Senior Advisor / Penetration Tester in Cybersecurity Services

 

General

 

At EY we always aim to support our people in achieving their potential, both personally and professionally. We offer demanding but also rewarding experiences that will keep you motivated, as you work and team with some of the world’s most successful companies in their field. And as we encourage you to take personal responsibility for your career, we also support you in your professional development. Working in EY means that you enjoy the flexibility of devoting time to what matters to you. At EY you can be who you are and express your point of view, while working with integrity, energy and enthusiasm, wherever you are in the world. It’s how you make a difference.

 

Job purpose

 

We are currently seeking highly motivated people to join our Advisory services and more specifically the Cybersecurity service, which is a leading provider to clients of all major industries.

Working in a multi-national environment, the Cybersecurity team assists clients in identifying, assessing and addressing emerging cyber risks. We work closely with clients in order to manage challenging engagements and lead teams of cybersecurity resources covering all aspects around the design and provision of cybersecurity solutions in areas such as Attack and penetration testing, Red teaming, Cyber war games, Vulnerability identification and source code reviews, Security analytics, Cyber threat intelligence and Incident Response.

You will be given the opportunity to work and take responsibilities on challenging projects by gaining exposure to various sectors, both within Greece and abroad. Bringing experience and unique insight on one or more areas, you will use your knowledge to provide services covering a spectrum of activities. As part of our team you will be expected to take on responsibility and initiative early, providing you with real experience working with a wide range of major clients in Greece and abroad. You will be taking responsibility for the quality of your work, while continually developing your personal and professional skills through formal training, hands-on experience and coaching.

If you are interested in being part of a dynamic, highly growing team, serving clients and reaching your full potential, EY is the place for you.

Skills & Requirements

  • A Master’s Degree, or equivalent, in Information Security, Cyber Security, Information Technology, Informatics, or other similar and technical areas. A  Ph.D. degree will be considered an asset
  • Relevant working experience of 3 – 7 years
  • Excellent business writing and verbal communication skills, presentation, and technical writing skills both in Greek and English.
  • Ability to translate technical issues into business risks and describe them both in writing and verbally.
  • Analytical and problem solving skills.
  • Willingness to research client inquiries and emerging issues, including regulations, industry practices, and new technologies.
  • Ability to travel and work abroad for international projects.

Specifically, the candidate should demonstrate knowledge and/or experience in one or more of the following:

  • Experience with internal and external infrastructure penetration tests
  • Experience with web and mobile application penetration tests
  • Experience in delivering sophisticated social engineering and phishing campaigns
  • Experience in secure code review and source code auditing
  • Experience in research in technical information security areas
  • Extensive knowledge in operating systems security, web security, networks or programming
  • Managing complex engagements in relation to technical aspect of cybersecurity.
  • Understand technical implementations in order to identify and assess security risks and recommend mitigating actions.
  • Strong understanding of common security compliance frameworks such as SANS Critical Security Controls, NIST SP, OWASP Top 10, etc.
  • Experience with scripting, malware analysis, incident response, systems hardening or other technical information security area will be considered an asset.

In addition, any related professional qualification will be considered a strong asset (e.g. OSCP, OSCE, OSWP, OSEE, GSEC, GPEN, GCIH, GWAPT, GXPEN, GCED, GPPA, GISF, CEH, CISSP, CISM, etc.)

Why should I work for EY Cybersecurity Services?

Information technology is one of the key enablers for modern organizations. As one of our Cybersecurity professionals, you will work with clients to improve their Cybersecurity posture by enhancing efficiency and effectiveness. You can expect to work on some of the biggest advisory engagements in Greece and globally and we will give you the opportunities and support you need to succeed professionally and personally.

 

Please sent your cv at Fani.Theochari@gr.ey.com