- Develop and/or enhance strategies and processes to manage web application security vulnerabilities and threats for both transactional and marketing/informational web sites.
- Develop and/or enhance communication model to manage web application vulnerability remediation with the development and infrastructure support teams in support of risk management practices on behalf of the business owner.
- Develop and/or enhance reporting to development teams and all levels of management in order to provide proper tracking and measurement of remediation relative to established objectives
- Recommend, design, assess, implement, deploy and maintain application security controls required to protect its customers.
- Responsible for developing and/or enhancing the strategies and processes to identify, analyze, and communicate application vulnerabilities as per the CISO Directive and published communication process flows.
- Responsible for adherence to an established process flow that ensures development support teams, infrastructure support teams, and business risk owners implement control measures that effectively mitigate or eliminate the identified risk.
- Responsible for timely and accurate reporting of all findings to the development teams, appropriate levels of management and the business risk ownerMust Have Skills/Requirements:1) 10+ years of Experience as an IT Security Analyst2) A strong understanding of multi-tier Web Applications, web API, and related vulnerabilities and potentials threats. Staying abreast of information provided by recognized organizations such as OWASP (Open Web Application Security Project) and CVE (Common Vulnerabilities and Exposures). 3) Must have a comprehensive understanding of the HTTP protocol, Secure Software Development Lifecycle (SDLC) and Web Programing for multi-tier web applications and web services. An understanding of JavaScript, SQL, HTML, XML, , , Java, PHP, XML, Python, PowerShell and Ruby is essential. 4) Must have a comprehensive understanding of the OWASP Application Security Verification Standard (ASVS), and have proven working experience applying the ASVS.5) Experience performing source code and/or application security assessments, including risk assessments, and penetration testing. The ability to demonstrate exploitation of vulnerabilities is essential, as would experience with vulnerability testing and scanning tools such as Checkmarx, BurpSuite, Acunetix, NetSparker, WebInspect, AppScan, SQLMap, ZAP, and Fortify.
-
Information Security Analyst
3 weeks ago
Esri Canada Toronto, ON, CanadaEsri Canada has an exceptional opportunity for an Information Security Analyst, in our Technology Infrastructure team. Reporting to the Manager, Technology Infrastructure, The Information Security Analyst will primarily protect Esri Canada's computer systems, networks and sensiti ...
-
Security Analyst
6 days ago
CB Canada Toronto, CanadaSecurity Analyst · On behalf of our client in the Banking Sector, PROCOM is looking for a Security Analyst. · Security Analyst – Job Description · User access provisioning, granting access to banking applications and systems to employees and customers · Provisioning access to ...
-
Security Analyst
3 days ago
Modis Toronto, Canada10+ years of Experience as an IT Security Analyst · 2) A strong understanding of multi-tier Web Applications, web API, and related vulnerabilities and potentials threats. Staying abreast of information provided by recognized organizations such as OWASP (Open Web Application Secur ...
-
Security Analyst
5 days ago
BMO Financial Group Toronto, Canada ContractCompany Overview · BMO is an organization driven by a shared Purpose: Boldly Grow the Good in business and life. It calls on members of its team, to create lasting, positive change for its customers, its communities, and its people. By working together, innovating, and pushing bo ...
-
Security Operations Analyst, CP2
2 weeks ago
Igbo Union of Canada Old Toronto, CanadaAviator Spribe играть на тенге · You are not right. Write to me in PM, we will communicate. · Aviator Spribe играть онлайн казино · It is simply magnificent phrase · Добро пожаловать в захватывающий мир авиаторов Aviator – это увлекательная игра, которая позволит вам окунуться в ...
-
IT Security Analyst
2 weeks ago
Raise Toronto, CanadaLocation Address: Scarborough (1-2 day a month in office flexible on which days) · Duration: 4 months with possible extension · Reason: Additional support needed during a migration process. · Story Behind the Need: · Business Group: Information Security & Control (IS&C)'s Enterpr ...
-
Security Analyst
7 hours ago
Modis Toronto, Canada10+ years of Experience as an IT Security Analyst 2) A strong understanding of multi-tier Web Applications, web API, and related vulnerabilities and potentials threats. Staying abreast of information provided by recognized organizations such as OWASP (Open Web Application Securit ...
-
Security Analyst
1 day ago
Modis Toronto, ON, Canada10+ years of Experience as an IT Security Analyst 2) A strong understanding of multi-tier Web Applications, web API, and related vulnerabilities and potentials threats. Staying abreast of information provided by recognized organizations such as OWASP (Open Web Application Securit ...
-
Security Analyst
4 weeks ago
Finance Professionals Inc. Toronto, ON, CanadaLocation: Hybrid (Downtown, Toronto) · Our client a leading financial institution in Downtown Toronto is looking for a Security Analyst - DLP, ServiceNow to work with the Data Protection Advisors who provide advisory services to business lines regarding data protection and data l ...
-
Security Analyst
3 weeks ago
Arthur Grand Technologies Inc Toronto, ON, CanadaSecurity Specialist - Penetration Testing – Senior · Arthur Grand Technologies Inc · federal contracting opportunities, federal contracting, federal contracting companies, federal contracting for small business, federal contracting agencies, us federal contracting corp, federal ...
-
Information Security Analyst
1 week ago
CB Canada Toronto, CanadaInformation Security Analyst · On behalf of our client in the Banking Sector, PROCOM is looking for an Information Security Analyst. · Information Security Analyst – Job Description · Manage assigned security platforms, following clients' procedures if required, which includes ...
-
IT Security Analyst – PAM
1 week ago
CB Canada Toronto, CanadaIT Security Analyst – PAM (Privileged Access Management), Active Directory · IT Security Analyst - PAM (Privileged Access Management) - Active Directory · On behalf of our client in the Banking Sector, PROCOM is looking for an IT Security Analyst - PAM (Privileged Access Manage ...
-
Security Analyst
3 weeks ago
A.S.P. Incorporated Toronto, ON, CanadaRESPITE SECURITY SPECIALIST · Are you passionate about Safety & Security and seeking the opportunity to join a team of Security professionals? · Incorporated has provided security and customer service solutions for over 20 years to Canadian clients. P provides services to some o ...
-
IT Security Analyst
2 weeks ago
Raise Toronto, CanadaLocation Address: Scarborough (1-2 day a month in office flexible on which days) Duration: 4 months with possible extension Reason: Additional support needed during a migration process. Story Behind the Need: Business Group: Information Security & Control (IS&C)'s Enterprise Secu ...
-
IT Security Analyst
2 weeks ago
Finance Professionals Inc. Toronto, CanadaTypical Day in the Role: · • The incumbent is responsible for supporting the Senior Manager, Director, VP, SVP and CISO in achieving IS&C Strategic goals through various processes, including: · • Develop and/or enhance strategies and processes to manage web application security ...
-
Senior Security Analyst
2 weeks ago
Visionpool Business Services Toronto, CanadaVisionpool Business Services is hiring a HYBRID Senior Security Analyst with broad technical and security-based backgrounds. · Responsibilities:Perform security monitoring including alert triaging, investigation, and Incident reporting · Monitor Threat Intelligence feeds and impl ...
-
Security Analyst
3 weeks ago
ASP Security Services Toronto, ON, CanadaRESPITE SECURITY SPECIALIST · Are you passionate about Safety & Security and seeking the opportunity to join a team of Security professionals? · Incorporated has provided security and customer service solutions for over 20 years to Canadian clients. P provides services to some o ...
-
Technology Security Analyst
1 week ago
Halton Region Ontario, Canada PermanentReporting to the Digital Senior Security Advisor, the Technology Security Analyst is responsible for the implementation and operation of security controls as defined in five of the six pillars the NIST CSF and relevant industry specific security frameworks (PCI-DSS etc.). · Duti ...
-
First National Toronto, Canada Full timeWe are hiring an Application Security Analyst, Information Security · The Role: · We're seeking an Application Security Analyst well-versed in risk analysis, vulnerability assessment methodologies, and information security concepts. Your role involves supporting security risk a ...
-
Staff Security Analyst
2 weeks ago
Lightspeed Toronto, Canada Full timeHi there Thanks for stopping by · Are you actively looking for a new opportunity? Or just checking the market? Well... you might just be in the right place to join our team. · The Staff Analyst, Security is a critical member of Lightspeed's Security Operations Team. They activel ...
IT Security Analyst - Toronto, Canada - Raise
![Default job background](https://contents.bebee.com/public/img/bg-user-ex-1.jpg)
Description
Location Address:
Scarborough (1-2 day a month in office flexible on which days)
Duration: 4 months with possible extension Reason: Additional support needed during a migration process
Story Behind the Need:
Business Group:
Information Security & Control (IS&C)'s Enterprise Security Services – Application Security is responsible to improve security practices and, through that, to find and preferably prevent security issues within applications
Typical Day in the Role:
The incumbent is responsible for supporting the Senior Manager, Director, VP, SVP and CISO in achieving IS&C Strategic goals through various processes, including:
Nice to have Skills:
1) Prior Financial Institutional Experience2) An understanding of gateway technologies and network devices such as Load Balancers, Proxies, IPS, WAF, API Gateway.3) The ability to generate reports and tailor his/her communication strategy for various levels of technical staff, executive management, and business clients.
Soft Skills:
1)
Excellent written and oral communication skills. Ideas must be able to be understood and shared easily.
2) Strong organizational skillsBest Vs Average Candidate:
The ideal candidate would have strong hands on experience as an IT Security Analyst. Specifically working in a team environment on a multifaceted project.