Apply on Employer Site

EY · 17 hours ago

Cyber SDC - WAM Penetration Tester - Senior - Location OPEN

Raleigh, NC

Full-time

Hybrid

Mid, Senior Level

$72K/yr - $141K/yr

5+ years exp

EY is a global leading service provider in cybersecurity, seeking a Penetration Tester to lead the implementation of security solutions for clients. The role involves identifying threats and vulnerabilities, conducting penetration testing, and providing technical leadership to junior team members.

AccountingAdviceBusiness IntelligenceConsultingFinancial ServicesProfessional Services

Growth Opportunities

H1B Sponsor Likely

Responsibilities

Perform penetration testing which includes, web application, API, and Thick client penetration testing

Ability to work both independently as well as lead a team of technical testers on penetration testing and red team engagements

Provide technical leadership and advise junior team members on attack and penetration test engagements

Identify and exploit security vulnerabilities in a wide array of systems in a variety of situations

Perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations

Execute penetration testing projects using the established methodology, tools and rules of engagements

Convey complex technical security concepts to technical and non-technical audiences including executives

Qualification

Penetration TestingManual Attack TestingScripting SkillsSecurity Vulnerabilities AnalysisCybersecurity CertificationsWeb Application VulnerabilitiesAnalytical SkillsCommunication SkillsTeam Collaboration

Required

A bachelor's degree and at least 5+ years of related work experience

Experience with manual attack and penetration testing

Experience with scripting / programming skills (eg, Bash, Python, PowerShell, Java, Perl, Rust, Golang, J2EE, .NET, JavaScript, etc)

Updated and familiarized with the latest exploits and security trends

Any two of the following certifications: OSCP, OSWP, OSEP, OSCE, OSEE, GPEN, GWAPT, GMOB, GCPN, GXPN, GRTP, GDAT, CRTO, CRTP, CRTE, CREST CRT, CCSAS, CWEE, Burp Suite Certified Practitioner, CBBH, eWPTX, OSWA, eWPT, eMAPT

Preferred

A bachelor's degree in Computer Science, Cybersecurity, Information Systems, Information Technology, Engineering, or a related field with at least 3+ years of related work experience or a master's degree and at least 2+ years of related work experience in penetration testing which includes internet, intranet, web application penetration tests, wireless, social engineering, and red team assessments

Contributions to the security community, including research, public CVE disclosures, bug bounty acknowledgments, open-source project involvement, blog posts, publications, and similar activities

An understanding of web-based application vulnerabilities (OWASP Top 10)

Strong analytical and problem-solving abilities

Excellent communication skills, both written and verbal

Ability to work collaboratively in a team environment

Benefits

Medical and dental coverage

Pension and 401(k) plans

Wide range of paid time off options

Flexible vacation policy

Designated EY Paid Holidays

Winter/Summer breaks

Personal/Family Care

Other leaves of absence when needed to support your physical, financial, and emotional well-being

Company

EY

Glassdoor3.8

EY is building a better working world by creating new value for clients, people, society, the planet, while building trust in the capital markets.

Founded in 1989

London, England, GBR

10001+ employees

http://www.ey.com

H1B Sponsorship

EY has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (10242)

2024 (9877)

2023 (10966)

2022 (9394)

2021 (5652)

2020 (8849)