Share these opportunities

Senior Consultant, Cyber - Vulnerability Management

Apply now

Apply for Job

Date Posted: Jul 16, 2019

Reference Code: 45642-en_US

Job Type:  Permanent 
Primary Location: Toronto, Ontario, Canada 
All Available Locations: Toronto 

External Posting Description

Deloitte’s Cyber Risk Services helps our clients to be Secure, Vigilant and Resilient in the face of an ever increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions, using proven methodologies and tools. Our services help organizations address timely and pervasive issues such as identity theft, data security breaches, data leakage, cybersecurity, and system outages across organizations of various sizes and industries, with the goal of enabling ongoing, secure, and reliable operations across the enterprise.

The environment at Deloitte is made up of intellectually curious, smart people; including world class security and privacy experts. Your mix of work will help foster your leadership skills and you will develop relationships with a team that you respect and have fun with. In addition, you will have the opportunity to identify areas of work that are of particular interest to you.

As a Senior Consultant, you will:

  • Work with a diverse team of talented Consultants
  • Execute  infrastructure, web & mobile application and IoT penetration assessment assignments
  • Support/lead vulnerability management programs to help clients with their Secure Software Development Lifecycle
  • Perform security configuration reviews of different platforms which may include: switches, routers, Operating Systems, amongst others
  • Conduct manual and automated security code reviews
  • Lead/execute Red Team assessments
  • Provide training to clients and/or colleagues in penetration testing methodology and/or execution
  • Assist in cultivating relationships with clients
  • Stakeholder management, including presentations to management and reporting
  • Perform quality reviews of penetration testing reports
  • Writing and speaking on both technical and business components
  • Present assessment results to management and explain the steps required for remediation
External Posting Qualifications
  • Minimum 4 years of relevant work experience in vulnerability management and penetration testing
  • Expertise in penetration testing of Web Applications, Mobile Applications and Thick Client Applications, SOAP & REST APIs, and Network Infrastructure
  • Ability to provide technical and non-technical training to peers and other consultants
  • Experience in researching and understanding new vulnerabilities and exploits, preparing and reviewing penetration test reports
  • Experience using commercial and Open Source vulnerability assessment tools (e.g. Qualys, Nessus, BurpSuite,  Nmap)
  • General understanding of network components and server management, including routers, switches, firewalls, Windows, Linux etc.
  • Experience in common software vulnerability standards such as CVE, CVSS scoring as well as research and testing methodologies like OWASP Top 10 and SANS Top 25.
  • Comprehensive experience in information security and aligned qualifications in security standards, such as ISO 27001 or equivalent is a plus
  • Experience executing social engineering is an asset
  • Experience with programming/scripting languages (such as Pearl, Python, Ruby, SQL) is an asset
  • Strong time management, analytical and problem soliving skills
  • Self-directed, with the ability to thrive in a fast-paced and dynamic environment
  • Ability to present ideas and results to technical and non-technical audiences
  • Obtained or interested in pursuing relevant professional designations, such as OSCP, SANS GWAPT, SANS GPEN, SANS GMOB, SANS GXPN or CISSP. 

Why Deloitte?

Launch your career with The One Firm where you can make a greater impact than you ever thought possible. With endless opportunities at every turn, and a culture built to support and drive our people to be the very best they can be, Deloitte is The One Firm for you to learn, grow, create, and lead.

At Deloitte, we understand that everyone, and their career goals, are different. As a firm, we help create the conditions and opportunities that will enable our people to thrive – both professionally and personally. We do this by making three commitments to our people:

  • You will lead at every level: We grow the world’s best leaders so you can achieve the impact you seek, faster.
  • You can work your way: We give you the means to work how you want, and we have innovative spaces and the mindset to help you be wildly successful.
  • You will feel included and inspired: We create a deep sense of belonging where you can bring your whole self to work.

Apply now and let us show you how to push your career to the next level at Deloitte. The One Firm. For You.

Deloitte is an inclusive employer dedicated to building a diverse workforce.  We encourage applications from all qualified candidates and will accommodate applicants’ needs under the respective provincial human rights codes throughout all stages of the recruitment and selection process. Please advise the Recruiter to ensure your accessibility needs are accommodated throughout this process.  Information received relating to accommodation will be addressed confidentially.

We thank all applicants in advance for their interest; however, only those candidates selected for an interview will be contacted



Apply now

Apply for Job

Find similar jobs: