Offensive Security Consultant - Penetration Testing
$98k - $167k per yearRSM Canada
Overview
Join to apply for the Manager - Penetration Tester role at RSM Canada .
We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, inclusive culture and talent experience and our ability to be compelling to our clients. You’ll find an environment that inspires and empowers you to thrive both personally and professionally. There’s no one like you and that’s why there’s nowhere like RSM.
We are currently looking for team members to join our Security, Privacy, and Risk Consulting practice. The candidate will work with teams of security and privacy staff in a wide variety of systems environments. Our Security, Privacy and Risk Consulting team serves the Information Security and Data Privacy related needs of our clients. This team helps organizations identify their cyber risk, and design and implement program to address those risks and improve their cyber security posture. We serve a diverse base of clients in a variety of industries and understanding how technology impacts the operation and growth of organizations is what we do best. We are seeking individuals skilled at performing vulnerability assessments, penetration testing, and secure architecture reviews of a variety of operating systems, network devices, wireless solutions, and their related infrastructure.
Responsibilities
- Perform analysis and testing to verify the strengths and weaknesses of client IT environments utilizing commercial and open source security testing tools
- Perform Internet penetration testing (blackbox/greybox/whitebox testing) and network architecture reviews (manual/automated)
- Perform other security testing tasks such as wireless penetration testing, social engineering campaigns (email, web, phone, physical, etc.), mobile application testing, embedded device testing, and similar activities meant to identify critical weaknesses within client environments
- Assist with the development of remediation recommendations for identified findings
- Identify and clearly articulate (written and verbal) findings to senior management and clients
- Help identify improvement opportunities for assigned clients
- Supervise and provide engagement management for other staff working on assigned engagements
Required Qualifications
- This position is for individuals with 4+ years of experience within the cyber security space, with a preference for prior consulting or professional services backgrounds. Other candidates may be considered based on experience and skill sets.
- Ability to travel as needed
- Must possess a high degree of integrity and confidentiality, as well as the ability to adhere to both company policies and best practices
- Strong verbal and written abilities
- Strong multitasking and project management skills
Preferred Qualifications
- Bachelor's degree in computer science or related field from an accredited college/university
- Technical background in networking/system administration, security testing or related fields
- In-depth knowledge of TCP/IP
- Two or more years of Perl, Python, Bash, or C experience
- Operating System Configuration and Security experience (Windows, HP-UX, Linux, Solaris, AIX, etc.)
- Configuration and Security experience with firewalls, switches, routers, VPNs
- Experience with security and architecture testing and development frameworks, such as the Open Web
- Application Security Project (OWASP), Open Source Security Testing Methodology Manual (OSSTMM), the Penetration Testing Execution Standard (PTES), Information Systems Security Assessment Framework (ISSAF), and NIST SP800-115
- Familiar with security testing techniques such as threat modeling, network discovery, port and service identification, vulnerability scanning, network sniffing, penetration testing, configuration reviews, firewall rule reviews, social engineering, wireless penetration testing, fuzzing, and password cracking and can perform these techniques from a variety of adversarial perspectives (white-, grey-, black-box)
- Experience with discovering, utilizing, and possibly writing exploits for such vulnerabilities as buffer and stack overflows
- Familiar with the logistics of security testing such as acquiring authorization for testing, reporting, risk analysis of findings, data handling, and legal considerations
- Commercial Application Security tools experience (Nessus, Nexpose, Qualys, Appdetective, Appscan, etc.) Open source and free tools experience (Kali Linux suite, Metasploit, nmap, airsnort, Wireshark, Burp Suite, Paros, etc.)
- One or more of the following testing certifications: Certified Ethical Hacker (CEH); GIAC Certified Penetration Tester (GPEN); Offensive Security Certified Professional (OSCP); or equivalent development or testing certification (ECSA, CEPT, CPTE, CPTS, etc)
- In addition, one or more of the following governance certifications is preferred: Certified Information Systems Security Professionals (CISSP); Certified Information Systems Auditor (CISA); Certified Information Security Manager (CISM)
- Strong leadership and communication skills, technical knowledge, and the ability to write at a "publication" quality level in order to communicate findings and recommendations to the client's senior management
Compensation and Benefits
At RSM, we offer a competitive benefits and compensation package for all our people. We offer flexibility in your schedule, empowering you to balance life’s demands, while also maintaining your ability to serve clients. Learn more about our total rewards at this role.
Compensation Range: $98,000 - $167,000
Individuals selected for this role will be eligible for a discretionary bonus based on firm and individual performance.
EEO and Accessibility
RSM does not tolerate discrimination and/or harassment based on race; colour; creed; sincerely held religious beliefs, practices or observances; sex (including pregnancy or disabilities related to nursing); gender (including gender identity and/or gender expression); sexual orientation; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past, current or prospective service in the Canadian uniformed service; Canadian Military/Veteran status; pre-disposing genetic characteristics or any other characteristic protected under applicable provincial employment legislation.
Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and/or employment/partnership. RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application, interview, or otherwise participate in the recruiting process, please call us at View phone number on ca.talent.com or send us an email at View email address on ca.talent.com.
At RSM, an employee’s pay at any point in their career is intended to reflect their experiences, performance, and skills for their current role. The salary range (or starting rate for interns and associates) for this role represents numerous factors considered in the hiring decisions including, but not limited to, education, skills, work experience, certifications, location, etc. As such, pay for the successful candidate(s) could fall anywhere within the stated range.
Salary: $98,000 - $167,000
Salary is subject to discretionary bonus based on firm and individual performance.
Seniority level
- Mid-Senior level
Employment type
- Full-time
Job function
- Other
Industries
- Accounting
- ...We are looking for a seasoned SAP GRC and Security Consultant to take full ownership of access risk, compliance controls, and identity governance... ...role‑based access control (RBAC) frameworks — building, testing, and documenting SAP roles and authorization objects aligned...SuggestedContract workRemote workVisa sponsorship
- ...We at Coforge are looking for an experienced Test Lead to support our SAP ECC to S4 migration program. The individual will work closely with the Test Architect to design comprehensive test plans and lead on-ground test execution. Job Description: The ideal candidate should...Suggested
- ...recent survey, 90% of Long View team members rated Long View as a good or great place to work! Are you a passionate consultant who loves to provide security solutions to your clients? We are looking for a dynamic and results-focused Security Consultant for our...SuggestedPermanent employment
- ...team members rated Long View as a good or great place to work! Do you want to drive IT security solutions? We are looking for a dynamic and energetic Security Systems Consultant for our Calgary branch to deliver security solutions. You will be working with...SuggestedPermanent employment
$120k per year
Senior Security Engineer – PPI Position Overview: The Senior Security Engineer works closely with the Infrastructure and Information Security... ...and recovering assigned security events; Complete vulnerability testing, scanning, and documentation of results; Monitor for security...SuggestedWork at officeShift work- Join our team as a Test Architect focused on Data Migration and Snowflake in Calgary, AB. This contractual role targets mid-senior level professionals with a strong technical foundation. As a Test Architect, you will contribute to our IT Services projects, concentrating on...
- Pioneer testing technology with Blackline Safety as a Manufacturing Test Engineer. Contribute to our mission of worker safety through innovative testing and process improvements. In this critical role, you'll be at the forefront of developing and enhancing test methods and...
- Lead the SAP testing strategy for a critical ECC to S/4HANA migration program. Your expertise in test architecture and quality assurance will drive comprehensive testing phases. As a Test Architect, you will spearhead the testing strategy for SAP migration. This senior role...
- ...Black Duck Software as a Senior Application Security Engineer driving security solutions on... ...your technical expertise to ensure fast and secure software delivery for clients. In this... ...• Project management and client consultation experience • Bachelor's Degree in a relevant...
- Lead innovation in molecular testing at Canadian Blood Services as Associate Director in a hybrid environment. Focus on strategic oversight, molecular service development, and cross-functional collaboration. This full-time position is based in Brampton, Ottawa, or Calgary,...Full time
- Join Client IT as a Security Lead, focusing on developing security solutions and policies. Utilize your extensive experience to elevate... ...experience, including a solid emphasis on security. Your role involves consulting on security best practices and driving enhancements in the...
- ...solutions? Do you have an outgoing personality? Would you like the security of a guaranteed wage paired with an unlimited income potential?... ...locations. Guaranteed income! Responsibilities As a Sales Consultant, you have a passion for customer service and thrive in a fast-...InternshipFlexible hoursShift workAfternoon shift
- ...segments. Position/Title: Techno Functional Consultant - ETRM will be part of Professional... ...development support. Design, develop (code), test, and debug applications Troubleshoot,... ...Analyze applications for compliance with security protocols. Research defects and solves...Long term contractTemporary work
- ...designing solutions, supporting configuration, and coordinating testing and releases. Responsibilities Act as the functional SAP PP... ...before deployment Coordinate and support user testing, including test planning and execution Deliver presentations, status updates,...
- ...rewards hard work? J.S. Held is a global consulting firm that combines technical, scientific... ...J.S. Held is seeking an Air Emissions Consultant (Digital Solutions) to support air... ...regulatory requirements Assist in system testing, user acceptance testing (UAT), and ongoing...Remote workFlexible hours
$63.45k - $105.75k per year
...Investment & Retirement Solutions, the Investment and Retirement Consultant serves our Group Customer plan members who are approaching... ...beneficial industry designations or courses include: CIM, CLU, Canadian Securities Course Post‑secondary education or equivalent work...Work at officeFlexible hours- ...filled Position Summary Reporting to the Director, Cyber Security & Infrastructure , the Sr. Manager, Cyber Security is responsible... ...-generation firewalls, network segmentation, wireless security, secure remote access, IoT/OT security, and network threat detection and...Full timeLocal areaRemote workFlexible hours
- Pursue a rewarding career as a Corporate Securities Legal Associate. This mid-level role in a hybrid setting allows you to engage in transformative corporate finance transactions, public mergers, and securities law. You will work closely in the Capital Markets group, gaining...
$166.05k - $184.5k per year
...experience for everyone. The Team The Safety, Security, Compliance, and Emergency Response team ensures the safe and secure operation of Calgary International and... ...successfully complete pre-employment drug and alcohol testing as part of the hiring process. This role includes...Permanent employmentFull timeTemporary workWork from home$89.2k - $129.3k per year
...troubleshoot and resolve defects to application problems. Provide consultation on the capabilities of application technology to identify... ...software solutions as per specifications. Develop and execute unit test plans to ensure quality of software being released for...Long term contractFull timeTemporary workPart timeCasual work- Step into a leadership role at PPI as the Director of Security, managing vital operations and enhancing safety standards in a hybrid workspace. Drive impactful security initiatives and team development. As part of PPI’s senior management, you will oversee the day‑to‑day security...
- Join Palo Alto Networks as a Solutions Consulting Manager focused on cybersecurity innovation. This remote role emphasizes... ...leadership and collaboration to enhance customer security solutions. As the Solutions Consultant Manager, you will be pivotal in driving your team's...Remote work
- Become a Principal Consultant in DFIR Reactive Services with Palo Alto Networks and work remotely on crucial cybersecurity initiatives. This... ...in incident response and digital forensics to handle security incidents effectively. In this role, you will utilize your deep...Remote work
$60k - $90k per year
...Sales and Recruitment Consultant – Calgary Are you an exceptional individual who loves exceeding client expectations by finding and engaging... ...to ensure a high level of execution and satisfaction Secure and negotiate new terms of business Create and maintain strong...Permanent employmentFlexible hours- Shape the future of cybersecurity as a Principal Consultant in Strategic Advisory Services. Lead initiatives to enhance security programs and develop proactive strategies for clients across various industries. In this pivotal role, you will oversee complex advisory engagements...
- Advance your career as a Senior Cyber Security Architect driving strategic cybersecurity design within a large-scale environment. Focus on... ...PKI architecture and lifecycle management • Develop and secure internal and external CAs • Ensure PKI integration with CyberArk...
- Elevate your career as a Senior Cyber Security Architect, driving enterprise cybersecurity design and governance. Utilize your skills in... ...enterprise PKI architecture and lifecycle management Develop and secure internal and external CAs Ensure integration of PKI with CyberArk...
- Infosys is seeking a Senior Product Owner in the Payments domain. The resource will be joining our financial services domain consulting team, a specialized team with expertise in supporting Banking, Cards & Payments, Mortgage and other domain projects. The candidate will be...InternshipRelocation
- Join the Alberta Securities Commission as a Litigation Counsel to uphold securities laws and protect investors. This hybrid role involves conducting hearings and providing legal advice on significant cases. The Alberta Securities Commission (ASC) regulates Alberta's capital...
- Shape the future of energy as an HVDC Project Engineering Consultant. Focus on design engineering, tender evaluations, and oversee commissioning... ...and review tenders for HVDC installations • Witness factory testing and commissioning of HVDC systems • Represent the organization...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Offensive Security Consultant - Penetration Testing. Be the first to apply!
- security analyst Calgary, AB
- conseiller en sécurité financière Calgary, AB
- security operations specialist Calgary, AB
- physical security analyst Calgary, AB
- junior security analyst Calgary, AB
- electronic security specialist Calgary, AB
- spécialiste en sécurité informatique Calgary, AB
- security analyst remote Calgary, AB
- security consultant Calgary, AB
- application security consultant Calgary, AB
