Senior Consultant - Tech Consulting - Cybersecurity Ernst & Young AE

Employer Active

Posted on 28 Oct

Experience

4 - 9 Years

Job Location

Riyadh - Saudi Arabia

Education

Bachelor of Science(Computers)

Nationality

Any Nationality

Gender

Not Mentioned

Vacancy

1 Vacancy

Job Description

Roles & Responsibilities

Conduct penetration testing across web, mobile, APIs, cloud, and network environments (internal and external).

  • Execute red team and purple team operations, including social engineering, OSINT, and physical security assessments.
  • Perform secure code reviews, wireless security assessments, and application security consulting when required.
  • Develop and execute adversarial attack simulations, leveraging C2 frameworks (commercial: Cobalt Strike, Brute Ratel, NightHawk; open source: Havoc, Mythic, Sliver, Merlin).
  • Stay updated with emerging cyber threats, vulnerabilities, and offensive security techniques, and incorporate these insights into client engagements.
  • Develop detailed reports, articulate technical findings, and deliver actionable recommendations to both technical teams and executive stakeholders.
  • Support pre-sales activities such as scoping, proposal writing, and client workshops.

Skills and attributes for success

  • Collaborating with other members of the engagement team to plan the engagement and develop work program timelines, risk assessments and other documents/templates.
  • Ability to interpret complex technical results and present insights to business stakeholders.
  • Strong analytical, problem-solving, and critical-thinking skills.
  • Excellent communication and collaboration skills.
  • Deep technical understanding of offensive security methodologies, including network penetration testing, web application testing, and adversary simulation.

To qualify for the role, you must have

  • Bachelor s degree in computer science, Cybersecurity, or related field.
  • 4 6 years of hands-on experience in penetration testing, red teaming, or exploit development.
  • Demonstrable proficiency in at least two of the following methodologies:
    • Web, web services, mobile, or thick client penetration testing.
    • Internal/external network penetration testing.
    • Secure code review & application security consulting.
    • Wireless assessments.
    • Social engineering and red team assessments.
  • Strong technical understanding in at least two of the following domains:
    • Common web technologies and frameworks.
    • Application architecture.
    • Cloud platforms (AWS, Azure, GCP).
    • Networking and network protocols.
    • DevOps pipelines and CI/CD security.
  • Hands-on expertise with offensive tools and frameworks (e.g., Burp Suite, Metasploit, BloodHound, Cobalt Strike, Sliver, Havoc).
  • Strong knowledge of MITRE ATT&CK, OWASP Top 10, NIST SP PHONE_NUMBER, and red team methodologies.
  • A valid passport for travel.
  • Excellent communication skills with a consulting mindset.

Ideally, you ll also have

  • Relevant Cyber and offensive security certifications
  • Relevant certifications such as OSCP, OSCE, OSWE, OSEP, OSEE, GXPN, CRTO, SANS GWAPT, GPEN.
  • Strong understanding of security frameworks and methodologies (e.g., MITRE ATT&CK, OWASP, NIST).
  • Experience in offensive security engagements

Desired Candidate Profile


Company Industry

  • Banking
  • Financial Services
  • Broking

Department / Functional Area

  • IT Software

Keywords

  • Senior Consultant - Tech Consulting - Cybersecurity - Penetration Testing

Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advice against sharing personal or bank related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at abuse@naukrigulf.com

Ernst & Young AE

We re looking for a senior consultant with hands-on expertise and experience in driving offensive security engagements to join our Cyber Technology Consulting team. This is a fantastic opportunity to be part of a leading firm

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate.

Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Read More

https://careers.ey.com/ey/job/Riyadh-Senior-Consultant-Tech-Consulting-Cybersecurity-Penetration-Testing-KSA-Saudi-National-11461/1261922601/

Similar Jobs

IT Risk & Security Analyst

ICONIC IT CONSULTING SERVICES L.L.C

  • 8 - 12 Years
  • Abu Dhabi - United Arab Emirates (UAE)

BDM - IT Cybersecurity

Confidential Company

  • 3 - 8 Years
  • Dubai - United Arab Emirates (UAE)

Sr. Engineer- Network and Security

View All