Security Specialist – Penetration Testing – Senior

  • Type: Full Time
  • Job #

Security Specialist – Penetration Testing – Senior

Pay Rate: (flexible)

Location: Orillia, Ontario

Contract Length: 5 Months, Hybrid

 

We at Raise are hiring right now for one of our Clients. If you’re interested, apply below for your chance to join a great place to work.

 

Responsibilities:

  • Red team exercises, threat hunting, network vulnerability assessments, conducts penetration tests, vulnerability assessments, code reviews related to the OPP and OPS province wide I&IT infrastructure, applications and information resources.
  • Defines, evaluates, and assesses security requirements and safeguards for systems environments and IT projects.
  • Ensures the incorporation of IT security and contingency measures in the development and secure deployment of systems.
  • Advises on the identification, analysis, and resolution of specific security factors, risks, vulnerabilities; protection of personal privacy issues; and appropriate industry and international security standards.
  • Carry out information and information technology (I&IT) security projects and tasks in the Ontario Provincial Police as assigned by the OPP Chief Security Office and/or cluster I&IT management.

General Skills:

  • Strong understanding and expertise in security architecture, application and network security testing.
  • Experience in vulnerability assessment/penetration testing of web applications by identifying, analyzing and exploiting common vulnerabilities contained in web applications by using manual techniques and automated tools appropriate for enterprise use.
  • Experience with vulnerability assessment methodologies, tools and techniques used to conduct network vulnerability assessments, threat hunting, red team exercises and penetration testing.
  • Knowledge of techniques to secure information assets and the planning, design, and implementation of security technologies, safeguards and controls.
  • Proven techniques to discover gaps or weaknesses in security architecture to identify and mitigate known security threats, bugs, vulnerabilities and/or inherent weaknesses.
  • Knowledge and understanding of relevant legislation and corporate directives related to the security and confidentiality of information (e.g. Freedom of Information and Protection of Privacy Act) in order to identify and assess areas of concern and risk.
  • Solid knowledge of current security and contingency technology and techniques (e.g. digital signature, encryption, access controls, firewalls, authentication, virus protection, etc. ); and a proven working knowledge of security audit procedures and protocols.
  • Experience in establishing secure environments at a network, operating system or application level.
  • Experience with implementing security on complex and distributed systems in a high sensitive, law enforcement environment.
  • Experience in writing reports, documenting risks and making recommendations for a diverse audience including executive/non-technical management level and technical resources.
  • Awareness of emerging IT trends and directions, especially as related to security, privacy and compliance in a public sector environment.
  • Excellent analytical, problem-solving, and decision-making skills; written and verbal communication skills; interpersonal and negotiation skills.
  • A team player with a track record for meeting deadlines, managing competing priorities and client relationship management experience.

Desirable Skills:

  • Experience with multiple operating systems (such as Windows and Linux), multiple programming languages (such as.NET and Java), multiple architecture, development methodologies, and common network services and protocols.
  • Experience in Penetration Testing, Red Team Exercises and Threat Hunting methods along with hands on experience with relevant tools, tactics, techniques and procedures.
  • Knowledge and understanding of Information Management principles, concepts, tactics, techniques and procedures.
  • · Experience in Incident Response (IR), business recovery and Disaster Recovery (DR) planning.
  • Experience in performing threat and risk assessment.
  • Experience in Public Key Infrastructure (PKI) development and operation.
  • Experience in secure design frameworks, principles and methodologies as part of systems development projects in an agile, fast paced technology driven public safety/law enforcement business operation.
  • Experience in Intrusion Detection Systems (IDS), intrusion Protection Systems (IPS) and Security Information and Event Management (SIEM) systems.
  • Experience in mitigation tools for malicious software.
  • Experience in network monitoring, threat hunting and related tools. tactics, techniques and procedures.
  • Experience in incident response and forensic investigation tools, techniques and procedures.
  • Experience with source code review (DAST, SAST), log collection and analysis.
  • Knowledge and understanding of Information Management principles, concepts, policies and practices.

Deliverables:

  • Lead threat hunting and red team exercises to simulate cyber-attacks and identify vulnerabilities.
  • Conduct penetration tests, code reviews, and vulnerability assessments for OPP systems and applications
  • Define and assess security architecture requirements across systems and projects.
  • Ensure IT security and contingency measures are integrated into system development.
  • Advise on security risks, privacy concerns, and compliance with industry standards.

Must Haves:

  • 10+ years experience red team tactics and techniques
  • 10+ years experience network threat hunting
  • 10+ years experience network and application security 

Looking for meaningful work? We can help!

Raise is an established hiring firm with over 65 years of experience. We believe strongly in making the world a better place through work, which is why we’re a certified B Corporation and donate 10% of our profits to charity.

 

We strive to build teams that reflect the diversity of the communities we work in. We encourage all qualified applicants to apply, including people from traditionally underrepresented groups such as women, visible minorities, Indigenous peoples, people identifying as LGBTQ2SI, veterans, and people with visible/nonvisible disabilities.

 

We have a dedicated webpage for accommodations where you can learn more about what we offer, and request accommodation: https://raise.jobs/accommodations/

 

In order to submit candidates for roles, our clients will sometimes require personal information to confirm the identity of applicants and their legal status to work. Raise will never ask you for personal or banking information unless you have been selected for a job. If you are ever unsure about the legitimacy of this or another job posting by Raise (or have any other questions), please contact us at +1 800-567-9675 orhello@raiserecruiting.com

Security Specialist – Penetration Testing – Senior

  • Information Technology
  • Full Time
APPLY NOW

Similar job opportunities:

ES Cybersecurity Architect
Quality Assurance Specialist
Automation Developer – Intermediate
Cybersecurity Specialist
Security Architect – Senior
Test Technician III
APPLY NOW

When you apply for a job with us, you consent to the use of automated screening tools — including voice and text analysis — for this job and future jobs with Raise. These tools help us review resumes, assess qualifications, and make initial recommendations; however, all final reviews and hiring decisions are made by people. Questions? Contact us at hello@raiserecruiting.com

Search all jobs:

Search jobs by title or keyword
Click here
SEARCH JOBS

Keep exploring!

AI for job seekers: 5 AI Prompts to help

The Reality of Online Job Applications 

5 Tips for Students Seeking Summer Jobs in May 

Is Raise Legit? Here’s everything you need to know

Why Choose Contingent Work?

How Skills-Based Hiring is Changing Job Searching

SEE ALL JOB & CAREER RESOURCES