and document penetration testing results, offering insights into findings, exploitation techniques, risks, and actionable recommendations. Execute engagements using established methodologies and frameworks effectively. Communicate complex security concepts clearly to both technical and non-technical stakeholders, including executives. What You'll Do as a Penetration Tester Identify and simulate potential threats and vulnerabilities in operational environments to discover weaknesses. Work collaboratively with colleagues to plan, manage, and deliver engagements that enhance client security, often in integrated security operations. Qualifications To Qualify for the Role, You Must Have A bachelor's degree and a minimum of 5 years of relevant experience in cybersecurity. Practical experience in manual penetration testing and attack simulations. Strong scripting or programming skills (e.g., Bash, Python, PowerShell, Java, JavaScript). Current knowledge of the latest security exploits and trends. Two of the following industry certifications: OSCP, OSWP, OSEP, OSCE, OSEE, GPEN, GWAPT, GMOB, GCPN, GXPN, GRTP, GDAT, CRTO, CRTP, CRTE, CREST CRT, CCSAS, CWEE, Burp Suite Certified Practitioner, CBBH, eWPTx, OSWA, eWPT, eMAPT. Ideally, you'll also have A bachelor's degree in Computer Science, Cybersecurity, Information Systems, IT, Engineering, or a related field, with 3+ years of relevant experience in penetration testing (or a master's with 2+ years). Contributions to the security community, such as research, CVEs, bug bounties, open-source projects, or publications. A solid understanding of web vulnerabilities (OWASP Top 10). Excellent analytical and problem-solving skills. Strong written and verbal communication skills. The ability to collaborate effectively within a team environment. What We Look For We seek intellectually curious individuals who are passionate about cybersecurity. If you have the confidence in your technical skills and a desire to become a leading expert, this opportunity is perfect for you. What We Offer You Competitive salary and benefits package; total rewards vary by location, including comprehensive medical/dental coverage, pension/401(k), and paid time off. Hybrid working model, with an expectation to be on-site 40-60% of the time for client engagements. A flexible vacation policy and paid holidays, with consideration for personal and family needs. Ready to take your career to the next level? Apply today. EY invites applications continuously. For more information for California residents, please refer to our accommodations page. As an equal opportunity employer, EY celebrates diversity. We do not discriminate based on race, color, religion, sex, sexual orientation, gender identity/expression, pregnancy, national origin, protected veteran status, disability status, or any other legally protected status.

Created: 2026-03-04