T&T Manager - Penetration Tester - MY

Date: 8 Oct 2025

Location: Kuala Lumpur, MY

Are you ready to unleash your potential?

At Deloitte, our purpose is to make an impact that matters for our clients, our people, and the communities we serve.

We believe we have a responsibility to be a force for good, and WorldImpact is our portfolio of initiatives focused on making a tangible impact on society’s biggest challenges and creating a better future. We strive to advise clients on how to deliver purpose-led growth and embed more equitable, inclusive as well as sustainable business practices.

Hence, we seek talented individuals driven to excel and innovate, working together to achieve our shared goals.

We are committed to creating positive work experiences that foster a culture of respect and inclusion, where diverse perspectives are celebrated, and everyone is recognised for their contributions.

Ready to unleash your potential with us? Join the winning team now!

Identifies and mitigates cyber risks by assessing systems, networks, and applications for vulnerabilities. They simulate real-world attacks, document findings, and provide security improvement recommendations. Staying updated on cybersecurity trends, they collaborate with other professionals to develop comprehensive security strategies.

• Conduct security assessments on systems, networks, and applications.
• Simulate cyber attacks to identify system vulnerabilities.
• Typical security testing activities include:
  • Software/Web Application/Web Services penetration testing
  • Network Penetration Testing
  • Mobile Application Penetration Testing
  • Thick Client Penetration Testing
• Develop and execute penetration testing methodologies.
• Prepare detailed reports on the findings of penetration tests.
• Recommend and implement improvements to security policies.
• Stay updated with the latest penetration testing tools and techniques.
• Train staff on security awareness and procedures.
• Collaborate with IT staff to improve system security.

Your role as a leader:

At Deloitte, we believe in the importance of empowering our people to be leaders at all levels. We connect our purpose and shared values to identify issues as well as to make an impact that matters to our clients, people and the communities. Additionally, Consultants across our Firm are expected to:

• Demonstrate a strong commitment to personal learning and development
• Understand how our daily work contributes to the priorities of the team and business
• Understand the set expectations and demonstrate accountability in keeping personal performance on track
• Actively focus on developing effective communications and relationship-building skills with stakeholders, clients and team.
• Demonstrate an appreciation for working with others
• Understand what is fundamental to Deloitte’s success as a business
• Demonstrate integrity and an awareness of strengths, differences, and personal impact
• Develop their understanding of Deloitte and offer a fresh perspective.

Requirements:

If you are someone with:

• Bachelor's degree in information security, information systems management, computer science, engineering, or other related discipline.
• More than 7 years of experience in information technology, IT audits, or cyber security.
• Proven experience as a Penetration Tester or similar role in cybersecurity.
• Proficiency in using automated tools and manual testing techniques.
• Strong understanding of common vulnerabilities and exploits.
• Relevant certifications (e.g., CEH, OSCP, CREST) are a plus.
• Excellent problem-solving and analytical skills.
• Must be able to work under pressure and produce content to tight timelines.
• Ability to self-manage, prioritizing a variety of tasks.

Due to volume of applications, we regret only shortlisted candidates will be notified.

Please note that Deloitte will never reach out to you directly via messaging platforms to offer you employment opportunities or request money or your personal information. Kindly apply for roles that you are interested via this official Deloitte website.

#LI-DA2

#LI-DA2

Requisition ID: 110879

In Malaysia, the services are provided by Deloitte and other related entities in Malaysia ("Deloitte in Malaysia"), which are affiliates of Deloitte Southeast Asia Ltd. Deloitte Southeast Asia Ltd is a member firm of Deloitte Touche Tohmatsu Limited. Deloitte in Malaysia, which is within the Deloitte Network, is the entity that is providing this Website.