Penetration Tester

Reference Code 4235

Country:

US Locations: USA - Hermitage; USA - Nashville; USA - Tampa

Deloitte Global is the engine of the Deloitte network. Our professionals reach across disciplines and borders to develop and lead global initiatives. We deliver strategic programs and services that unite our organization.

Work you'll do

This role is responsbile for providing penetration testing services through a combination of technology and manual inginuity as part of the Global cyber services organisation for member firms.

Responsibilities of this role include: 

• Assisting in technical scoping of security testing activities
• Executing security testing
  • Web Application Penetration Testing
  • Web Services / Application Programming Interface (API) Penetration Testing
  • Network Penetration Testing
  • Mobile Application Penetration Testing
  • Thick Client Penetration Testing
• Conducting focused research when not deployed on an active project
• Provide consultative guidance to customers on findings identified in a clear and actionable fashion both in writing and verbally.
• Enhancing and updating testing methodologies, processes and standards documentation
• Maintaining proficiency of knowledge through ongoing training paths
• Proficient at analyzing and understanding complex architecture designs.
• Ability to effectively communicate what services and capabilities our group can facilitate to our clients.

The team

Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in what is but rather what can be to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived.

Qualifications

Required:

• Experiance using common testing tools like Burp, OWASP ZAP, Metasploit, Postman, Swagger, NMAP, Qualys, SQLMap, others.
• Experienced with Kali Linux or other dedicated Penetration Testing OS Platform
• Advance mobile penetration testing, Application Penetration Testing and architectural security principles
• Familiarity with software security weakness and vulnerabilities
• Working knowledge of one scripting language and familiarity with at least one software programming language and framework
• Demonstrated experience working with diverse stakeholders, preferably on a global multi-national basis
• Ability to manage concurrent initiatives and use effective judgment in prioritization and time management
• Strong written and verbal communication skills
• Must be a US Citizen 

Preferred:

• Certified Ethical Hacker (CEH) Certification
• Offensive Certified Security Professional (OSCP) Certification
• Any GIAC Certification (GSEC, GWAB, GPEN, GMOB, GCPN)
• OWASP Application Security Top 10
• OWASP API Security Top 10
• OWASP Thick Client Top 10
• OWASP LLM Top 10
• MITRE ATT&CK Framework
• Cloud Service testing
• Reverse Engineering
• Static Application Software Testing (SAST)
• Dynamic Application Testing (DAST)
• Experiance of Agentic development and its application to support penetration testing.

Our culture

At Deloitte Global people are valued and respected for who they are – with opportunities to bring their unique perspectives, talents and passions to business challenges. Our global workspace creates room for individuality and collaboration. Ours is an inclusive, supportive, connected culture with a focus on development, flexibility, and well-being. This culture makes Deloitte Global one of the most rewarding places to work, and to transform your career.

Professional development

From entry-level employees to senior leaders, we believe in investing in you, helping you identify and hone your unique strengths at every step of your career. We offer opportunities to build new skills, take on leadership opportunities, and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.

Benefits

At Deloitte, we value our people and offer employees a broad range of benefits. Our Total Rewards program reflects our continued commitment to lead from the front in everything we do—that’s why we take pride in offering a comprehensive variety of programs and resources to support your health and well-being.

Recruiting for this role ends on 06/17/2026.