Állásajánlat nyomtatása

Job at KPMG:

Senior Ethical Hacker

Reference nr.: AV-SENI-0223

KPMG is one of the world’s leading professional firms providing audit, tax and advisory services, with 236,000 employees in 144 countries. We have already worked with 72 of Hungary’s Top 100 companies, and we’re not stopping there! Whatever you are interested in around the world, we can really help you get there. In a dynamic environment with intelligent people you can learn how to use your knowledge well. Are you wondering about how? Read our job advertisement and learn about what you can expect in reality if you decide to join us. It is clear for us that your ambition can drive us to our future together.

#poweredbyyou

We help our clients with industry-specific services to create value and manage risks. Our wide-ranging client portfolio enables you to gain real-life experience in industries such as telecommunications, energy, IT, finance or sports, and to work on ground-breaking projects.


What we offer
 
  • As a member of a young and dynamic team you can collect professional experience at multiple clients in different industries
  • Penetration testing of infrastructure and development of scalable test strategies
  • Development of security tools automating complex tasks
  • Vulnerability research on systems, including exotic ones
  • Take a hands-on role in building security solutions and improving existing ones
  • Excellent opportunity for personal development with regular training courses
  • Opportunity to attend conferences, certifications, technical workshops, trainings and meetups
  • Competitive salary and benefits
 
Key responsibilities
 
  • Work as a member of the Cyber Security team on penetration testing projects
  • Perform penetration tests, ethical hacking, system vulnerability tests and IT security risk assessments
  • Take part in many IT security and advisory projects, visiting many different companies, and working with many various IT systems
  • Duties will also include providing infrastructure and application vulnerability assessment and penetration testing services, as well as identifying weaknesses and vulnerabilities within the system and proposing countermeasures
  • Typical assignments will involve testing of the overall security of critical infrastructure components and applications to ensure they comply with security architecture best practices, and industry standards
  • Scanning and discovering rouge hosts, networks, and devices; and scanning and discovering vulnerable systems and applications are also part of the job
  • The candidate will be expected to act as a subject matter expert in offensive information security including databases, networking, operating systems, applications, and programming
 
Requirements
 
Pre-requisites for this position are at least a 3+ years of experience in most of the following:
  • Conducting vulnerability assessments and penetration testing (application and/or infrastructure) and articulating security issues to technical and non-technical audience (3+ years)
  • Identifying, researching, validating, and exploiting various different known and unknown security vulnerabilities on server and client side 
  • Knowledge of attack vectors, threat tactics and attacker techniques
  • Familiarity with common toolkits used in penetration testing
  • Knowledge of vulnerability Assessment tools, e.g. Nessus, Qualys, etc.
  • Knowledge of exploitation frameworks, e.g. Metasploit
  • Deep understanding of OSI model
  • Knowledge of security devices, e.g. Firewalls, VPN, AAA systems
  • Knowledge of OS Security, e.g. Unix, Linux, Windows, Cisco, etc.
  • Experience in systems engineering with Linux systems (2+ years)
  • Understanding of common protocols, e.g. LDAP, SMTP, DNS, Routing Protocols
  • Knowledge of web application infrastructure, e.g. Application Servers, Web Servers, Databases
  • Knowledge of web development and programming languages i.e. Python, Perl, Ruby, Java, and/or .Net (2+ years)
  • Reporting information security vulnerabilities to businesses
  • Fluent written and spoken English and Hungarian
  • Innovative thinker and problem-solver
  • Hands-on MS Office skills
  • Outstanding analytical and interpersonal skills 
  • Ability and willingness to learn and deliver in a challenging environment 
  • Client oriented thinking
  • Industry-accredited security certifications will be required (the candidate must have or be willing to obtain all of the following certifications – OSCP, OSWE, OSWP, eMAPT, GIAC GPEN, GWAPT, GXPN, GMOB and CEH). Knowledge of tools and processes used to expose known and undocumented vulnerabilities in various different systems.

Measures for the duration of the coronavirus:

We recommend Home Office (work from home) for our colleagues, for this we provide a laptop and mobile phone.
Basically, all of our employees work from home and are only able to come to the office or go to the client if it is absolutely necessary and discussed with the manager. If someone still need an office presence, we provide the protective equipment (gloves, masks, hand sanitizer).
To protect our health, all interviews are conducted through a Digital Device (video interview), for this we provide information and assistance to the candidates. Only for the entry process the personal presence is required, than everything will be online. The starting date can be different based on the positions and departments, regarding this we can provide more information during the selection process.


At KPMG we are living our values every day: we do what is right, we never stop learning and improving, we think and act boldly. We respect each other and draw strength from our differences, and we do what matters to build a better world for the next generation.

Apply easily and experience success together.

KPMG is an equal opportunity employer and values diversity in its workforce. We encourage applications from all qualified individuals and willing to accommodate applicants’ disability-related needs. Should you have any questions or special need please let us know under the Contacts menu button.

Basic information

  • Location: Budapest
  • Professional field: Advisory
  • Experience:
    • Experienced
  • Working hours: Full time
Share this job

Do you know someone who fits this position perfectly? We would be grateful if you could share this job with her/him!
Sharing options:

1134 Budapest, Váci út 31.

Budapest

Miért válaszd a KPMG-t?

Szakmai és személyes fejlődés

Évente akár 64 órányi szakmai és egyéni készségfejlesztő képzésen fejlesztheted magad.

Mentorod és performance managered folyamatos visszajelzést ad a teljesítményedre vonatkozóan, hogy gyorsabban fejlődj.

Összetartó, motivált csapat

Csapatépítők, karácsonyi parti, inspirációs események, céges programok – online vagy offline, nálunk Te vagy a középpontban és önmagad lehetsz.

A mentális egészség mellett a fizikai jóléted is fontos számunkra. Kollégáink gyakran járnak munka után közösen sportolni vagy neveznek be futóversenyekre, melyeket a cég finanszíroz.

Valódi és releváns tudás

A szakmai tréningeknek és a legkülönbözőbb iparágakban szerzett ismereteknek köszönhetően megtapasztalhatod milyen, amikor a legnagyobb cégek vezetői fordulnak hozzád közvetlenül szakmai segítségért.

Szakmai tudásod nem csak ügyfeleink projektjein, hanem pro-bono munkákon, önkéntes tevékenységek keretében is kamatoztathatod.

Stabil hazai alapok, nemzetközi háttér

Teljesítményértékelés nemzetközi alapokon, hazai mentorok, előléptetés, fizetésemelés – ezek nem csak üres ígéretek, mindez már az első évben lehetséges.

Ha kalandra vágysz, néhány év tapasztalat után kipróbálhatod magad a KPMG külföldi irodáiban is.