Deloitte US

Work You’ll Do

• Help lead and executed advanced red team assessments simulating adversarial threat actor behaviors to evaluate organizational security posture and incident response capabilities.
• Develop and carry out sophisticated social engineering campaigns—including phishing, pretexting, and physical intrusion attempts—to identify gaps in security awareness and operational protocols.
• Conduct comprehensive vulnerability assessments, actively exploiting identified weaknesses to demonstrate real-world risks to critical assets and business operations.
• Emulate advanced persistent threat (APT) actor tactics, techniques, and procedures (TTPs) using custom and commercial red team toolsets to assess detection and response mechanisms.
• Collaborate with blue teams during purple team exercises to improve threat detection, response, and containment strategies and foster cross-team knowledge sharing.
• Author detailed technical reports and executive summaries outlining vulnerabilities, attack paths, and recommendations for remediation tailored to different stakeholder audiences.
• Develop custom scripts and tools to automate attack processes, enhance assessment efficiency, and simulate emerging threats.
• Maintain up-to-date knowledge of the latest attacker methodologies, vulnerabilities, and security technologies through ongoing research and continuous professional development.

The Team

Deloitte’s Government and Public Services (GPS) practice – our people, ideas, technology, and outcomes—are designed for impact. Serving federal, state, & local government clients as well as public higher education institutions, our team of professionals brings fresh perspective to help clients anticipate disruption, reimagine the possible, and fulfill their mission promise.

Our Cyber Defense & Resilience offering assists clients in defending against advanced threats by transforming security operations, monitoring technology, data analytics, and threat intelligence. Helps manage and protect dynamic attack surfaces and provides rapid crisis and cyber incident response, ensuring clients can be ready for, respond to, and recover from business disruptions.

Qualifications 

Required: 

• Bachelor’s degree required.
• Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.
• Must be able to obtain and maintain the required clearance for this role.
• 3+ years of hands-on experience within the following:
• Penetration testing, red team, or offensive security operations, with a focus on web applications and APIs.
• Strong working knowledge of enterprise networks, Windows and Linux systems, cloud infrastructure, and security architecture.
• Experience leveraging offensive security tools (e.g., Cobalt Strike, Metasploit, Empire, BloodHound, custom scripts) and manual exploitation techniques.
• Familiarity with MITRE ATT&CK or similar frameworks for threat emulation.
• Offensive Security Certified Professional (OSCP) Certification or ability to obtain within one year of hire.

Preferred:

• Certifications such as OSWEP, CRTO, or eJPT (eLearnSecurity Junior Penetration Tester) are highly desirable. Experience with cloud-based application testing, mobile application security, or social engineering. Scripting or programming experience (Python, PowerShell, Bash, etc.).
• 1+ years understanding/ experience within defensive security concepts, blue team operations, and purple teaming practices.

Information for applicants with a need for accommodation: https://www2.deloitte.com/us/en/pages/careers/articles/join-deloitte-assistance-for-disabled-applicants.html