Internal Auditor at Leaseweb responsible for planning audits and assessing IT security frameworks. Collaborating with global teams to enhance security controls and mitigate risks.
IN
Hybrid Security Advisor Specialist, Offensive Security – Global Red Team
Posted 2 months ago
About the role
- Security Advisor Specialist testing security controls and responding to threats for Intact Financial globally. Collaborating with a global team to strengthen security measures across the enterprise.
Responsibilities
- Conduct reconnaissance on network environment to build external landscape using industry standard tools, threat intelligence feeds, OSINT and other readily available information sources
- Conduct offensive security testing to ensure security controls and response actions are effective.
- Employ attack strategies to simulate real-world attacks by threat actors and benchmark response capabilities across the enterprise.
- Ability to identify and exploit vulnerabilities in computer systems, networks and applications to simulate attacks by threat actors
- Analyze and report on the results of security assessments and make recommendations to improve the security posture of the enterprise.
- Work with regional cyber governance and risk teams to ensure that findings are properly tracked for remediation
- Generate the required metrics and reports to support the CISO IFC Affiliates in reporting on enterprise security control effectiveness
Requirements
- Bachelor's degree in Computer Technology, Information Security, an asset.
- A minimum of five (5) years of relevant professional experience in information technology.
- A minimum of three (3) years of experience in information security.
- Knowledge of offensive security operations, tools and techniques.
- Knowledge of information security standards, regulations and legislation (NIST, COBIT5, ISO 27001), an asset.
- Python scripting comes naturally, and have a history of using it in blue/red/purple team engagements.
- Proficiency in manual testing techniques beyond automated scanning.
- Strong knowledge of OWASP Top 10, MITRE ATT&CK, and CVSS scoring.
- Recognized certification in information security (CEH, CISM or other), an asset.
Benefits
- Flexible work arrangements and a hybrid work model
- Possibility to purchase up to 5 extra days off per year
- Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more
- Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Senior Software Engineer building robust full - stack solutions for threat and email security at Hoxhunt. Contributing to comprehensive reporting and threat remediation as part of a collaborative team.
Senior SOC Engineer at Pearson's Security Operations Centre. Leading design, implementation, and optimization of security tooling and infrastructure to enhance detection capabilities.
Information Security Intern supporting infrastructure security initiatives within cloud environments at Inmar Intelligence. Collaboration on automation, system hardening, and secure cloud image development is required.
Security GRC Analyst at ClearBank improving security measures across supply chains. Engage in training programs and threat assessments while collaborating with internal teams.
Career opportunity in cybersecurity with a focus on innovative AI - driven solutions and potential relocation to various locations. We're keen to connect with talented individuals before roles are available.
Manager, Offensive Security leading Capital One's Purple Team to enhance cyber defense posture. Collaborating across teams to address vulnerabilities and improve information security protocols.
Bilingual Security Agent ensuring the safety of people and property for OPENLANE. Responsibilities include surveillance, access control, and customer service at the facility.
Enterprise Sales Executive focusing on AI Security solutions for F5. Collaborating with enterprise account teams and engaging senior stakeholders in driving sales.
Security Engineering Manager responsible for developing enterprise security platforms at Snap. Leading a team to ensure security and operational excellence across the company.