Cybersecurity Analyst assisting in the review and implementation of cybersecurity initiatives across a large environment at Kemper. Responding to cyber threats and improving processes and technologies.
IA
Hybrid Offensive Security Analyst
Posted last month
About the role
- Offensive Security Analyst responsible for intrusion tests and enhancing security posture at iA Financial Group. Collaborating with teams to document findings and improve detection mechanisms.
Responsibilities
- plan and perform intrusion tests on web applications, APIs, cloud environments, internal infrastructures
- set up and participate in purple team exercises simulating real attack scenarios
- collaborate with defensive teams to validate controls and improve detection mechanisms
- document findings, provide remediation recommendations, and present results to stakeholders
- stay informed about emerging threats, tools, and techniques in offensive security
- work with a high degree of autonomy and initiative
Requirements
- 3 to 5 years of experience in offensive security
- 7 years of experience in information technology (IT)
- knowledge of the OWASP Top 10, MITRE ATT&CK, and threat-modeling frameworks
- ability to perform intrusion tests on various infrastructures
- proficiency with offensive security tools such as Burp Suite, Nmap, Nessus, BloodHound, Metasploit, Cobalt Strike
- strong ability to communicate technical concepts clearly
- intermediate level of English and French proficiency
- certifications such as OSCP, OSWE, OSEP, CRTP, GPEN, CPTS are strong assets
- experience in scripting (Python, Bash, PowerShell) for automation and exploit development
- experience with Infrastructure as Code, such as Terraform
- background in networking or software development
Benefits
- flexible group insurance
- competitive pension plan
- employee share purchase plan
- vacation and wellness/personal development days
- telemedicine
- employee and family assistance program
- ergonomic equipment program
- performance bonus
- discounts on iA products
- a healthy, safe, fair, and inclusive environment
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Senior Information Security Analyst managing Information Security Management System at BMLL Technology. Supporting compliance with ISO 27001 and enhancing security measures.
Graduate Cyber Security Analyst at McKesson participating in a 24 - month Cyber Academy program. Monitor security alerts and contribute to incident response efforts while gaining mentorship.
Threat Intelligence Analyst role analyzing cyber threats and providing strategic recommendations. Working with cybersecurity teams at PwC Canada to safeguard client data and systems.
Contract Security Analyst specializing in security operations and incident response for cloud security at Embark. Focus on alert handling, detection engineering, and data loss prevention.
Cyber Security Analyst providing security operations support for USAF Cloud One project. Engaging in incident response and cybersecurity compliance activities within a hybrid environment.
Cybersecurity Analyst responsible for monitoring, analyzing, and responding to security incidents in SOC. Developing detection rules and conducting threat - hunting campaigns within a hybrid work setup.
Information Security Analyst working with Optasia to enforce security controls and protect data. Collaborating on technical projects and auditing systems in a hybrid work environment.
Cyber Security Analyst investigating and responding to security events at A+E Global Media. Collaborating cross - functionally to improve detection and response processes.
Information Security Analyst handling security monitoring and incident response tasks for educational technology company. Collaborating with IT teams to enhance security measures and compliance.