Penetration Tester

Job Description

We are looking for a highly skilled professional to perform deep-dive penetration tests across diverse environments. The role focuses on identifying logical flaws and executing high-impact attacks in Cloud (Azure/AWS/GCP) and On-Premises Active Directory infrastructures. As a team member, you will design complex attack scenarios and provide strategic remediation guidance to senior stakeholders.
 

Responsibilities

• Cloud Penetration Testing: Execute complex scenarios on Azure, AWS, and GCP. Focus on Identity (Entra ID), Permissions (IAM/ARM), and exploitation of misconfigured services and resources.

• Active Directory & Identity: Perform advanced attacks against On-Premise Active Directory, assessing Hybrid Identity components and the synchronization security between On-Prem and Cloud.

• Research & Tool Development: Strong interpersonal communication skills and ability to work independently.

• Reporting & Advisory: Deliver high-level technical reports and conduct executive presentations with clear remediation steps for developers, IT teams, and management.

#LI-EU

Job Requirements

Experience & Skills:

• 3+ years’ experience in Cyber Security projects or Penetration Testing within a team environment.

• Strong research and analytical skills, with a passion for solving complex security challenges.

• Excellent technical writing and verbal communication skills in English and Hebrew.

• Strong interpersonal communication skills, with the ability to lead projects and work independently.

• Proficiency in scripting and automation (Python, PowerShell, C#, or Go).

Technical Knowledge:

• Cloud (Azure, AWS, GCP): Deep understanding of Entra ID (Azure AD), ARM, and RBAC models. Proven ability to identify attack paths involving Managed Identities, Service Principals, and Graph API abuse. Knowledge of AWS/GCP IAM privilege escalation and cross-account access attacks.

• Active Directory: Expert-level knowledge of Kerberos, NTLM, LDAP, and ACLs. Proficiency in ADCS Exploitation, Delegation attacks, and intricate ACL manipulation.

• Networking: Deep understanding of networking protocols (TCP/IP, SMB, RPC, HTTP/S) and architecture.

• Coding & Tool Development: Programming capabilities with the ability to develop custom tools, automation scripts, and offensive aids to support the team and project needs.

Advantages (Nice to Have):

• Certifications: CRTP, CARTP, CRTE, or OSCP/OSEP.

• Container Security: Knowledge of Kubernetes (K8s) security and Microservices architecture.

• Knowledge of Windows internals & evasion techniques.

Some projects are performed remotely, while others require on-site presence. Occasional international travel is expected.

About Accenture

Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale. We are a talent- and innovation-led company with approximately 791,000 people serving clients in more than 120 countries. Technology is at the core of change today, and we are one of the world’s leaders in helping drive that change, with strong ecosystem relationships. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. Our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song, together with our culture of shared success and commitment to creating 360° value, enable us to help our clients reinvent and build trusted, lasting relationships. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities.

Visit us at www.accenture.com 

Equal Employment Opportunity Statement

We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, sexual orientation, gender identity or expression, marital status, citizenship status or any other basis as protected by applicable law. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities.