Penetration Tester

Job Description & Summary

The Opportunity

A career in Information Technology, within Internal Firm Services, will provide you with the opportunity to support our core business functions by deploying applications that enable our people to work more efficiently and deliver the highest levels of service to our clients. You’ll focus on managing the design and implementation of technology infrastructure within PwC, developing and enhancing both client and internal facing applications within PwC, and providing technology tools that help create a competitive advantage for the Firm to drive strategic business growth.

Our Information Technology Development team helps develop and supports internal information technology systems and applications for use by all staff levels. You’ll help our team develop programmes and applications that cater to PwC’s strategic technology needs using your knowledge of technical domains of application.

What you will be doing:

• Proactively assisting management in the scoping, planning and execution of assessments;

• Performing penetration testing assessments;

• Executing tasks aligned to the Pentest Team with autonomy;

• Presenting technical findings with a focus on business impact to management;

• Contributing to the development of a team’s technical acumen;

• Establishing thought leadership at the Network Information Security (NIS) and firm-wide level in a particular knowledge area;

• Demonstrating cultural dexterity and modifying behavior to the environment/culture;

• Collaborating with multiple stakeholders across functional and technical skill sets;

• Assisting in collaborating with Information Technology (IT) and NIS to align information security policies and standards, evaluations, and technological tools;

• Demonstrating appropriate judgment prior to escalating to management;

• Fostering healthy work relationships by demonstrating appropriate conflict-resolution skills.

What we need from you:

• Bachelor Degree;

• Minimum 2 Years of similar experience;

• Demonstrating experience performing penetration testing assessments;

• Demonstrating experience with common pentesting tools such as Rubeus, Mimikatz, Impacket, Certify, ForgeCert, ROADTools, ADOKit, and Burp Pro;

• Demonstrating proficiency in understanding programing or scripting languages (C/C++, C#, Python, Go, PowerShell);

• Demonstrating knowledge of Active Directory concepts;

• Demonstrating knowledge of Cloud infrastructure concepts in one of the following platforms: Azure, AWS, GCP;

• Demonstrating knowledge of Windows architecture and internals;

• Demonstrating high level understanding of the principles of information security engineering, architecture, and application security; and,

• Demonstrating prior system administration, incident response, Security Operations Center (SOC) or network engineering experience preferred.

#LI-Remote