Pulse Job logoPulse Job
HomeJobsBlogPricingContact
Pulse Job logoPulse Job

Trusted global job portal connecting talented professionals with top companies worldwide.

support@pulsjob.com

For Job Seekers

  • Browse Jobs
  • Premium Jobs
  • Create Profile
  • Pricing
  • Career Tips

For Employers

  • Hire someone
  • Employer Dashboard
  • Success Stories

Career Tools

  • AI Auto-Apply
  • Expert Resume Review
  • Set Job Alerts

Company

  • About Us
  • Contact
  • Blog

Support

  • FAQ
  • 14-Day Refund Policy
  • Privacy Policy
  • Terms of Service
  • Community Guidelines

Copyright © 2026 Pulse Job. All rights reserved.

FacebookTwitterLinkedInInstagram

Get the Pulse Job app for the best experience.

Disclaimer: Pulse Job is a platform connecting job seekers with employers. We do not guarantee employment or verify all employer claims. Users should exercise due diligence when applying for jobs or hiring candidates.

  1. Home
  2. Jobs
  3. Senior Associate - Cyber Se...

Senior Associate - Cyber Security (Pentest)

Back to Jobs
P

Senior Associate - Cyber Security (Pentest)

PwC

Location

Hanoi • Ho Chi Minh City

Experience

Senior

Posted

Jul 7, 2026

Apply by

September 21, 2026

Applicants

0

Early applicantFull-timeWork from Office

Sign in to apply on web or download the app for more options.

Job Description

**Line of Service** Assurance **Industry/Sector** Not Applicable **Specialism** Cybersecurity & Privacy **Management Level** Senior Associate **Job Description & Summary** We are PwC, a global professional services company and a Big Four firm. We are seeking candidates who have experience in penetration testing, red teaming or secure source-code review/development for the role of Senior Consultant/Penetration Tester within the Cybersecurity and Privacy team. The role may be based either at our Hanoi office or Ho Chi Minh City offices. Joining PwC, the successful candidate will have opportunities to collaborate with cybersecurity experts throughout the PwC global network and deliver cybersecurity services for clients in various sectors. ● Work in a highly innovative and transformative business ● Work/life balance with access to flexible work arrangements ● Salary packaging – to suit your personal and financial circumstances ● Professional certification sponsorship – to develop your talent and enhance knowledge ​ **Responsibilities:** - Lead the team in cybersecurity assessments, covering web application and mobile application penetration testing in accordance with OWASP Top 10 framework and CWE Top 25 most dangerous software weaknesses - Lead the team in network penetration tests and vulnerability assessments to identify potential issues against network access control and network segmentation - Conduct source code reviews to identify potential logical errors in program flows, misconfigurations, and exploitable vulnerabilities in the applications - Conduct red teaming engagement and cyber-attack simulation testing to assess clients**’** cybersecurity strategies - Research, collect and analyse cyber threat intelligence from threat actors - Engage in establishing network infrastructure for red teaming activities, including but not limited to command & control ("C2") servers, SMTP relay mail servers, web servers, and reverse proxies - Design and launch phishing attacks to generate reports for increasing awareness of employees regarding different types of phishing techniques - Provide pragmatic recommendations on the identified risks - Deliver both management**-**level and detailed technical reporting of observations, along with assisting in giving presentations to both technical and business stakeholders - Train, coach and mentor junior penetration testers - Lead day-to-day penetration testing delivery activities, including client and internal communication management, as well as technical quality control - Work actively in supporting and following up on proposal processing in accordance with client expectations on a cross-border and global multinational basis - Continuously research and follow up on the latest IT security challenges and technologies (mobile, digital trust, IoT, cloud, blockchain etc**.**) **You are someone with:** - 3+ years of proven experience in conducting either network and infrastructure or web/API or mobile application penetration testing and be able to independently manage engagement delivery - Experience in leading and supervising engagement teams in penetration testing and vulnerability assessment projects - Thorough understanding of common infrastructure and web application vulnerabilities and common vulnerability categorisations such as OWASP and CVSS - Knowledge of common software security vulnerabilities (CWE Top 25 Most Dangerous Software Weaknesses) - Experience in penetration testing and vulnerability assessment across one of the several following domains: web and mobile applications, cloud and container security, reverse engineering, applied cryptography, networks infrastructure, etc. - Ability to work under pressure and deliver quality work in tight timelines - Demonstrated experience of working with diverse stakeholders - Excellent communication and interpersonal skills - Willingness to take on new challenges, gain new skills and work collaboratively in a dynamic and rapidly growing team - One of the following industry certifications: **OSCP, OSWA, eWPT, eCPPT, CRTP, PNPT, CREST CRT/CCT, or equivalent** **Preferred:** - Experience in conducting red teaming engagements and cyber-attack simulation testing - Experience in developing hacking scripts/tools - Secure development and/or DevSecOps experience, including experience of securing code before deployment, code review, and vulnerability and dependency management - Ability to communicate strategic information security topics, policies, and standards as well as risk-related concepts to technical and non**-**technical audiences - Experience in bug bounty programs or CVE hunting is **an advantage** - Preference will be given to candidates who hold relevant cloud certifications: **AWS, Azure, GCP** - Strong preference will be given to candidates who hold one of the following industry certifications: **OSWE, OSEP, OSCE, CRTO, CRTE, eCPTX, eWPTX, SANS** - Strong preference will be given to candidates who hold one of the following professional certifications: **CISSP, CCSP, CSSLP, CISM, CRISC, PMP** **Education** *(if blank, degree and/or field of study not specified)* Degrees/Field of Study required: Degrees/Field of Study preferred: **Certifications** *(if blank, certifications not specified)* **Required Skills** **Optional Skills** Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Learning Agility, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture {+ 8 more} **Desired Languages** *(If blank, desired languages not specified)* **Travel Requirements** Up to 20% **Available for Work Visa Sponsorship?** No **Government Clearance Required?** No **Job Posting End Date** September 21, 2026

Key Responsibilities

  • Lead cybersecurity assessments including web and mobile application penetration testing using OWASP and CWE frameworks.
  • Conduct network penetration tests and vulnerability assessments to identify access control and segmentation issues.
  • Perform source code reviews to identify logical errors, misconfigurations, and exploitable vulnerabilities.
  • Execute red teaming engagements and cyber-attack simulation testing to assess client cybersecurity strategies.
  • Research, collect, and analyze cyber threat intelligence from threat actors.
  • Establish network infrastructure for red teaming activities, including C2 servers and reverse proxies.
  • Design and launch phishing attacks to generate awareness reports for employees.
  • Provide pragmatic recommendations on identified risks and deliver management-level and technical reports.
  • Train, coach, and mentor junior penetration testers.
  • Manage day-to-day penetration testing delivery, including client communication and technical quality control.
  • Support proposal processing and follow-up on a cross-border basis.
  • Research and follow up on latest IT security challenges such as IoT, cloud, and blockchain.

Requirements

  • OSCP
  • OSWA
  • eWPT
  • eCPPT
  • CRTP
  • PNPT
  • CREST CRT/CCT

Skills Required

Penetration TestingRed TeamingSource Code ReviewOWASP Top 10CWE Top 25Network SecurityWeb Application SecurityMobile Application SecurityCloud SecurityContainer SecurityReverse EngineeringApplied CryptographyThreat IntelligencePhishing SimulationVulnerability AssessmentLeadershipCommunicationInterpersonal SkillsAbility to work under pressureCollaborationMentoringProblem SolvingCyber-attack SimulationHacking Script DevelopmentDevSecOpsBug Bounty ProgramsCVE HuntingAWSAzureGCPStrategic CommunicationRisk Communication

Benefits

  • Flexible work arrangements
  • Salary packaging
  • Professional certification sponsorship
  • Work/life balance

App exclusive · Free

Smart Job AI Coach

Your personal interview coach on every job — readiness tips, profile improvements, and role-specific prep. Available only in the Pulse Job app.

Interview readiness

See how prepared you are and what to improve for each role.

Personalized tips

Actionable suggestions based on your profile and the job.

After you apply

Keep coaching momentum from job detail through application success.

Get Smart Job AI Coach in the appFree on iOS and Android

Job Overview

Salary

—

Job Type

Full-time

Experience

Senior

Location

Hanoi • Ho Chi Minh City

Application Deadline

September 21, 2026

Total Applicants

0

About PwC

P

PwC is a leading company in the Technology sector, known for innovation and employee-centric culture.

View Company

Similar roles for you

Matched using this role's title and skills. Open the job search anytime to see every listing.

OpenFX logo

InfoSec - Application & Cloud Security Engineer (L2)

OpenFX

Full-timeEasy applyHybrid
Bangalore·Mid·Jul 7
Ad Hoc logo

Senior Cloud Network Engineer

Ad Hoc

150,000–190,000 / Year

Full-timeEasy applyWork from Home
·Senior·Jul 10
Brightvision logo

Application Security Engineer

Brightvision

100,000–150,000 / Year

Full-timeEasy applyWork from Home
Remote·Mid·Jul 10
Brightvision logo

Application Security Engineer

Brightvision

100,000–150,000 / Year

Full-timeEasy applyWork from Home
Remote·Mid·Jul 10
Brightvision logo

Application Security Engineer

Brightvision

100,000–150,000 / Year

Full-timeEasy applyWork from Home
Remote·Mid·Jul 10
Clio logo

Application Security Developer

Clio

116,500–157,500 / Year

Full-timeEasy applyHybrid
Toronto·Mid·Jul 10
Browse all jobs