Senior Offensive Security Consultant

At EY, we're dedicated to empowering you to shape your career with confidence. Join a dynamic environment where your professional path is your own, and together, we can build a better working world. The Opportunity As a Senior Consultant in Offensive Security, you will play a crucial role in enhancing our clients' security stance through rigorous threat assessments and proactive vulnerability management. You'll lead a talented team of cybersecurity experts in executing offensive security strategies while integrating essential security measures across the software development lifecycle. In this role, you will manage and conduct penetration testing, red teaming, and comprehensive security evaluations for diverse clients. Collaborate across teams to identify vulnerabilities, formulate mitigation plans, and ensure compliance with industry standards. Your expertise will be pivotal in automating security processes, helping our clients cultivate a secure working ambiance. Your Key Responsibilities Lead, scope, and execute a variety of penetration testing assignments, including assessments of web applications (black box, white box, and gray box), network systems, cloud environments, hardware, and firmware. Design and implement red and purple team exercises to uncover security weaknesses in organizations and provide actionable advice. Perform comprehensive analyses of penetration testing findings, generating detailed reports that outline discoveries, exploitation techniques, associated risks, and recommended actions. Stay informed about emerging security threats, vulnerabilities, and industry best practices, promoting a culture of continuous learning within the team. Assist in setting up and maintaining penetration testing tools and the related infrastructure to ensure optimal performance and security. Contribute to developing and updating operational metrics for client discussions, providing insights into tool effectiveness and security assessments. Skills and Attributes for Success Minimum of 5 years of experience in penetration testing and offensive security methodologies. Strong understanding of automation solutions and processes in offensive security and application security. Exceptional problem-solving abilities and a knack for managing multiple security projects concurrently. Effective communication skills to engage clients and internal stakeholders, translating complex technical concepts into easily understandable terms. To qualify for the role, you must have: A Bachelor's degree in computer science, Information Technology, Cybersecurity, or a related field. A decade of experience in conducting penetration tests or five years in an electric utility (generation, or transmission & distribution) performing penetration tests. Proven track record of manual attack and penetration testing for web applications, networks, and cloud environments. Proficiency in scripting languages (e.g., Python, Bash, PowerShell) for automation of security tasks. Solid understanding of major operating systems including Windows, Linux, and Unix. Ideally, you would also have: Certifications such as CCSP, CSSLP, OSCP, OSWP, GPEN, GWAPT, OSCE, OSEE, GXPN, CISSP, or CISM. Contributions to the security community through research, public CVE disclosures, bug bounty recognitions, or open-source project engagement. Strong analytical skills for interpreting complex data and conveying it effectively. An interest in keeping up with the latest cybersecurity threats and trends, championing continual learning and adaptation. What We Look For We are seeking exceptional performers who are passionate about cybersecurity principles, equipped with relevant experience and certifications. A proactive approach, the ability to nurture high-performance teams, adaptability to evolving threats, and a commitment to ongoing education are key attributes we value. We seek motivated individuals dedicated to guarding digital assets and fostering a culture of security awareness. What We Offer Continuous learning: Build the skills needed to navigate your future confidently. Success as defined by you: Resources and flexibility to make a meaningful impact in your own way. Transformative leadership: Guidance, coaching, and confidence to excel as part of high-performing teams. Diverse and inclusive culture: An environment that values your uniqueness and encourages the expression of diverse perspectives. Join us and enhance your future with confidence. Apply today!

Created: 2026-03-04