Cybersecurity Consultant - Offensive Security (m/f/d)

Pwc Luxembourg is hiring a Junior Offensive Security Consultant (m/f/d). What if it was you? 

Your mission: As a Junior Offensive Security Consultant, you will help our clients by attempting to hack them, identifying vulnerabilities before malicious threat actors can exploit them. You will work with a wide range of clients, including banks, European institutions, local bodies, and companies in the financial and operational sectors. Your role will involve tackling a variety of offensive security projects, from short-term engagements to long-term, complex assignments. You'll have the opportunity to make a significant impact on the security posture of our clients, working in dynamic and challenging environments. 

Be a part of our team where you will 

• Participate in a wide area of penetration tests projects: web applications, Active Directory, internal networks, social engineering campaigns (phishing/vishing), physical intrusion, Red / Purple Team exercises, etc;

• Produce penetration test reports for both technical and executive audiences;

• Contribute to the preparation of proposals for penetration tests / technical projects;

• Share your expertise to help improve the team’s skills, contribute to the development of our lab, and work on internal tools that enhance our service offering;

• Get involved in pre-sales discussions, budgets sizing, project management, and other growth areas depending on your personal career aspirations, or, alternatively, deeply focus on enhancing your technical expertise to become an even greater hacker;

• Work with a global network, collaborating with colleagues across offices worldwide and contributing to our global cybersecurity expertise;

• Collaborate with colleagues in a team-oriented environment that emphasises high performance and a healthy work-life balance.

Let’s talk about you. If you … 

• Hold a Master’s degree in Computer Science, Network Engineering, Cybersecurity, Offensive Security, or a related field;

• Are curious by nature, eager to learn, and genuinely passionate about cybersecurity and offensive security;

• Are familiar with common security frameworks such as OWASP, OSSTMM, TIBER, or DORA TLPT, or willing to know such frameworks;

• Have excellent communication skills: You can clearly articulate technical findings, both in writing and verbally, in English. Additional languages are a plus;

• Operate with integrity and professionalism: You understand and uphold the importance of confidentiality and ethical conduct in your work;

• Are a learner: you take initiative to build your skills, ask questions, and continuously improve;

• Are comfortable working both independently and within a team. 

In addition, It’s a plus if you… 

• Have a first experience (internship, academic project, or job) in cybersecurity or offensive security;

• Hold certifications such as OSCP, OSEE, GPEN, GXPN, CRTO, CRTL, etc;

• Have contributed to the cybersecurity community (e.g., blog posts, talks, open-source projects, or CVEs);

• Are familiar with the Luxembourg market and/or its regulatory landscape. 

…You are the candidate we are looking for!