Lieu de travail : Canada
Canada
Horaire : 37.5
37.5
Secteur d’activité :
Solutions technologiques
Description du poste :
Responsibilities :
- Conduct Penetration Tests : Perform thorough and methodical penetration testing on web applications, network infrastructures, and other systems to identify security vulnerabilities.
- Vulnerability Assessment : Assess and analyze security weaknesses, and provide actionable recommendations to mitigate risks and improve overall security posture.
- Report Findings : Document and communicate findings clearly and effectively to both technical and non-technical stakeholders.
Prepare comprehensive reports with recommendations for remediation.
- Develop and Execute Test Plans : Design and execute detailed test plans.
- Stay Current : Keep up-to-date with the latest security trends, vulnerabilities, and tools to ensure testing methodologies are current and effective.
- Collaborate with Teams : Work closely with IT and development teams to understand system architectures, provide guidance on security best practices, and support the implementation of security improvements.
- Perform Risk Assessments : Evaluate and assess potential security risks related to new and existing systems and technologies.
- Compliance : Ensure that penetration testing practices comply with relevant regulations, standards, and organizational policies.
Requirements :
- Technical Skills :
- Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, and Kali.
- Knowledge of common web application vulnerabilities (e.g., OWASP Top Ten) and network security principles.
- Analytical Skills : Strong analytical and problem-solving abilities with attention to detail.
- Communication : Excellent verbal and written communication skills, with the ability to convey complex technical concepts to non-technical stakeholders.
- Ethical Standards : Demonstrated understanding of ethical hacking principles and a commitment to maintaining high ethical standards.
Preferred Qualifications :
- Experience with penetration testing in cloud environments (e.g., AWS, Azure) and PCI testing.
- Familiarity with security standards and frameworks.
Certifications :
Relevant certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), or GIAC Penetration Tester (GPEN) are highly desirable.
J-18808-Ljbffr
Information security specialist (penetration testing)
Conduct Penetration Tests: Perform thorough and methodical penetration testing on web applications, network infrastructures, and other systems to identify security vulnerabilities. Vulnerability Assessment: Assess and analyze security weaknesses, and provide actionable recommendations to mitigate ri...
Information Security Specialist (Penetration Testing)
Information Security Specialist (Penetration Testing). Perform thorough and methodical penetration testing on web applications, network infrastructures, and other systems to identify security vulnerabilities. Assess and analyze security weaknesses, and provide actionable recommendations to mitigate ...
Information Security Specialist
Information Security Specialist. Work with security team to understand and accommodate network security requirements for application. Oversee, monitor, enforce enterprise frameworks and methodologies that relate to technology controls/information security activities. Participate in the investigation...
Security Tester (Penetration Testing), Deloitte Global Technology
Typical security testing activities: SAST/DAST Software/Web Application/Web Services/ penetration testing API penetration testing Network Penetration Testing Mobile Application Penetration Testing Thick Client Penetration Testing Architecture Security Analysis and Threat Modeling as required. Suppor...
Information Security Governance & Compliance Specialist
The information security team reports to the global chief information security officer (CISO). Information Security Governance & Compliance Specialist. The scope of the information security function includes all strategic security planning and control oversight to ensure effective risk mitigatio...
Senior Information Security Compliance Specialist
Cloud, Information Security, Cyber Security, ERP, Compliance, Technology, Security, Legal. Demonstrate experience in the design, implementation and set to work networked security solutions to meet Government of Canada (GC) ITSG-33 security controls for classified projects or solutions. Audit Special...
Title Specialist Information Security
Contribute to the development of Information Security standards and procedures for business units consistent with corporate security objectives and generally accepted and leading-edge Information Security practices and professional security standards and in coordination with IT Process Development L...
Senior CIEM Specialist, Information Security & IAM
Identifies opportunities to strengthen the capability of the information security organization at BMO, such as: sharing expertise to promote technical development, mentoring employees, building communities of practice and networks across information security and technology. Provides leadership withi...
Offensive Security Professional - Threat-Led Penetration Testing (TLPT) and Red Teaming
In the role of a Security Professional within Kyndryl Offensive Security, focusing on Threat-Led Penetration Testing (TLPT) and Red Teaming, you will be instrumental in executing complex security assessments and advanced penetration testing. As a true cybersecurity trailblazer, you'll be the driving...
Senior CIEM Specialist, Information Security & IAM
Identifies opportunities to strengthen the capability of the information security organization at BMO, such as: sharing expertise to promote technical development, mentoring employees, building communities of practice and networks across information security and technology. Provides leadership withi...