
Senior Offensive Security Specialist
Senior Offensive Security Specialist
This job in a nutshell
Help improving cyber resilience of our clients by engineering, hacking and emulating real-world threats against challenging IT environments. At Deloitte.
Benefits
- You’ll receive a profit-sharing bonus. On top of your fixed salary.
- Continuous professional growth. Join our development program.
- A work-from-home office setup allowance to make sure you have everything you need for an ergonomically designed workstation and internet allowance.
- Work part-time (32 hours a week) or full-time (40 hours a week).
- Flexible working hours, you are in charge of your own calendar.
- 26 days of paid annual leave, and the opportunity to purchase additional leave.
- The option to exchange three national holidays for three non-national holidays.
- A good mobility scheme: the choice of various options such as a lease car, travel by public transport, a cash option or a combination of these.
- A laptop and iPhone. The iPhone can be for personal use.
- A time for time arrangement that creates flexibility for personal moments that matter.
- A good pension scheme with a personal contribution of only 2%. For a comfortable future.
- An opportunity to take part in our collective health insurance scheme.
- An opportunity to benefit from tax-efficient facilities such as fitness, a bicycle scheme or the opportunity to lease a bicycle.
- The opportunity to use 55 hours of babysitting service per calendar year, if your child is 12 years old or younger.
- A flexible budget, which you can use to make choices in flexible benefits, for example: purchasing extra leave days or financing a bicycle plan.
- Six weeks of fully paid birth leave for traditional households and rainbow families.
Be the true you
You have a passion for offensive security, finding creative ways to break into highly secured environments identifying ways around defenses. Moreover, in case you run into new types of environments or technologies you are able to develop new tools and techniques to reach your objective. For the role of Senior Offensive Security specialist, you also have:
- a Computer Science degree or similar;
- a passion for offensive security and a drive to stay up-to-date with current exploits, attack techniques and new vulnerabilities;
- experience with the protocols at the various layers of the OSI model, think of: ARP, PPP, IPsec, IP, TCP, UDP, ICMP, TLS, SOCKS, ASCII, UTF-8, Base64, CRC, HTTP, QUIC, SMB, etc.;
- experience with web application security testing, using Burp exploiting SQL injection, file inclusion and HTTP request smuggling vulnerabilities, including experience with scripting to automate repetitive tasks;
- experience with complex infrastructures, both from an engineering and offensive perspective, evaluating possible entry points at the different layers of the protocol stack and exploiting those to get a foothold in the client's network and laterally move;
- experience evaluating the security of Windows and Linux operating systems and [Azure] Active Directory environments identifying possible escalation paths and security misconfigurations;
- relevant security certifications are preferred, some examples: OSCP, OSEP, OSWE, eCPTX, eWPTX, GXPN, etc.;
- excellent communication skills and fluency in written and spoken English.
What impact will you make?
As a Senior Offensive Security Specialist, you will work in a highly skilled team to perform challenging security tests for our international clients. Using your offensive and engineering skills you will exploit our clients’ networks, perform tactical network exploitation (TNE) and provide hands-on support to strengthen the client’s security posture. To sharpen your skills, you will join the periodic Deloitte Global Offensive Security community knowledge exchange sessions, follow trainings and perform research on the latest techniques and tools.

Together makes progress
Connect your future to Deloitte
How do you do this?
- finding creative ways to exploit the client's applications and infrastructure;
- applying hacker's mindset to bypass protections and identify cracks within target systems;
- providing clients with technical recommendations that match their situation and environment;
- turning security weaknesses into tailored and concrete recommendations which you will present to clients and provide hands-on support to help clients with improving their security posture
- performing offensive research on new technologies and developing methodologies to evaluate the security of the setup and configuration;
- sharing your research within the Deloitte Global Offensive Security community and with the broader security community, for example writing blogs, speaking at conferences, or publishing code.

We would like to meet you!
Our application process
Select one of the steps for more information
Step 1: Preparation
Step 2: CV and motivation
Step 3: The assessment
Step 4: The interview
Step 5: The offer
Questions or doubts? Get in touch.







