Senior Professional, Offensive Cyber Operations
Vancouver (VHO)
Applications have closed
Teck Resources
Teck is Canada's largest diversified mining company and is committed to responsible development. It has major business units focused on copper, metallurgical coal, zinc, gold and energy. Shares are listed on the TSX under the symbols TECK.A and...Responsibilities
- Be a courageous safety leader, adhere to and sponsor safety and environmental rules and procedures
- Conduct security assessments that can be multi-faceted for both IT and OT environments
- Define the scope for security testing assignments
- Create interactive quality assurance security test reports and other documentation as needed
- Build trusting relationships with clients to develop appropriate remediation plans
- Provide exceptional service in a professional, courteous and timely manner
- Provide thought leadership, direction and advice for the Information Security practice on malware, attack vectors and methods to protect against threats
- Collaborate with colleagues in other service lines in support of needs for Information Security services
- Stay informed on current tools, technologies and vulnerabilities to incorporate into testing practices
Qualifications
- Degree in Computer Science, Information Systems, Engineering or related major from an accredited University or equivalent
- At least three (3) years experience working on vulnerability assessments and penetration tests
- Outstanding critical thinking and analytical skills
- Application and infrastructure penetration testing experience that transcends running automated tools
- A comprehensive understanding of Linux, Windows and network security skills
- Excellent written and verbal communication in English
- Ability to meet deadlines and deliver a high-quality product (reports)
- Thorough and accurate attention to detail
- Ability to work independently and perform as a leader in a collaborative group setting
- Nessus
- MetaSploit
- Burp Suite
- Kali
- NMap
- Fortify
- Acunetix
- EC-Council Certified Ethical Hacker (CEH)
- EC-Council Licensed Penetration Tester (LPT)
- GIAC Certified Penetration Tester (CPEN)
- IACRB Certified Penetration Tester (CPT)
- Offensive Security Certified Professional (OSCP)
- CREST Registered Tester (CRT)
- CREST Infrastructure Certification
- CESG CHECK Team Leader
- CESG CHECK Team Member
- Tiger Scheme Senior Security Tester
- Tiger Scheme Qualified Security Tester
- Any other recognized penetration testing certification/accreditation
Nice to Haves
- ISO27001 Lead Auditor
- CISSP, CISA, CISM Certifications
- CREST recognized penetration testing certification/accreditation (CREST Certified Tester (CCT) or CHECK Team Leader (CTL)
- Experience developing custom scripts or tools used for vulnerability scanning and identification
- Familiarity with threat modelling and security design review methodologies
- Support team technical progress (e.g. through service development or research) and contribute to company technical processes overall
- Development and/or source code review experience in C/C++, C#, VB.NET, ASP, PHP, or Java and/or Fortify, Veracode, Brakeman and/or IDA Pro
- Proficiency with physical security testing, phishing and social engineering techniques
- Experience with mobile applications such as Android DeBug Bridge (ADS), OWASP ZAP, Drozer, Mobile Security Framework (MobSF), Smartphone Pentest Framework (SPF), Burp Suite, Android SDK, Friday, Cydia and/or IDB
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Android Burp Suite C CEH CESG CHECK CISA CISM CISSP Computer Science CREST GIAC ISO 27001 Java Kali Linux Malware Metasploit Mobile security Nessus Network security Nmap OCO Offensive security OSCP OWASP Pentesting PHP Security assessment Veracode Vulnerabilities Windows
Perks/benefits: Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs