Penetration Tester

2 weeks ago

remote Mississauga Ontario Canada fulltime October Control Gap Full time
Penetration Tester / Offensive Security Consultant
Location: Remote (Canada) Toronto, Ontario, CA preferred Company: Control Gap, a CyberGuard Advantage company
About Us CyberGuard Advantage is a modern cybersecurity compliance and risk advisory firm backed by Atlantic Street Capital. We help organizations navigate complex privacy, compliance, and security landscapes—covering SOC, PCI, ISO, HITRUST, and more.
Control Gap, now part of CyberGuard, is Canada's leading PCI compliance and offensive security consultancy. Together, we deliver one of North America's most comprehensive cybersecurity and compliance platforms—helping Fortune 50 enterprises, financial institutions, and emerging tech companies safeguard their most critical assets.
About the Role We're looking for an experienced Penetration Tester / Offensive Security Consultantto help build and lead our growing Offensive Security practice. You'll simulate real-world cyberattacks, identify weaknesses before the bad guys do, and help our clients strengthen their defenses. If you're passionate about offensive security, thrive in complex technical environments, and want to work alongside some of the brightest minds in cybersecurity—this is your chance to make real impact.
What You'll Do
  • Conduct full-scope penetration testing on networks, applications, cloud environments, and APIs
  • Simulate advanced adversary techniques to evaluate enterprise security posture
  • Deliver detailed technical and executive reports that tell the story behind your findings
  • Mentor and coach junior security testers and ethical hackers
  • Collaborate directly with clients, helping them understand vulnerabilities and prioritize remediation
  • Research and develop new testing methodologies, scripts, and tools for emerging technologies
  • Partner with sales teams on scoping, pre-sales demos, and client workshops
  • Occasionally travel to client sites across Canada for testing and assessments

What You Bring
  • 3+ years in penetration testing or red teaming (network, web app, or mobile)
  • 5+ years in IT or Information Security overall
  • Deep knowledge of OWASP Top 10, vulnerability exploitation, and post-exploitation techniques
  • Experience with tools like Burp Suite, Metasploit, Cobalt Strike, Nmap, Wireshark, and custom scripts
  • Familiarity with cloud environments (AWS, Azure, GCP) and secure configuration assessments
  • Understanding of encryption, malware analysis, pivoting, or exploit development is a plus
  • Certifications such as OSCP, OSCE, GXPN, PNPT, GWAPT, or GMOB are highly valued

Soft Skills That Set You Apart
  • You're curious, analytical, and thrive under pressure
  • Excellent communication—you can explain technical exploits to execs and engineers alike
  • Organized, dependable, and passionate about helping clients stay one step ahead

Why Join Us
  • Competitive salary + 4 weeks paid vacation
  • Company-paid medical, dental, and wellness benefits
  • RRSP sharing, paid certifications, and ongoing professional development
  • Fully remote flexibility with team events throughout the year
  • A culture that values expertise, integrity, and innovation—where your work actually matters

  • Principal Penetration Tester

    1 week ago

    Scarborough, Ontario, Canada Scotiabank Full time

    Requisition ID: 134624 Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture. The Team The role: The Cyber Security Red Team (CSRT) is looking for a Senior Principal Penetration Tester, with expertise in network penetration testing and experience conducting Red Team engagements, to join our internal...

  • Senior Penetration Tester

    10 hours ago

    (s): Canada : Ontario : Toronto Scotiabank Global Site Full time

    Requisition ID: 235305Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.The TeamScotiabank's Penetration testing Team Services & Operations is responsible for delivery of offensive security services across Scotiabank globally, conducting annual & release penetration testing engagements, control...

  • Penetration Tester

    3 weeks ago

    , , Canada Software Secured Full time

    Software Secured is a leading Penetration Testing as a Service (PTaaS) company, with a head office in beautiful Ottawa, Canada. We help software development teams get ahead of hackers, using a suite of cybersecurity services and products. Software Secured focuses on helping startups, scaleups, and SMBs comply with industry-specific Governance, Risk and...

  • Remote AI/ML Penetration Tester II

    5 days ago

    , , Canada NetSPI Full time

    A leading cybersecurity firm is seeking a Security Consultant II (AI/ML Penetration Tester) to enhance cybersecurity through advanced testing of AI and ML systems. The role involves conducting penetration tests on web applications and APIs while presenting findings to clients. The ideal candidate has a bachelor's degree and 2-4 years of experience in...

  • Security Consultant II

    5 days ago

    , , Canada NetSPI Full time

    Security Consultant II (AI/ML Penetration Tester) Join to apply for the Security Consultant II (AI/ML Penetration Tester) role at NetSPI *This is a remote position, and candidates must be located in Ontario, CA NetSPI® pioneered Penetration Testing as a Service (PTaaS) and leads the industry in modern pentesting. Combining world-class security professionals...

  • Remote Mobile App Penetration Tester II

    3 weeks ago

    , , Canada NetSPI Inc. Full time

    A cybersecurity firm in Canada is seeking a Security Consultant II to conduct mobile application penetration testing. The ideal candidate will have 2-3 years of experience in application security testing and familiarity with tools like Kali Linux and Burp Suite. You'll work closely with clients to identify vulnerabilities and improve their security...

  • Freelance AI/ML Penetration Tester

    2 weeks ago

    Canada Mindrift Full time

    This opportunity is only for candidates currently residing in the specified country. Your location may affect eligibility and rates. Please submit your resume in English and indicate your level of English proficiency.At Mindrift, innovation meets opportunity. We believe in using the power of collective intelligence to ethically shape the future of AI.What...

  • Ethical Hacker

    13 hours ago

    Remote (Canada) Packetlabs Full time

    We are a passionate team of highly trained, proactive ethical hackers. We provide expert-level penetration testing services that are thorough and tailored to help foster a safe digital space where everyone has the right to privacy and security. Packetlabs consultants find weaknesses others overlook and continuously learn new ways to evade controls. We hold...

  • Cyber Security Analyst

    15 hours ago

    Markham, Ontario, LRW, Canada Sentrex Full time

    Position Type: Full TimeDepartment: ITWork Location: OntarioWork Arrangement:      RemoteWork Hours: Monday to Friday - standard business hoursTravel Required: NoA proudly Canadian company, Sentrex Health Solutions is a fully integrated specialty distributor and patient support provider for pharmaceutical manufacturers, physicians, and their patients. We...

  • Lead Security Engineer

    18 hours ago

    Remote / British Columbia / Ontario, Canada Swiftly Full time

    Company Description Swiftly is on a mission to help cities move more efficiently. We are the leading transit data platform for agencies to share real-time passenger information, manage day-to-day operations, and improve service performance. Today, over 180 transit agencies in 12 countries – including LA Metro, MARTA, SEPTA, and MBTA – rely on Swiftly to...