Security Vulnerability Assessment – Penetration Tester – Procom Toronto, ON

Client ID: 270568

Security Vulnerability Assessment – Penetration Tester

On behalf of our client in the Telecommunications Sector, PROCOM is looking for a Security Vulnerability Assessment – Penetration Tester.  

Security Vulnerability Assessment – Penetration Tester – Mandatory Skills

  • Knowledge of ICS/SCADA security controls and testing experience
  • Security consulting experience at least 3 years’ experience of:
  • Penetration testing of infrastructure and web apps (red team) 
  • Use of tools such as Qulays, nessus, netsparker, burb, Kali etc 
  • Excellent Communication
  • CSSP certification
  • Knowledge of vulnerability assessment practices and procedures; consulting a must
  • Experience in penetration testing (ethical hacking) practices and procedures
  • Knowledge of penetration testing methodologies (PWASP, PTES, OSSTMM)
  • Knowledge of information and I.T. security best practices
  • Knowledge of social engineering and wireless testing
  • Vulnerability assessment experience with any of the following: Qualys, Nexpose, Nessus, NMAP NSE etc.
  • Penetration testing experience with any of the following: Kali, Metasploit, Powershell Empire, Medusa, Mimikatz etc.
  • Web Application assessment with any of the following: Acunetix, Appscan, Burpsuite, SQLMap, OWASP Zap etc.
  • Ability to lead projects/engagements, report writing and presentation skills (ability to clearly explain technical findings to a non-technical audience). Consulting experience
  • Use of multiple security engagement tools, platforms and scripts in live client environments
  • Infrastructure vulnerability scanning including manual verification of findings
  • Goal based penetration testing, including privilege escalation, and lateral movement
  • Ability to work within in a geographically distributed team from home, office and client locales
  • Ability to work as part of a team or independent
  • Strong time and task management skills
  • Strong verbal and written communication skills
  • Ability to properly communicate technical threats to client is recommended
  • A minimum of 5 years industry experience is required
  • University degree
  • Web application security assessments from both an automated and manual perspective
  • Knowledge of ICS/SCADA security controls and testing experience
  • PCI compliance knowledge and experience including the delivery of associated testing requirements

Security Vulnerability Assessment – Penetration Tester – Nice to Have Skills

  • Code reviews 
  • API testing 
  • Able to articulate technical concepts to a non-technical audience
  • Professional certificates (ie. OSCP) are an asset
  • Experience with ICS testing would be considered an asset
  • Knowledge of PCI standard an asset
  • Basic Knowledge of GRC standards an asset

Security Vulnerability Assessment – Penetration Tester – Assignment Start Date

ASAP – 12 months to start

Security Vulnerability Assessment – Penetration Tester – Assignment Location

Toronto, ONT

APPLY HERE

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.