Do you have 10+ years experience in red team tactics and techniques? Do you have 10+ years experience in network and application security? If so, this would be a great opportunity for you!
Our client is looking for a Senior Security Specialist Penetration Testing for a 6 month contract in Toronto.
This is a hybrid role.
...
Advantages
• Earn a competitive rate within the industry
• Location: 1 days in office at minimum – either at GHQ (777 Memorial, Orillia) or Queens Park Detachment (56 Wellesley Street W, Toronto)
Responsibilities
• Conducts penetration tests, vulnerability assessments, code reviews, threat hunting, network vulnerability assessments and red team exercises in all environments or applications related to the OPP and OPS province wide I&IT infrastructure and information resources.
• Defines, evaluates, and assesses security requirements and safeguards for systems environments and IT projects.
• Ensures the incorporation of IT security and contingency measures in the development and secure deployment of systems.
• Advises on the identification, analysis, and resolution of specific security factors, risks, vulnerabilities; protection of personal privacy issues; and appropriate industry and international security standards.
• Carry out information and information technology (I&IT) security projects and tasks in the Ontario Provincial Police as assigned by the OPP Chief Security Office and/or cluster I&IT management.
Qualifications
Must Haves:
• 10+ years experience network threat hunting
• 10+ years experience red team tactics and techniques
• 10+ years experience network and application security
General Skills:
Strong understanding and expertise in security architecture, application and network security testing.
Experience in vulnerability assessment/penetration testing of web applications by identifying, analyzing and exploiting common vulnerabilities contained in web applications by using manual techniques and automated tools appropriate for enterprise use.
Experience with vulnerability assessment methodologies, tools and techniques used to conduct network vulnerability assessments, threat hunting, red team exercises and penetration testing.
Knowledge of techniques to secure information assets and the planning, design, and implementation of security technologies, safeguards and controls.
Proven techniques to discover gaps or weaknesses in security architecture to identify and mitigate known security threats, bugs, vulnerabilities and/or inherent weaknesses.
Knowledge and understanding of relevant legislation and corporate directives related to the security and confidentiality of information (e.g. Freedom of Information and Protection of Privacy Act) in order to identify and assess areas of concern and risk.
Solid knowledge of current security and contingency technology and techniques (e.g. digital signature, encryption, access controls, firewalls, authentication, virus protection, etc. ); and a proven working knowledge of security audit procedures and protocols.
Experience in establishing secure environments at a network, operating system or application level.
Experience with implementing security on complex and distributed systems in a high sensitive, law enforcement environment.
Experience in writing reports, documenting risks and making recommendations for a diverse audience including executive/non-technical management level and technical resources.
Awareness of emerging IT trends and directions, especially as related to security, privacy and compliance environment.
Excellent analytical, problem-solving, and decision-making skills; written and verbal communication skills; interpersonal and negotiation skills.
A team player with a track record for meeting deadlines, managing competing priorities and client relationship management experience.
Desirable Skills:
Experience with multiple operating systems (such as Windows and Linux), multiple programming languages (such as.NET and Java), multiple architecture, development methodologies, and common network services and protocols.
Experience in Penetration Testing, Red Team Exercises and Threat Hunting methods along with hands on experience with relevant tools, tactics, techniques and procedures.
Knowledge and understanding of Information Management principles, concepts, tactics, techniques and procedures.
· Experience in Incident Response (IR), business recovery and Disaster Recovery (DR) planning.
Experience in performing threat and risk assessment.
Experience in Key Infrastructure (PKI) development and operation.
Experience in secure design frameworks, principles and methodologies as part of systems development projects in an agile, fast paced technology driven safety/law enforcement business operation.
Experience in Intrusion Detection Systems (IDS), intrusion Protection Systems (IPS) and Security Information and Event Management (SIEM) systems.
Experience in mitigation tools for malicious software.
Experience in network monitoring, threat hunting and related tools. tactics, techniques and procedures.
Experience in incident response and forensic investigation tools, techniques and procedures.
Experience with source code review (DAST, SAST), log collection and analysis.
Knowledge and understanding of Information Management principles, concepts, policies and practices.
Summary
If you are interested in the Senior Security Specialist Penetration Testing role in Toronto, please apply online at www.randstad.ca. Qualified candidates will be contacted.
Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.
Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.
show more
Do you have 10+ years experience in red team tactics and techniques? Do you have 10+ years experience in network and application security? If so, this would be a great opportunity for you!
Our client is looking for a Senior Security Specialist Penetration Testing for a 6 month contract in Toronto.
This is a hybrid role.
Advantages
• Earn a competitive rate within the industry
• Location: 1 days in office at minimum – either at GHQ (777 Memorial, Orillia) or Queens Park Detachment (56 Wellesley Street W, Toronto)
Responsibilities
• Conducts penetration tests, vulnerability assessments, code reviews, threat hunting, network vulnerability assessments and red team exercises in all environments or applications related to the OPP and OPS province wide I&IT infrastructure and information resources.
• Defines, evaluates, and assesses security requirements and safeguards for systems environments and IT projects.
• Ensures the incorporation of IT security and contingency measures in the development and secure deployment of systems.
...
• Advises on the identification, analysis, and resolution of specific security factors, risks, vulnerabilities; protection of personal privacy issues; and appropriate industry and international security standards.
• Carry out information and information technology (I&IT) security projects and tasks in the Ontario Provincial Police as assigned by the OPP Chief Security Office and/or cluster I&IT management.
Qualifications
Must Haves:
• 10+ years experience network threat hunting
• 10+ years experience red team tactics and techniques
• 10+ years experience network and application security
General Skills:
Strong understanding and expertise in security architecture, application and network security testing.
Experience in vulnerability assessment/penetration testing of web applications by identifying, analyzing and exploiting common vulnerabilities contained in web applications by using manual techniques and automated tools appropriate for enterprise use.
Experience with vulnerability assessment methodologies, tools and techniques used to conduct network vulnerability assessments, threat hunting, red team exercises and penetration testing.
Knowledge of techniques to secure information assets and the planning, design, and implementation of security technologies, safeguards and controls.
Proven techniques to discover gaps or weaknesses in security architecture to identify and mitigate known security threats, bugs, vulnerabilities and/or inherent weaknesses.
Knowledge and understanding of relevant legislation and corporate directives related to the security and confidentiality of information (e.g. Freedom of Information and Protection of Privacy Act) in order to identify and assess areas of concern and risk.
Solid knowledge of current security and contingency technology and techniques (e.g. digital signature, encryption, access controls, firewalls, authentication, virus protection, etc. ); and a proven working knowledge of security audit procedures and protocols.
Experience in establishing secure environments at a network, operating system or application level.
Experience with implementing security on complex and distributed systems in a high sensitive, law enforcement environment.
Experience in writing reports, documenting risks and making recommendations for a diverse audience including executive/non-technical management level and technical resources.
Awareness of emerging IT trends and directions, especially as related to security, privacy and compliance environment.
Excellent analytical, problem-solving, and decision-making skills; written and verbal communication skills; interpersonal and negotiation skills.
A team player with a track record for meeting deadlines, managing competing priorities and client relationship management experience.
Desirable Skills:
Experience with multiple operating systems (such as Windows and Linux), multiple programming languages (such as.NET and Java), multiple architecture, development methodologies, and common network services and protocols.
Experience in Penetration Testing, Red Team Exercises and Threat Hunting methods along with hands on experience with relevant tools, tactics, techniques and procedures.
Knowledge and understanding of Information Management principles, concepts, tactics, techniques and procedures.
· Experience in Incident Response (IR), business recovery and Disaster Recovery (DR) planning.
Experience in performing threat and risk assessment.
Experience in Key Infrastructure (PKI) development and operation.
Experience in secure design frameworks, principles and methodologies as part of systems development projects in an agile, fast paced technology driven safety/law enforcement business operation.
Experience in Intrusion Detection Systems (IDS), intrusion Protection Systems (IPS) and Security Information and Event Management (SIEM) systems.
Experience in mitigation tools for malicious software.
Experience in network monitoring, threat hunting and related tools. tactics, techniques and procedures.
Experience in incident response and forensic investigation tools, techniques and procedures.
Experience with source code review (DAST, SAST), log collection and analysis.
Knowledge and understanding of Information Management principles, concepts, policies and practices.
Summary
If you are interested in the Senior Security Specialist Penetration Testing role in Toronto, please apply online at www.randstad.ca. Qualified candidates will be contacted.
Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.
Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.
show more
