Security Specialist - Penetration Testing – Senior

Company Description

Arthur Grand Technologies (www.arthurgrand.com) is in the business of providing staffing and technology consulting services. We have doubled our revenue year over year for the past 5 years. This speaks to the long-lasting relationship and customer satisfaction that we have built in this short span of time. Our company is managed by a team of professionals who worked for big 5 consulting firms for 20+ years. 

We are a minority owned staff augmentation and technology consulting company
To keep our valued employees, we need to keep them engaged in challenging, interesting work, offer market-relevant benefits and provide continued opportunities for professional growth.

Job Description

Position : Security Specialist - Penetration Testing – Senior

Location: Toronto, Ontario

Duration: Long Term Contract

Must Haves

 Experience with multiple operating systems, programming, and scripting languages, platforms, and network services and protocols. Understanding of emerging I&IT trends, best practices and developments in common attacks, common web application vulnerabilities, exploits, and best practices for remediation

Description

Responsibilities:

Conducts penetration tests, web application vulnerability assessments, code reviews and network vulnerability assessments of all environments or applications related to the OPS province-wide I&IT infrastructure and information resources.

Defines, evaluates, and assesses security architecture requirements for systems environments and IT projects.

Ensures the incorporation of IT security and contiangency measures in the development of systems.

Advises on the identification, analysis, and resolution of specific security factors, risks, vulnerabilities; protection of personal privacy issues; and appropriate industry and international security standards.

Carry out information and information technology (I&IT) security projects and tasks in the Ontario Public Service as assigned by Corporate Security or cluster I&IT management

Experience and Skill Set Requirements

Mandatory Requirement:

Current penetration test experience

PENETRATION TEST EXPERIENCE: 35%

Demonstrated experience in identifying, analyzing, and exploiting common vulnerabilities using both manual techniques and automated tools for web and network pen testing and vulnerability assessments. Demonstrated experience in leading penetration tests, web application vulnerability assessments, code reviews and network vulnerability assessments in a large environment with diverse systems; and in common attacks, common web application vulnerabilities, exploits and best practices for remediation. Knowledge of IT security methodologies, tools, techniques, security design and architecture, threat/risk concepts and practices, and encryption technologies. Ability to acquire and interpret corporate I&IT security strategy, programs, the government`s trust model, and privacy legislation

TECHNICAL EXPERTISE: 25%

Experience with multiple operating systems, programming and scripting languages, platforms, and network services and protocols. Understanding of emerging I&IT trends, best practices and developments in common attacks, common web application vulnerabilities, exploits and best practices for remediation.

ANALYTICAL AND PROBLEM SOLVING SKILLS: 20%

Demonstrated analytical and problem solving skills to determine alternative and innovation solutions where guidelines or policies exist but may not address new and emerging I&IT trends. Ability to conceptualize, interpret and evaluate security exposures across multiple domains.

COMMUNICATION AND RELATIONSHIP BUILDING SKILLS: 10%

Experience with writing reports aimed at both the executive/non-technical management level, and technical analyst level. Oral and written communication, mediation, negotiation, consultative and advisory skills. Skills to provide training in the use of commercial security assessment tools and scanners. Stakeholder management, partnership and relationship building skills to initiate and nurture strong working relationships with internal and external colleagues.

LEADERSHIP AND PROJECT MANAGEMENT SKILLS: 10%

Proven ability to provide leadership, advice and direction on business risk planning and co-ordination. Demonstrated project methodology and management skills to provide project planning and technical leadership on concurrent projects.

Additional Information

All your information will be kept confidential according to EEO guidelines.