Share this Job

APAC Security Tester

Date:  07-Apr-2021

Sydney, NSW, AU

Department:  Internal Client Services

• Work in a highly innovative and transformative business

• Work/life balance with access to flexible work arrangements

• Salary packaging – to suit your personal and financial circumstances


Join our Global IT Security team, taking on this exciting application testing role perfect for an analytical thinker passionate about cybersecurity.


What will your typical day look like?

Joining the Deloitte Global IT Cybersecurity team based in Sydney, you will be working in one of the world’s largest holistic internal cybersecurity organisations. You will be operationally responsible for proactively preventing, detecting, and responding to cyber-attacks across a complex global footprint.

As part of the Global Cybersecurity team, you will work closely with stakeholders across the APAC member firm to deliver technical assessments against a broad range of services. In a nutshell, you will be testing applications to find vulnerabilities, triaging vulnerabilities giving developers actionable results and then retesting.


As such your responsibilities in this role could include:

  • Supporting development in deployed tooling to enhance customer efficiency
  • Supporting operational processes, rules of engagements and methodologies to deliver quality code analysis and penetration testing services to Deloitte’s global network
  • Ensuring deliverables are of a quality nature, providing practical intelligence to help member firms remediate identified vulnerabilities
  • Executing automated security testing or support of automated mechanisms to do so
  • Curating application security vulnerability data generated from application testing tools, providing concise and digestible remediation paths for member firms
  • Escalating urgent key risks and issues to Automated Application Testing Delivery Manager that need special attention
  • Supporting member firm liaisons with DTTL management and technical teams to ensure they are utilising all the offered Services within the Risk Management group
  • Collaborating and exchanging expertise with the Attack Surface Assessment group to understand trends, issues, and risks


About the team

The Deloitte Global Cybersecurity function is responsible for enhancing data protection, standardising, and securing critical infrastructure, and gaining cyber visibility through security operations centres. The Cybersecurity organization delivers a comprehensive set of security services to Deloitte’s global network of firms around the globe.


Enough about us, let’s talk about you.

You will have at least 3 years of combined experience in Cybersecurity, Vulnerability Management of Application Testing in a complex global organisation, with a proven track record in the following:

  • Application Security testing services working with both testing tools and manual exploitation techniques
  • Risk Management, must be able to convey technical risks to business managers and executives
  • Application/Infrastructure Architecture experience
  • Experience working with a variety of cultures across the globe and have the patience, understanding and empathy to work collaboratively and effectively

More specifically, you are someone who has:

  • Excellent analytical/problem-solving ability, with a strong customer service orientation and exceptional attention to detail.
  • The ability to develop and maintain excellent stakeholder relationships, with the ability to influence and negotiate effectively using excellent written and verbal communication.
  • A creative and independent thinking style, with the ability to translate technical requirements and challenges into results.
  • Self-motivation to be able to work independently without direct supervision.
  • Bachelor’s degree in Computer Science, Cyber Security, International Cyber Security, or equivalent education experience.

Professional security management certification (required):

At least 1 active certification from any of the following: Certified Information Systems Security Professional (CISSP); Certified Information Security Manager (CISM); Certified Information Systems Auditor (CISA) or other similar credentials such as any SANs ethical hacking certifications.


Why Deloitte?

At Deloitte, we create positively differentiated work experiences that enable our people to feel valued and achieve their full potential. Deloitte Australia opens the door to a career that can cross borders virtually and physically across Asia Pacific to gain experience and access projects beyond Australia’s borders. We value difference and embrace people with diverse backgrounds and thinking styles. Knowing that people work best in a variety of ways, we are happy to discuss alternative arrangements if the working pattern you are looking for is not specifically indicated.

Next Steps

Sound like the sort of role for you? Apply now using the link provided

By applying to this job, you will be assessed against the Deloitte Global Talent Standards. We’ve designed these standards to provide our clients with a consistent and exceptional Deloitte employee experience globally.


At Deloitte, we know we’re at our best when we look out for one another; prioritise respect, fairness, development and wellbeing; foster an inclusive culture and embrace diversity in all forms. All qualified applicants will receive consideration for employment regardless of their background, experience, identity, ability or thinking style, and if you need assistance or an accommodation during the application process for accessibility reasons this is available upon request. 


The preferred candidate will be subject to background screening by Deloitte or by their external third-party provider.