Print job offer

Job at KPMG:

Senior Ethical Hacker

Reference nr.: AV-SENI-0223

KPMG is one of the world’s leading professional firms providing audit, tax and advisory services, with 236,000 employees in 144 countries. We have already worked with 72 of Hungary’s Top 100 companies, and we’re not stopping there! Whatever you are interested in around the world, we can really help you get there. In a dynamic environment with intelligent people you can learn how to use your knowledge well. Are you wondering about how? Read our job advertisement and learn about what you can expect in reality if you decide to join us. It is clear for us that your ambition can drive us to our future together.


We help our clients with industry-specific services to create value and manage risks. Our wide-ranging client portfolio enables you to gain real-life experience in industries such as telecommunications, energy, IT, finance or sports, and to work on ground-breaking projects.

What we offer
  • As a member of a young and dynamic team you can collect professional experience at multiple clients in different industries
  • Penetration testing of infrastructure and development of scalable test strategies
  • Development of security tools automating complex tasks
  • Vulnerability research on systems, including exotic ones
  • Take a hands-on role in building security solutions and improving existing ones
  • Excellent opportunity for personal development with regular training courses
  • Opportunity to attend conferences, certifications, technical workshops, trainings and meetups
  • Competitive salary and benefits
Key responsibilities
  • Work as a member of the Cyber Security team on penetration testing projects
  • Perform penetration tests, ethical hacking, system vulnerability tests and IT security risk assessments
  • Take part in many IT security and advisory projects, visiting many different companies, and working with many various IT systems
  • Duties will also include providing infrastructure and application vulnerability assessment and penetration testing services, as well as identifying weaknesses and vulnerabilities within the system and proposing countermeasures
  • Typical assignments will involve testing of the overall security of critical infrastructure components and applications to ensure they comply with security architecture best practices, and industry standards
  • Scanning and discovering rouge hosts, networks, and devices; and scanning and discovering vulnerable systems and applications are also part of the job
  • The candidate will be expected to act as a subject matter expert in offensive information security including databases, networking, operating systems, applications, and programming
Pre-requisites for this position are at least a 3+ years of experience in most of the following:
  • Conducting vulnerability assessments and penetration testing (application and/or infrastructure) and articulating security issues to technical and non-technical audience (3+ years)
  • Identifying, researching, validating, and exploiting various different known and unknown security vulnerabilities on server and client side 
  • Knowledge of attack vectors, threat tactics and attacker techniques
  • Familiarity with common toolkits used in penetration testing
  • Knowledge of vulnerability Assessment tools, e.g. Nessus, Qualys, etc.
  • Knowledge of exploitation frameworks, e.g. Metasploit
  • Deep understanding of OSI model
  • Knowledge of security devices, e.g. Firewalls, VPN, AAA systems
  • Knowledge of OS Security, e.g. Unix, Linux, Windows, Cisco, etc.
  • Experience in systems engineering with Linux systems (2+ years)
  • Understanding of common protocols, e.g. LDAP, SMTP, DNS, Routing Protocols
  • Knowledge of web application infrastructure, e.g. Application Servers, Web Servers, Databases
  • Knowledge of web development and programming languages i.e. Python, Perl, Ruby, Java, and/or .Net (2+ years)
  • Reporting information security vulnerabilities to businesses
  • Fluent written and spoken English and Hungarian
  • Innovative thinker and problem-solver
  • Hands-on MS Office skills
  • Outstanding analytical and interpersonal skills 
  • Ability and willingness to learn and deliver in a challenging environment 
  • Client oriented thinking
  • Industry-accredited security certifications will be required (the candidate must have or be willing to obtain all of the following certifications – OSCP, OSWE, OSWP, eMAPT, GIAC GPEN, GWAPT, GXPN, GMOB and CEH). Knowledge of tools and processes used to expose known and undocumented vulnerabilities in various different systems.

Measures for the duration of the coronavirus:

We recommend Home Office (work from home) for our colleagues, for this we provide a laptop and mobile phone.
Basically, all of our employees work from home and are only able to come to the office or go to the client if it is absolutely necessary and discussed with the manager. If someone still need an office presence, we provide the protective equipment (gloves, masks, hand sanitizer).
To protect our health, all interviews are conducted through a Digital Device (video interview), for this we provide information and assistance to the candidates. Only for the entry process the personal presence is required, than everything will be online. The starting date can be different based on the positions and departments, regarding this we can provide more information during the selection process.

At KPMG we are living our values every day: we do what is right, we never stop learning and improving, we think and act boldly. We respect each other and draw strength from our differences, and we do what matters to build a better world for the next generation.

Apply easily and experience success together.

KPMG is an equal opportunity employer and values diversity in its workforce. We encourage applications from all qualified individuals and willing to accommodate applicants’ disability-related needs. Should you have any questions or special need please let us know under the Contacts menu button.

Basic information

  • Location: Budapest
  • Professional field: Advisory
  • Experience:
    • Experienced
  • Working hours: Full time
Share this job

Do you know someone who fits this position perfectly? We would be grateful if you could share this job with her/him!
Sharing options:

1134 Budapest, Váci út 31.


Why should you choose KPMG?

Personal and professional growth

Develop your skills and know-how through an average of 64 hours of professional and individual training on offer each year.

You’ll receive continuous feedback on your work and performance from your mentor and performance manager, to be able to grow continuously.

Cooperative, motivated team

Team building, Christmas parties, inspirational events, company-wide activities – online or offline, You are the focus and you can be yourself.

Your mental and physical health are important to us. We support our colleagues’ sports activities, including team sports and running competitions.

Real and relevant knowledge

Thanks to professional trainings and knowledge gained in various industries, you can experience what it is like when the leaders of the largest companies turn to you directly for professional help.

You can use your professional knowledge not only in client projects, but also in pro-bono and volunteer activities.

Stable local basis, international background

Performance assessment on an international basis, local mentors, promotions and salary increases - they're not just promises, it's all possible in your first year.

Have a go at KPMG member firms abroad through a secondment, which can last from a few months to a few years.