Penetration Tester
Montreal, Quebec, Canada
The team:
Join the Genetec Security Group – help us secure our products and protect the company!
Genetec produces a lot of software in a lot of different contexts and all those applications need to be secure. With its employees and assets present all over the world, Genetec is also exposed to sophisticated threat actors and needs security professionals to keep them at bay.
The Genetec Security Group is a team of individuals really passionate about security and is looking to share that passion with new team members. New ideas and personal initiative are encouraged!
As a Penetration Tester, you will work closely with the development teams and IT personnel to identify, document and help mitigate vulnerabilities in Genetec's products and IT environment.
What your day will look like:
- Perform code reviews and penetration tests to discover and exploit vulnerabilities in Genetec’s products consisting of embedded devices as well as mobile, desktop, Web and cloud applications
- Document findings and communicate their relevance efficiently
- Produce high-quality reports for both internal and external clients
- Work closely with the development teams and act as a subject matter expert on vulnerabilities and the best ways to mitigate them
- Help review, assess, and prioritize vulnerabilities coming from data points (third party penetration tests, static/dynamic application security testing tools, public advisories, etc.)
- Contribute to the company's security culture by sharing your knowledge via blog posts, presentations and engaging with the Genetec development community
- Stay current on the latest threats that could affect Genetec or its products and share those insights to the relevant parties in a timely fashion
About you:
- A minimum of 3 years of work experience directly related to penetration testing, bug bounty hunting, exploit research and development or application security testing
- Ability to read and write code in at least one object-oriented and one scripting language
- First-hand experience "pentesting" applications running on a major cloud provider infrastructure such as Microsoft Azure, Amazon AWS or Google Cloud Platform
- Strong knowledge of industry standards (OWASP, NIST)
- Good knowledge of the most common access delegation standards and authentication protocols (Kerberos, SAML 2.0, OAuth, OpenID Connect, etc.)
- Relevant certifications such as Pentest+, OSCP/OSWE, eCTPX/WPTX, PNPT will be considered an asset
Let’s talk perks!
- Attractive compensation package
- Training Tuition Reimbursement Program
- Subsidized meals in our amazing Bistro (Les Cordons Bleus)/Virtual cooking classes
- Work-life balance with a flexible working schedule
- Free, unlimited coffee
- Private, free parking for all employees
- Onsite fitness facility with personal trainer/Virtual exercise classes
Would you like to know what it looks like to work at Genetec? Click on the following link to find out for yourself! Genetec Culture
Please note that only qualified candidates will be contacted for an interview. Head-hunters and recruitment agencies may not submit resumés/CVs through this Web site or directly to managers.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security AWS Azure Cloud DAST Exploit GCP Kerberos NIST OpenID OSCP OSWE OWASP Pentesting SAML Scripting Vulnerabilities
Perks/benefits: Career development Fitness / gym Flex hours
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Senior Information Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Analyst jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open DevSecOps-related jobs