Manager - Penetration Testing - Technology - Melbourne, Australia - EY
Description
_If we inspire you to do the work you love, will you still call it work?_
At EY we believe that whoever you are, your uniqueness helps us stand apart.
We bring together extraordinary people, like you, to build a better working world.
What's in it for you?
Our EY Advanced Security Centre (ASC) is a well-established, dedicated and vibrant team that was created to help our clients protect the confidentiality, integrity, and availability of their information.
We strive to be the market leaders in security testing services, ready to tackle any challenge that comes our way.
- Our
Advanced Security Centre Managers help lead the Offensive Security practice, building exceptional careers for our team and solving our clients' biggest challenges. - Work with Tier1 clients within Financial Services clients
- Ongoing support and training that will set you up for sucesss in EY
Please note:
The location of this role is Melbourne, Sydney or Brisbane.
The ASC Team provides the following services to our clients:
- Web, Web services, mobile and thick client penetration testing
- Internal/External network penetration testing
- Red Team/Purple Team assessments
- Social Engineering assessments
- Application Security consulting and secure code review
- Wireless assessments
- Vulnerability assessments
- Security configuration reviews
As an Advanced Security Centre Manager you are:
- Aspiring to be part of the management team for one of Australia's largest penetration testing teams.
- Passionate about working with and building careers for the next generation of Offensive Security professionals.
- Able to translate technical speak to nontechnical stakeholders
- Can demonstrate a high level of oral and written communication skill
- Seeking to build and take your technical Offensive Security career to the next level.
- Excited to work with some of Asia Pacific's biggest clients.
- Looking to work with a management team that has been consistently working together for more than 8 years.
- Able to adapt to multiple different workflows with different clients.
What you'll do
- Leading, coaching and developing our people. You will be responsible for growing their careers and driving our inclusivity and diversity values across the team.
- Managing projects from multiple clients, responsibilities include, but not limited to:
- Scoping the project and assigning time
- Preparing and ensuring the projects start executing on time
- Be an escalation point to help testers for any project related issues
- Perform peer review of project completion reports
- Attend close out meetings to answer technical questions clients may have
- Work on and understand the underlying financials related to project work
- Be point of contact with clients for anything project or nonproject related
What we're looking for
Here is our 'wish list' but don't worry if you don't tick all the boxes. We're interested in your passion, strengths, what you want to learn, and how far you want to go.
- Experience in managing and leading project teams of consultants assisting and advising clients with cyber security, information security and/or privacy challenges.
- A track record of delivering quality outcomes for your clients
- An understanding of managing teams and projects to budget and deadlines
- Good technical knowledge, experience, and skills (offensive security)
Ideally, you'll also have
- Experience managing a penetration testing team (preferably a large team).
- Experience managing client stakeholders and expectations.
- A methodical approach to attack and penetration testing (above running automated tools)
- Demonstrable proficiency of at least 2 following security assessment methodologies:
- Web, Web services, mobile and thick client penetration testing
- Internal/External network penetration testing
- Application Security consulting and secure code review
- Wireless assessments
- Social engineering/red team assessments
- Demonstrable technical understanding of at least 2 of following domains:
- Common web technologies and frameworks
- Application architecture
- Cloud computing
- Networking and Network protocols
- DevOps methodology and pipelines
- Administration experience in any of the following:
- Windows Active Directory Administration
- Linux/Unix Administration
- Database Administration
- Knowledge of one or more scripting/programming languages (e.g. Python, Ruby, PHP, Java.
- Systems security skills in assessment, design, architecture, management, and reporting
- At least 6 years of management experience in penetration testing activities
- Relevant (or be willing to pursue) professional certifications such as OSCP, CRTP, SANS, CREST, CISSP etc.
What we can offer youAcknowledgement of Country**
The exceptional EY experience. It's yours to build.
- The minimum sala
More jobs from EY
-
Expressions of Interest
Melbourne, Australia - 6 days ago
-
People Advisory Services
Canberra, Australia - 1 week ago
-
Market Research Face to Face Interviewer
Melbourne, Australia - 1 week ago
-
Manager - Intelligent Automation - Canberra
Canberra, Australia - 1 week ago
-
Manager, Infrastructure Advisory, Strategy
Adelaide CBD, Australia - 1 week ago
-
Insurance Insights Analyst
Sydney, Australia - 1 day ago