Penetration Tester

Must Haves

Security Specialist - Penetration Testing

Description

**Responsibilities**:
Defines, evaluates, and assesses security architecture requirements for systems environments and IT projects.

Ensures the incorporation of IT security and contingency measures in the development of systems.

Advises on the identification, analysis, and resolution of specific security factors, risks, vulnerabilities; protection of personal privacy issues; and appropriate industry and international security standards.

Carry out information and information technology (I&IT) security projects and tasks in the Ontario Public Service as assigned by Corporate Security or cluster I&IT management

General Skills

Experience performing penetration tests and red team assessments.

Experience with vulnerability assessment methodologies, tools and techniques used to conduct network vulnerability assessments and penetration testing

Knowledge of techniques to secure information assets and the planning, design, and implementation of security technologies.

Proven techniques to discover gaps or weaknesses in security architecture to identify and mitigate known security threats or inherent weaknesses.

Strong understanding and expertise in security architecture.

Knowledge and understanding of relevant legislation and corporate directives related to the security and confidentiality of information (e.g. Freedom of Information and Protection of Privacy Act) in order to identify and assess areas of concern and risk.

Solid knowledge of current security and contingency technology and techniques (e.g. digital signature, encryption, access controls, fire-walls, authentication, virus protection, etc. ); and a proven working knowledge of security audit procedures and protocols.

Experience with implementing security on complex and distributed systems.

Experience in writing reports to a large audience both at an executive/non-technical management level and technical resources.

Awareness of emerging IT trends and directions, especially as related to security.

Excellent analytical, problem-solving, and decision-making skills; written and verbal communication skills; interpersonal and negotiation skills.

A team player with a track record for meeting deadlines, managing competing priorities and client relationship management experience.

Experience with multiple operating systems such as Windows and Linux, multiple programming languages such as.NET and Java, and common network services and protocols.

**Skills**:
Experience and Skill Set Requirements

Mandatory Requirement:
Current penetration test experience

PENETRATION TEST EXPERIENCE: 35%

TECHNICAL EXPERTISE: 25%

ANALYTICAL AND PROBLEM SOLVING SKILLS: 20%

Demonstrated analytical and problem solving skills to determine alternative and innovation solutions where guidelines or policies exist but may not address new and emerging I&IT trends. Ability to conceptualize, interpret and evaluate security exposures across multiple domains.

COMMUNICATION AND RELATIONSHIP BUILDING SKILLS: 10%

Experience with writing reports aimed at both the executive/non-technical management level, and technical analyst level. Oral and written communication, mediation, negotiation, consultative and advisory skills. Skills to provide training in the use of commercial security assessment tools and scanners. Stakeholder management, partnership and relationship building skills to initiate and nurture strong working relationships with internal and external colleagues.

LEADERSHIP AND PROJECT MANAGEMENT SKILLS: 10%

Proven ability to provide leadership, advice and direction on business risk planning and co-ordination. Demonstrated project methodology and management skills to provide project planning and technical leadership on concurrent projects.

**Job Type**: Contract
Contract length: 12 months

**Salary**: From $100.00 per hour

Expected hours: 36.25 per week

**Benefits**:

- Dental care
- Extended health care
- Paid time off

**Experience**:

- Penetration Testing: 10 years (required)
- .NET: 8 years (required)
- JAVA: 6 years (required)
- Security: 7 years (required)

Ability to Commute:

- Toronto, ON (required)

Ability to Relocate:

- Toronto, ON: Relocate before starting work (required)

Application deadline: 2024-03-08