PlanIT
Responsibilities
- Perform network and application level internal and external penetration testing assessments using industry methodologies against a pre-determined scope of systems
- Creating professional reports for clients that detail assessment findings, and recommendations
- Mentoring junior security professionals with desire to learn the security testing trade
- Manage and oversee vulnerability programs to detect and remediate vulnerabilities in organizations
- Lead meetings, chair conference calls, action follow-ups, and proactively interact with clients to move projects forward to ultimate completion
- Strategize in developing innovative security testing services for emerging technologies and standards
- Assisting sales team with pre-sales activities, needs analysis, and solution design
- Attending industry events and leading webinars
- Travel to company offices and client work sites across Canada
Technical Skills:
- Perform web application scanning and using various tools to discover vulnerabilities such as cross-site scripting, SQL injection, cross site request forgery, remote code execution
- Perform segmentation testing to validate integrity of segmentation and network boundary controls
- Knowledge of OWASP standards and assessing web applications and software development again the OWASP Top 10
- Working knowledge of symbolic execution, malware analysis, pivoting, source code scanning, exploit writing
- Experience and knowledge with industry tools, security threats, attacks & countermeasures, sources of industry information and standards
- Configuration review of information technology systems including network devices, applications, databases, virtual environments
- Knowledge of cloud security platforms and relevant security measures
- Knowledge of encryption algorithms, techniques, deployments
- Develop and test exploits and scripts
- Experience with Social Engineering techniques
Education and Work Experience:
- Degree in Information Security or related field is an asset
- At least 5 years of experience in penetration testing
- Minimum 7 years of experience in an Information Technology field
- Minimum 7 years of experience working in Information Security domains
- Minimum 7 years of experience measuring security controls, IT auditing, business processes, providing advice, and/or related security consulting experience
Industry Certifications: (or equivalent penetration testing certifications)
- Certified Information Systems Security Professional (CISSP)
- GIAC Web Application Penetration Tester (GWAPT)
- GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
- GIAC Mobile Device Security Analyst (GMOB)
- Offensive Security Certified Professional (OSCP)
- Offensive Security Certified Expert (OSCE)
If you qualify for this opportunity, please apply!
Click here to view and apply for current job openings.
Plan IT is an equal opportunity employer. Thank you in advance for your interest, however, only those selected for consideration will be contacted.