Penetration Tester

Do you have what it takes to join the elite security testing team? If you answered “Yes” we’d love to put you to the test!

Canary Trap is always on the lookout for professionals to join our growing team. The Penetration Tester has deep technical expertise in the processes, procedures, tools and methodology for assessing IT Security risk. This role requires an individual who can independently visualize the network topology from information provided, prepare tests, conduct hacker simulations and demonstrate the likelihood of data compromise via 'proof of concept exploitation' of a given vulnerability. Further to the tests, to be able to clearly describe the problem, the concerns and provide recommendations to fix.

Qualified candidates must possess the required certifications, expertise and experience along with interpersonal skills necessary for success.

Job Responsibilities & Description:

• Maintain communication with customers to ensure a quality engagement
• Remove ‘firmware, IOT/OT’
• SQL ‘and NoSQL database types’
• Experience with command-and-control systems and AV/EDR bypass techniques is an asset
• Experience with major cloud provider security architecture and controls is an asset
• Experience with social engineering pretext generation and payload delivery is an asset
• Conduct initial penetration test scoping/kick off meetings with stakeholders
• Conduct application, cloud service, network, security device, firmware and IOT/OT penetration testing within the designated scope and rules of engagement
• Provide consultation on appropriate remediation actions
• Provide reports on network and device security
• Administrator level knowledge of Server Operating Systems specifically Unix and Windows
• Intricate technical knowledge of TCP/IP Networking/Routing, Intranet / Internet Architectures and Segregation Technologies/VLANs, Firewalls, Intrusion Detection, Intrusion Prevention, SQL Databases
• Ability to test web technologies e.g. web applications, containers, container managers
• Programming ability to create, read and modify exploit code to achieve system penetration
• C, C++, Java, C#, scripting knowledge is an asset
• Programming ability to create, read and modify exploit code to achieve system penetration. C, C++, Java, C#, scripting knowledge is an asset
• Ability to present the penetration testing results including recommendations to fix
• Bachelor's degree in Computer Science, Information Technology, Cyber Security, or related discipline or equivalent experience
• Required certification: OSCP or equivalent

Job Type: Full-time

Salary: $70,000.00-$125,000.00 per year

Benefits:

• Dental care
• Extended health care
• Paid time off
• Work from home

Schedule:

• Monday to Friday

Licence/Certification:

• Penetration Testing & Cybersecurity Certificate(s)? (preferred)

Work Location: Hybrid remote in Mississauga, ON L4W 5K4