ID226552 Security Penetration Tester / Ethical Hacker

KPMG in Romania is one of the world’s leading providers of Audit, Tax and Advisory services. At KPMG we run our firm just as effectively as we support and strengthen our clients’ businesses. That means hiring talented people to help develop and manage our brand, publish our thought leadership, control our finances, run our IT infrastructure, and support our professionals in the field.

KPMG in Romania offers great opportunities to build a successful career.

When you choose KPMG as the place to build your career, you choose to inspire confidence and empower the change around you.

KPMG ’s vision is to recruit extraordinary people and build extraordinary professionals.

We are seeking a highly skilled and motivated Security Engineer with a strong background in ethical hacking / penetration testing. You will be part of a dynamic team responsible for identifying vulnerabilities, simulating cyber-attacks, and strengthening the security posture of our clients across various industries including banking, telecom, and energy.

Key Responsibilities

• Conduct penetration tests on web and mobile applications, networks, and infrastructure.
• Simulate real-world attack scenarios (Red Team exercises) to assess security controls.
• Identify and exploit vulnerabilities using both commercial and open-source tools (e.g., Burp Suite, Metasploit, Cobalt Strike).
• Prepare detailed reports outlining findings, risk ratings, and remediation recommendations.
• Collaborate with clients to define scope, methodology, and objectives of security assessments.
• Participate in threat hunting and digital forensics investigations.
• Ensure all testing activities comply with legal and ethical standards.

Required Qualifications:

• Proven experience in penetration testing and ethical hacking (minimum 2 years).
• Certifications such as OSCP, OSCE, eCPPTv2 or similar.
• Strong understanding of OWASP Top 10, MITRE ATT&CK, and secure coding practices.
• Familiarity with scripting languages (Python, Bash, PowerShell).
• Excellent analytical and problem-solving skills.
• Strong communication skills in English (written and verbal).

Preferred Experience:

• Experience with Red Team operations and threat simulation.
• Exposure to cloud security testing (AWS, Azure).
• Knowledge of secure DevOps and CI/CD pipeline security.

What’s in it for you? What do we offer?

• Opportunity to work on high-impact projects with leading organizations.
• Access to cutting-edge tools and training resources.
• A fast paced environment and an extraordinary team with great mentoring opportunities.
• The possibility to fulfill your potential through various training courses and gain additional professional qualifications.
• Career advancement opportunities.
• Flexible workplace and work environment

Working at KPMG is also about happy people and an internal culture that supports employees in following their passions through various activities and events. We also have numerous benefits to support your health, a flexible working schedule and many more advantages

Confidentiality

Confidentiality will be ensured to protect the interests of applicants.

Only preselected candidates will be invited to an interview.

#LI-Hybrid