Penetration Tester Part Time 7825-2616
Penetration Tester Part Time 7825-2616
Posted on :
22-11-2024
Employer Active
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Share
Send me jobs like this
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Description
HM Note: This part time hybrid role is onsite 34 days per month and the candidate must reside in Ontario
Description
Responsibilities:
Conducts penetration tests web application vulnerability assessments code reviews and network vulnerability assessments of all environments or applications related to the OPS provincewide I and amp;IT infrastructure and information resources.
Defines evaluates and assesses security architecture requirements for systems environments and IT projects.
Ensures the incorporation of IT security and contingency measures in the development of systems.
Advises on the identification analysis and resolution of specific security factors risks vulnerabilities; protection of personal privacy issues; and appropriate industry and international security standards.
Carry out information and information technology (I and amp;IT) security projects and tasks in the Ontario Public Service as assigned by Corporate Security or cluster I and amp;IT management
General Skills
Experience in vulnerability assessment/penetration testing of web applications by identifying analyzing and exploiting common vulnerabilities contained in web applications by using manual techniques and automated tools appropriate for enterprise use.
Experience performing penetration tests and red team assessments.
Experience with vulnerability assessment methodologies tools and techniques used to conduct network vulnerability assessments and penetration testing
Knowledge of techniques to secure information assets and the planning design and implementation of security technologies.
Proven techniques to discover gaps or weaknesses in security architecture to identify and mitigate known security threats or inherent weaknesses.
Strong understanding and expertise in security architecture.
Knowledge and understanding of relevant legislation and corporate directives related to the security and confidentiality of information (e.g. Freedom of Information and Protection of Privacy Act) in order to identify and assess areas of concern and risk.
Solid knowledge of current security and contingency technology and techniques (e.g. digital signature encryption access controls firewalls authentication virus protection etc. ); and a proven working knowledge of security audit procedures and protocols.
Experience in establishing secure environments at a network operating system or application level.
Experience with implementing security on complex and distributed systems.
Experience in writing reports to a large audience both at an executive/nontechnical management level and technical resources.
Awareness of emerging IT trends and directions especially as related to security.
Excellent analytical problemsolving and decisionmaking skills; written and verbal communication skills; interpersonal and negotiation skills.
A team player with a track record for meeting deadlines managing competing priorities and client relationship management experience.
Experience with multiple operating systems such as Windows and Linux multiple programming languages such and nbsp;as.NET and nbsp;and Java and common network services and protocols.
Skills
Experience and Skill Set Requirements
Mandatory Requirement:
Current penetration test experience
PENETRATION TEST EXPERIENCE: 35%
Demonstrated experience in identifying analyzing and exploiting common vulnerabilities using both manual techniques and automated tools for web and network pen testing and vulnerability assessments. Demonstrated experience in leading penetration tests web application vulnerability assessments code reviews and network vulnerability assessments in a large environment with diverse systems; and in common attacks common web application vulnerabilities exploits and best practices for remediation. Knowledge of IT security methodologies tools techniques security design and architecture threat/risk concepts and practices and encryption technologies. Ability to acquire and interpret corporate I and amp;IT security strategy programs the governments trust model and privacy legislation
TECHNICAL EXPERTISE: 25%
Experience with multiple operating systems programming and scripting languages platforms and network services and protocols. Understanding of emerging I and amp;IT trends best practices and developments in common attacks common web application vulnerabilities exploits and best practices for remediation.
ANALYTICAL AND PROBLEM SOLVING SKILLS: 20%
Demonstrated analytical and problem solving skills to determine alternative and innovation solutions where guidelines or policies exist but may not address new and emerging I and amp;IT trends. Ability to conceptualize interpret and evaluate security exposures across multiple domains.
COMMUNICATION AND RELATIONSHIP BUILDING SKILLS: 10%
Experience with writing reports aimed at both the executive/nontechnical management level and technical analyst level. Oral and written communication mediation negotiation consultative and advisory skills. Skills to provide training in the use of commercial security assessment tools and scanners. Stakeholder management partnership and relationship building skills to initiate and nurture strong working relationships with internal and external colleagues.
LEADERSHIP AND PROJECT MANAGEMENT SKILLS: 10%
Proven ability to provide leadership advice and direction on business risk planning and coordination. Demonstrated project methodology and management skills to provide project planning and technical leadership on concurrent projects.
Must Haves:
Current penetration test experience or directly relatable exp (red side exp)
Demonstrated experience in identifying analyzing and exploiting common vulnerabilities using both manual techniques and automated tools for web and network pen testing and vulnerability assessments. and nbsp;
Employment Type
Full Time
Key Skills
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
