Offensive Security Analyst at EY - ScoutJobs - The AI-curated global job board
Skip to content
EY
Posted 9 hours ago

Offensive Security Analyst

EYOffensive Security Analyst

Requirements

4+ years penetration testing experience, Hands-on testing of APIs and cloud environments, Understanding of OWASP Top 10, Offensive security methodologies, Strong analytical skills

Skills

Penetration TestingRed TeamingCloud Security

About the role

Responsibilities

  • Apply offensive security techniques to assess EY’s external and internal attack surface, including web applications, APIs, cloud environments, and network infrastructure.
  • Emulate adversary tactics to test detection and response capabilities through hands-on penetration testing and adversarial simulation.
  • Conduct reconnaissance and asset discovery to identify unmanaged or exposed assets.
  • Test proof-of-concepts to validate exploitability and determine real-world business impact.
  • Support third-party and supply chain risk validation efforts through targeted testing and assessment reviews.
  • Collaborate with security engineering, blue teams, and business stakeholders to prioritize remediation efforts based on risk severity.

Requirements

  • Minimum of 4 years of experience in penetration testing, red teaming, purple teaming, or offensive security.
  • Hands-on experience testing applications, APIs, cloud environments, and network infrastructure.
  • Strong understanding of common vulnerability classes, including the OWASP Top 10.
  • Familiarity with offensive security methodologies and frameworks.
  • Strong analytical, problem-solving, and communication skills to convey technical findings to diverse audiences.
  • Experience supporting or performing third-party risk assessments.

Preferred Qualifications

  • Professional certifications such as OSCP, GPEN, GWAPT, or equivalent offensive security credentials.

Benefits

  • Competitive base salary ranging from $76,400 to $138,600 (location dependent).
  • Comprehensive medical and dental coverage.
  • Pension and 401(k) plans.
  • Flexible vacation policy and designated EY paid holidays.
  • Hybrid work model allowing for flexible, team-led engagement.

About the Company

EY is a global leader in assurance, consulting, tax, and strategy services. Our Information Security team works to protect EY and our clients by blending risk strategy, cyber defense, and application security to build a more secure digital world.

ScoutJobs Agent

Get matches like this delivered daily

Sign up free — we'll pull jobs that fit your CV from across the web and rank them for you.

Get started — it's free

Offensive Security Analyst

EY · Alpharetta

Sign up to apply