thank you for subscribing to your personalised job alerts.

    1 job found in nepean, ontario

    filter3
    • sector1
      working in
      show 1 jobs
      clear filter
    • location1
      location & range
        show 1 jobs
        clear filter
      • job types
        job types
        show 1 jobs
        clear filter
      clear all
        • Nepean, Ontario
        • Contract
        Randstad has 2 long term contract opportunities for Web Application Penetration Testers with one of our large Federal Government clients in Ottawa. The contract will run from early January, 2021 till March 2025 and will be done completely off-site!The successful candidates will be undertaking the following tasks and responsibilities: The scope of a web application penetration tester's role must include the client’s authentication service and security portal applications. This consists of approximately 300 to 350 web pages and must include both the external perimeter (public-facing attack surfaces) and the internal perimeter of the client (LAN-LAN attack surfaces). Testing will only include the application-layer and not the network-layer. Testing must consider both non credentialed and credentialed tests. (Credentials will be provided). A more detailed SOW / qualification listing is available to interested candidatesTo be considered individuals must have:- Current valid Canadian Government Security Clearance at the Secret Level- At least 5 years of experience in IT security - At least 3 years of experience conducting penetration tests of web applicationsThis is an excellent opportunity to join a great team in a mature security environment!Candidates can send their resume, for immediate consideration, or questions to shawn.mountain@randstad.caThank you,ShawnADVANTAGES•The contractor will provide their own information system(s) to conduct web application penetration testing. The information system(s) will remain on-site for the duration of the testing. Upon completion of the tests, the information system(s) hard-disks and memory will be sanitized using low-level format utilities; thus removing any sensitive client data.RESPONSIBILITIESThe client will provide no paid training, and it is expected that the selected contractor is capable of undertaking the following tasks and responsibilities immediately upon arrival:•Develop a web application penetration testing plan that includes thorough testing to achieve the objective described in this statement of work. •Develop a rules of engagement document to define what will be tested and how testing will occur. •Configure web application penetration testing tools and vulnerability scans, tailored to specific client requirements;•Analyze and understand results to determine existence of security vulnerabilities and identify false positives; •Produce vulnerability assessment reports;•Consult with other Internal Areas (roles & responsibilities) as required;•Develop briefing documents for management concerning client’s security posture (if required);•Develop weekly, monthly status reports as required.QUALIFICATIONSM.1•Clearly demonstrates the catalogue category and level requirements are met in the resume.M.2•Experience conducting penetration tests of web applications.M.3•At least 5 years of experience in IT security.M.4•Must possess a valid SECRET security clearance R.1•Experience beyond 5 years of experience in IT securityR.2•Experience beyond 3 years of experience conducting penetration tests of web applications.R.3•Possess Certified Information Systems Security Professional (CISSP) security certification or a Certification in Risk and Information Systems Control (CRISC).R.4•Possess GCIH or GPEN/OPST or certification.SUMMARYA Penetration Tester is required for security assessment and/or security gap analyses evaluating IT security safeguards. Work will be done on site in conjunction with client staff members.
        Randstad has 2 long term contract opportunities for Web Application Penetration Testers with one of our large Federal Government clients in Ottawa. The contract will run from early January, 2021 till March 2025 and will be done completely off-site!The successful candidates will be undertaking the following tasks and responsibilities: The scope of a web application penetration tester's role must include the client’s authentication service and security portal applications. This consists of approximately 300 to 350 web pages and must include both the external perimeter (public-facing attack surfaces) and the internal perimeter of the client (LAN-LAN attack surfaces). Testing will only include the application-layer and not the network-layer. Testing must consider both non credentialed and credentialed tests. (Credentials will be provided). A more detailed SOW / qualification listing is available to interested candidatesTo be considered individuals must have:- Current valid Canadian Government Security Clearance at the Secret Level- At least 5 years of experience in IT security - At least 3 years of experience conducting penetration tests of web applicationsThis is an excellent opportunity to join a great team in a mature security environment!Candidates can send their resume, for immediate consideration, or questions to shawn.mountain@randstad.caThank you,ShawnADVANTAGES•The contractor will provide their own information system(s) to conduct web application penetration testing. The information system(s) will remain on-site for the duration of the testing. Upon completion of the tests, the information system(s) hard-disks and memory will be sanitized using low-level format utilities; thus removing any sensitive client data.RESPONSIBILITIESThe client will provide no paid training, and it is expected that the selected contractor is capable of undertaking the following tasks and responsibilities immediately upon arrival:•Develop a web application penetration testing plan that includes thorough testing to achieve the objective described in this statement of work. •Develop a rules of engagement document to define what will be tested and how testing will occur. •Configure web application penetration testing tools and vulnerability scans, tailored to specific client requirements;•Analyze and understand results to determine existence of security vulnerabilities and identify false positives; •Produce vulnerability assessment reports;•Consult with other Internal Areas (roles & responsibilities) as required;•Develop briefing documents for management concerning client’s security posture (if required);•Develop weekly, monthly status reports as required.QUALIFICATIONSM.1•Clearly demonstrates the catalogue category and level requirements are met in the resume.M.2•Experience conducting penetration tests of web applications.M.3•At least 5 years of experience in IT security.M.4•Must possess a valid SECRET security clearance R.1•Experience beyond 5 years of experience in IT securityR.2•Experience beyond 3 years of experience conducting penetration tests of web applications.R.3•Possess Certified Information Systems Security Professional (CISSP) security certification or a Certification in Risk and Information Systems Control (CRISC).R.4•Possess GCIH or GPEN/OPST or certification.SUMMARYA Penetration Tester is required for security assessment and/or security gap analyses evaluating IT security safeguards. Work will be done on site in conjunction with client staff members.

      thank you for subscribing to your personalised job alerts.

      It looks like you want to switch your language. This will reset your filters on your current job search.