Our client, Bell Canada, is looking for an IT Security Specialist (Purple Team) for a long-term contract. If you possess both cutting-edge offensive and defensive skills, then we want to talk to you. The ideal candidate would have 6+ years working experience in a sSDLC (Secure Software Development Lifecycle) environment.
Key Responsibilities and Job Duties:
· Analyze vulnerabilities found through security scans and propose remediation strategies.
· Run and explore new Hacking Tools and Frameworks against our landscape.
· Continuously improve our offensive and defensive capabilities.
· Create, organize, document, and run red teaming exercises.
· Drive lessons learned with Security Architect and follow up on activities after red teaming exercises.
· Support our teams in evaluating new security solutions.
· Document and present relevant findings to management and peers.
· Document all security incidents and assess their actual or potential damage.
· Participate in brainstorming sessions with the team to create application threat models and provide guidance on effective countermeasures.
· Collaborate with application developers to identify security-sensitive functionality in apps and services lacking security coverage and bring security awareness and techniques for mitigation into the affected areas.
· Help maintain and scale intrusion detection and incident response pipelines and tools.
· Participate in incident response activities as an incident responder, analyst, and/or a liaison to teams.
· Impact security standards at all levels of the program.
Key Competencies and Experience:
· Bachelor’s degree in Computer Science, Information Technology Systems Security, or related field. Master’s degree is an asset.
· One or more of the following relevant security certifications: CISSP, SANS GIAC Cyber Threat Intelligence (GCTI), SANS GIAC Certified Penetration Tester (GPEN), SANS GIAC Certified Web Application Penetration Tester (GWAPT), Offensive Security Certified Professional (OSCP), or Certified Ethical Hacker (CEH).
· Excellent knowledge of IT security standards, risks, threats, prevention measures, and best practices.
· Blended “purple team” experience: coverage of both “red team” / penetration test processes & tools as well as “blue team” defensive techniques and countermeasures.
· Extensive experience with red teaming operations and/or penetration testing. Security testing tools including OWASP Zed Attack Proxy, Burp Suite, Postman.
· Experience with web and API attack and mitigation methods, security assessments and penetration testing.
· Knowledge of open security standards such as OWASP Top 10, CWE, OWASP ASVS, SANS Top 25, NIST.
· Experience with Application Security and Vulnerability Management programs that leverage SAST, DAST, network vulnerability scanners, etc.
· Solid understanding of common web application technologies, languages, and frameworks.
· In-depth knowledge of common software vulnerabilities.
· Programming experience in .NET, C#, and Java.
· Experience with Web Services such as JSON, XML and REST Technologies.
· Honest and professional, strong team influencer, able to proactively support team culture that fosters knowledge sharing, excellence, and collaboration.
· Able to work under pressure, facilitate discussion, decision-making, and conflict resolution.
· Excellent communicator, Fluent in English, able to engage and effectively respond to stakeholders.
Moerae Solutions Incorporated values diversity and is an equal opportunity employer. We are committed to providing employment accommodation in accordance with the Ontario Human Rights Code and the Accessibility for Ontarians with Disabilities Act. MSi welcomes and encourages people with disabilities and is committed to ensuring equal access and participation for people with disabilities. We are committed to treating people with disabilities in a way that maintains dignity and independence. Accommodations are available upon request for candidates taking part in all aspects of the recruitment/selection process as a result of disability.
Job Type: Full-time
Schedule:
Full Time, Temporary: 8 weeks (Canada Summer Jobs) Toronto, ON Reports to: Director, Total Rewards Join us in our mission...
Apply For This JobDescription At Amazon, our HR Partners (HRPs) are known for their knowledge of HR programs, processes and tools. They act...
Apply For This JobDescription Vous souhaitez vous engager dans un milieu où l’humanisme est au coeur des soins et services? Vous souhaitez vous...
Apply For This JobAfin d’accompagner sa croissance, Lemay Coulombe Assurances est à la recherche d’un ou d’une réceptionniste. Situé dans la ville de...
Apply For This JobWe currently have a Regular Part-Time (0.2 FTE) opportunity for a Patient Administrative Associate on the Reactivation Care Centre at...
Apply For This JobAlithya, chef de file en transformation numérique, accompagne des clients et des partenaires internes dans la recherche d’experts, de collaborateurs...
Apply For This Job