T&T Analyst - Cyber OSCP Training Program - Cyber Defence & Resilience - SG

Are you ready to unleash your potential?

At Deloitte, our purpose is to make an impact that matters for our clients, our people, and the communities we serve. 

We believe we have a responsibility to be a force for good, and WorldImpact is our portfolio of initiatives focused on making a tangible impact on society’s biggest challenges and creating a better future. We strive to advise clients on how to deliver purpose-led growth and embed more equitable, inclusive as well as sustainable business practices.

Hence, we seek talented individuals driven to excel and innovate, working together to achieve our shared goals.

We are committed to creating positive work experiences that foster a culture of respect and inclusion, where diverse perspectives are celebrated, and everyone is recognised for their contributions.

Ready to unleash your potential with us? Join the winning team now!

Work you’ll do

As part of the Cyber Defense & Resilience team, you will start off with a structured 12-weeks program specifically designed to guide graduates into the dynamic field of offensive security testing. The program is structured to provide a comprehensive foundation, beginning with intensive training and culminating in a highly respected industry certification OSCP (Offensive Security Certified Professional).

• Intensive Training and Hands-On Cyber Hacking Experience

  Your initial 8 weeks will be devoted to real-world cyber hacking through collaborative group training, immersive learning, and practice within lab environments. The training, led by Deloitte’s seasoned ethical hackers, is designed to help you achieve the OSCP certification. These experts will share their knowledge, experiences, and practical advice to help you succeed in this fast-paced field. You will have continual access to lab facilities, enabling you to hone your skills and advance to the next level.

  During this phase, you will gain practical experience in penetration testing methodology, web application attacks, Active Directory attacks, privilege escalations in both Windows and Linux environments, and network exploitation.

• On-the-Job Learning

  The following 4 weeks will involve shadowing experienced penetration testers during their client engagements, providing you with valuable on-the-job learning opportunities. Regular cohort sessions will be held, allowing you to share insights and showcase the latest exploits you have achieved within the labs.

The program concludes with an online proctored exam, where you will demonstrate your skills to attain the OSCP certification. Successfully completing the program will place you among a distinguished group of professionals who hold this coveted certification.

Upon attaining the certification, you will have an opportunity to work with like-minded people and gain exposure to a variety of projects to identify and mitigate cyber risks. You will simulate real-world attacks, document findings, and provide security improvement recommendations.

• Conduct security assessments on systems, networks, and applications.
• Simulate cyber-attacks to identify system vulnerabilities.
• Typical security testing activities include:
  • Software/Web Application/Web Services penetration testing
  • Network Penetration Testing
  • Mobile Application Penetration Testing
  • Thick Client Penetration Testing
• Develop and execute penetration testing methodologies.
• Prepare detailed reports on the findings of penetration tests.
• Recommend and implement improvements to security policies.
• Stay updated with the latest penetration testing tools and techniques.
• Train staff on security awareness and procedures
• Collaborate with IT staff to improve system security

Your role as a leader

At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We connect our purpose and shared values to identify issues as well as to make an impact that matters to our clients, people and the communities. Additionally, Analysts across our Firm are expected to:

• Demonstrate a strong commitment to personal learning and development.
• Understand how our daily work contributes to the priorities of the team and business.
• Understand the set expectations and demonstrate accountability in keeping personal performance on track.
• Actively focus on developing effective communications and relationship-building skills with stakeholders, clients and team.
• Demonstrate an appreciation for working with others.
• Understand what is fundamental to Deloitte’s success as a business.
• Demonstrate integrity and an awareness of strengths, differences, and personal impact.
• Develop their understanding of Deloitte and offer a fresh perspective.

Requirements

• Graduating or graduated with a degree in Information Security, Information Systems Management, Computer Science, Engineering, or other related discipline
• Passion for offensive security, Red Teaming, penetration testing and a drive to stay up-to-date with current attack techniques and new vulnerabilities
• Knowledge of security testing frameworks and standards are a plus
• Ability to work both independently and as part of a team with professionals at all levels
• Excellent problem-solving and analytical skills
• Team player with excellent interpersonal and communication skills
• Relevant certifications (e.g., CEH, CREST) are a plus

Due to volume of applications, we regret only shortlisted candidates will be notified. Candidates will only be contacted by authorized Deloitte Recruiters via firm’s business contact number or business email address.