Penetration tester

National Bank of Canada - Montréal, QC (il y a 30+ jours)

Postuler dès maintenant

Join a world-class information security dynamic and innovative team.

We're looking for new talent to expand our security team. We live in a digital world. Things change every day, requiring us to adopt a pragmatic, agile, and proactive approach to ensuring security when it comes to new opportunities, technologies, and processes.

If you'd like to:
Influence change
Have input in information security
Explore new ideas

If you can:
Find vulnerabilities that no one else has been able to find and uncover system security flaws
Develop, as necessary, your own tool or portion of code to carry out testing
Provide clear, coherent written reports as well as remediation guidance based on an overview of risk
Propose solutions proactively

Then we want to hear from you!

Want to make a positive impact in our organization?

Inspire a positive work environment and be a champion and innovator of team work and support.
Have a good understanding of system and network architectures
Be able to critically examine an organization and system from the perspective of a malicious actor and articulate the risk in clear and precise terms
Conduct in-depth penetration testing, including identifying and reporting security flaws, making clear, consistent recommendations, and providing remediation guidance
Identify vulnerabilities that cannot be identified by scanners or automated tools
Keep current on the latest security trends and developments
Perform manual security tests for web applications, APIs, mobile apps (iOS and Android), infrastructure, and manual code and configuration code review activities

Certification: OSCP, OSCE, GPEN, CEH, definite assets
3-5 years of experience in the field of information security
3 years of proven experience working with penetration testing tools and manual attacks (Metasploit, Burp Suite, Cobalt Strike, etc.)
Proven experience creating and communicating reports on vulnerabilities to various levels of personnel within a large organization
Experience with penetration testing in at least three of the following areas: network, system, application, mobile, web, wireless network
Experience in programming: able to code and use scripting languages (Python, Perl, etc.), an asset
Knowledge of the tactics, techniques, and procedures associated with the activity of malicious actors (organized crime, fraud groups, etc.)
Bilingualism both spoken and written - English and French

Apply now to make a positive impact in our organization?

Please note that the position can be fill in Montreal or Toronto according to preference.

The Bank has innovated by modernizing its performance evaluation system to better meet our clients’ evolving needs. From now on, the corporate values (expected behaviours) of partnership, agility and empowerment count as much as the business objectives.

Working at National Bank means having access to competitive working conditions, a wide range of employee benefits, a dynamic work environment and telemedicine services.

National Bank sees diversity as a great source of wealth and values it in all its dimensions. Its objective is to offer an open, respectful work environment where all employees can achieve their full potential. Senior management's concrete commitment helps spread this value across all sectors in the organization. The Bank has been ranked among the top employers for diversity in Canada for several years.