Job description :
Key Accountabilities :
- Conducting vulnerability assessments and penetration testing in cloud and on-prem environments against applications (web, mobile, APIs and desktops).
- Analyzing vulnerabilities and delivering clear and coherent written reporting, identifying risks, and providing mitigation recommendations
- Design and implement security automation as part of the continuous integration (CI) and continuous delivery (CD) pipeline of key Business teams in order to proactively uncover security vulnerabilities in a shift-left approach
- Design and Implement secure architecture to protect the confidentiality, integrity, and availability of the CI and CD pipelines of key Business teams
- Work effectively with various stakeholders from development, quality assurance (QA), program management, and security teams
- Work with various stakeholders and business teams to provide security automation tools maintenance training
- Build internal knowledge, processes, KPIs, and tools
- Create artifacts for various stakeholders and customers
Key Competencies :
- 5+ cyber security expertise
- Minimum 3+ years experience in application security (preferably with DevSecOps Implementation)
- Understanding of DevSecOps / CI / CD Integration and Agile Security testing methodology
- Good understanding of secure software development lifecycle processes across technologies
- Strong knowledge on methodologies like OWASP , SANS etc.
- Ability to conduct vulnerability assessment and penetration testing using popular tools Fortify, Veracode, Rational AppScan, BurpSuite, etc.
- Understanding of DevSecOps / CI / CD Integration and Agile Security testing methodology
- Security Certifications preferred CEH, OSWE, CSSLP, GWAPT
- Experience of at least one cloud platform (Azure, GCP).
- Experience in at least one scripting language (Bash, Python, Ruby etc)
- Experience containerization and Kubernetes
- Experience of automating and templating security processes and documentation for compliance purposes.
- Experience of at least one Infrastructure as Code solution (Terraform, SCALR, Ansible, Chef etc)
Successful candidates must be fully vaccinated against infection by COVID-19. Candidates who are unable to be vaccinated due to a personal characteristic protected under applicable human rights legislation may request to be exempt from this requirement.
We will do our best to accommodate those who are unable to be vaccinated.
Job 59918
Application Security Analyst
Design and implement security automation as part of the continuous integration (CI) and continuous delivery (CD) pipeline of key Business teams in order to proactively uncover security vulnerabilities in a shift-left approach. Minimum 3+ years experience in application security (preferably with DevS...
Cerner Clinical Support Analyst
Cerner Clinical Support Analyst (10)– our client requires ten (10) Clinical Support Analysts with prior Cerner experience to provide Clinical at the elbow support to help with work on the floor, directly with clinical staff including nurses, allied health, techs, etc. ...
Guidewire Lead Business Analyst (BillingCenter)
Guidewire BillingCenter Lead Business Analyst. Guidewire ACE/Associate Certified Business Analyst. As a digital transformation partner to more than 700+ clients, LTIMindtree brings extensive domain and technology expertise to help drive superior competitive differentiation, customer experiences, and...
Cyber Security (Venafi) Specialist
You will work closely with cross-functional teams, including developers, security professionals, and system administrators. Define and enforce security policies related to machine identities using automation and workflows. Work closely with security teams to discover and manage machine identities. U...
Information Security Analyst | Analyste de la sécurité de l’information
Reporting to the Manager, Technology Infrastructure, The Information Security Analyst will primarily protect Esri Canada's computer systems, networks and sensitive information from cyber threats, attacks, and unauthorized access. Esri Canada has an exceptional opportunity for an Information Security...
Cyber Security Analyst
Encore is seeking a highly adaptable and motivated Cyber Security Analyst to join our Information Technology division. Encore recherche un analyste en cybersécurité très adaptable et motivé pour rejoindre notre division des technologies de l'information. Manage and monitor all installed security sys...
Cyber Security Engineer
As a Cyber Security Engineer, you will be responsible for safeguarding an organization's computer networks and systems. You will utilize your expertise in cybersecurity principles, practices, and tools to protect sensitive data, prevent unauthorized access, and mitigate potential security threats. C...
Budget Analyst (Technical & Resource Support E)
THE OPPORTUNITY: BUDGET ANALYST (TECHNICAL & RESOURCE SUPPPORT E) In this position, you will: Work directly with budget holders, review and monitor expenditure against budget, investigate variances, determine and initiate corrective action when necessary, and make appropriate recommendations to mana...
security guard supervisor
Education: Secondary (high) school graduation certificate.Experience: 1 year to less than 2 years.Be the point of contact when in need to handle emergency situations.Co-ordinate activities with other work units or departments.Prepare and submit progress and other reports.Requisition or order materia...
Online Data Analyst Canada (French Language)
Online Data Analysts for a project aimed at improving the content and quality of digital maps, which are used by millions of users globally. We are hiring freelance English & French speaking Online Data Analyst’s for a project aimed at improving the content and quality of digital maps, which are...