Offensive Security Consultant - Calgary
2 days ago
Job description
We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential.
Our exceptional people are the key to our unrivaled, inclusive culture and talent experience and our ability to be compelling to our clients.
You'll find an environment that inspires and empowers you to thrive both personally and professionally. There's no one like you and that's why there's nowhere like RSM.We are currently looking for team members to join our Security, Privacy, and Risk Consulting practice. The candidate will work with teams of security and privacy staff in a wide variety of systems environments. Our Security, Privacy and Risk Consulting team serves the Information Security and Data Privacy related needs of our clients.
This team helps organizations identify their cyber risk, and design and implement program to address those risks and improve their cyber security posture.
We serve a diverse base of clients in a variety of industries and understanding how technology impacts the operation and growth of organizations is what we do best.
We are seeking individuals skilled at performing vulnerability assessments, penetration testing, and secure architecture reviews of a variety of operating systems, network devices, wireless solutions, and their related infrastructure.
Examples Of Candidate's Responsibilities IncludePerform analysis and testing to verify the strengths and weaknesses of client IT environments utilizing commercial and open source security testing tools
Perform Internet penetration testing (blackbox/greybox /whitebox testing) and network architecture reviews (manual/automated)
Perform other security testing tasks such as wireless penetration testing, social engineering campaigns (email, web, phone, physical, etc.), mobile application testing, embedded device testing, and similar activities meant to identify critical weaknesses within client environments
Assist with the development of remediation recommendations for identified findings
Identify and clearly articulate (written and verbal) findings to senior management and clients
Help identify improvement opportunities for assigned clients
Supervise and provide engagement management for other staff working on assigned engagements
Required Qualifications
This position is for individuals with 4+ years of experience within the cyber security space, with a preference for prior consulting or professional services backgrounds.
Ability to travel as needed
Must possess a high degree of integrity and confidentiality, as well as the ability to adhere to both company policies and best practices
Strong verbal and written abilities
Strong multitasking and project management skills
Preferred Qualifications
Bachelor's degree in computer science or related field from an accredited college/university
Technical background in networking/system administration, security testing or related fields
In-depth knowledge of TCP/IP
Two or more years of Perl, Python, Bash, or C experience
Operating System Configuration and Security experience (Windows, HP-UX, Linux, Solaris, AIX, etc.)
Configuration and Security experience with firewalls, switches, routers, VPNs
Experience with security and architecture testing and development frameworks, such as the Open Web
Application Security Project (OWASP), Open Source Security Testing Methodology Manual (OSSTMM), the Penetration Testing Execution Standard (PTES), Information Systems Security Assessment Framework (ISSAF), and NIST SP800-115
Familiar with security testing techniques such as threat modeling, network discovery, port and service identification, vulnerability scanning, network sniffing, penetration testing, configuration reviews, firewall rule reviews, social engineering, wireless penetration testing, fuzzing, and password cracking and can perform these techniques from a variety of adversarial perspectives (white-, grey-, black-box)
Experience with discovering, utilizing, and possibly writing exploits for such vulnerabilities as buffer and stack overflows
Familiar with the logistics of security testing such as acquiring authorization for testing, reporting, risk analysis of findings, data handling, and legal considerations
Commercial Application Security tools experience (Nessus, Nexpose, Qualys, Appdetective, Appscan, etc.) Open source and free tools experience (Kali Linux suite, Metasploit, nmap, airsnort, Wireshark, Burp Suite, Paros, etc.)
One or more of the following testing certifications:
Certified Ethical Hacker (CEH); GIAC Certified Penetration Tester (GPEN); Offensive Security Certified Professional (OSCP); or equivalent development or testing certification (ECSA, CEPT, CPTE, CPTS, etc)
In addition, one or more of the following governance certifications is preferred:
Certified Information Systems Security Professionals (CISSP); Certified Information Systems Auditor (CISA); Certified Information Security Manager (CISM)
Strong leadership and communication skills, technical knowledge, and the ability to write at a "publication" quality level in order to communicate findings and recommendations to the client's senior management
At RSM, we offer a competitive benefits and compensation package for all our people.
We offer flexibility in your schedule, empowering you to balance life's demands, while also maintaining your ability to serve clients.
Learn more about our total rewards at
RSM does not tolerate discrimination and/or harassment based on race; colour; creed; sincerely held religious beliefs, practices or observances; sex (including pregnancy or disabilities related to nursing); gender (including gender identity and/or gender expression); sexual orientation; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past, current or prospective service in the Canadian uniformed service; Canadian Military/Veteran status; pre-disposing genetic characteristics or any other characteristic protected under applicable provincial employment legislation.
At RSM, an employee's pay at any point in their career is intended to reflect their experiences, performance, and skills for their current role.
The salary range (or starting rate for interns and associates) for this role represents numerous factors considered in the hiring decisions including, but not limited to, education, skills, work experience, certifications, location, etc.
As such, pay for the successful candidate(s) could fall anywhere within the stated range.Compensation Range:
$98,000 - $167,000
Individuals selected for this role will be eligible for a discretionary bonus based on firm and individual performance.
Similar jobs
We are looking for a dynamic and results-focused Security Consultant to provide security solutions to our clients from our Security Operations Center. · This individual will utilize strong business and technical consulting skills to recommend enhancements that will optimize their ...
1 month ago
We're proud of our reputation as one of North America's most dynamic IT providers — and we're even prouder of our culture that allows our people to live life to its fullest. · A career that helps you get more out of life.We don't just say it, we prove it. Every day. · A Long View ...
1 month ago
We are looking for a dynamic and energetic Security Consultant for our Toronto branch. As a Security Consultant you will deliver security solutions including implementations to our clients across a broad range of industries and technologies. · Event Detection: · o Act as the main ...
1 month ago
We are redefining how organizations succeed in the digital age by bridging strategic vision, technical innovation, · and operational execution to deliver transformative results. · Support PCI DSS engagements, · evidence collection, · control validation, · and documenting assessme ...
2 weeks ago
We're proud of our reputation as one of North America's most dynamic IT providers — and we're even prouder of our culture that allows our people to live life to its fullest. · A Long View career helps you get more out of life. We don't just say it, we prove it. Every day.We creat ...
1 month ago
Make an impact as we look to strengthen our Digital Solutions practice with a Consultant, Cloud, Infrastructure & Security. · ...
1 month ago
Global Security – Application Penetration Testing Consultant
Only for registered members
We're looking for passionate experts to join X-Force Red, IBM Security's team of veteran hackers. As a Global Application Security Consultant, you'll perform penetration tests against clients' applications and assist in the sales process. · ...
3 weeks ago
We are looking for a highly motivated Cyber Security professional at the Consultant/ Senior Consultant level to join our team. · Bachelor's degree in Computer Science or equivalent experience. · 2-4 years of experience identifying and managing technology challenges and risks. · ...
1 month ago
+ Make an impact as we strengthen our Cyber Digital Advisory practice with a Senior Consultant, focused on PCI and digital compliance. This diverse team of tech-savvy problem solvers enables clients to take a proactive and prepared approach to prevent cyber crime and capitalize o ...
1 month ago
We are currently looking for team members to join our Security, Privacy and Risk Consulting practice. · We serve a diverse base of clients in a variety of industries and understanding how technology impacts the operation and growth of organizations is what we do best. · ...
1 month ago
We are looking for a highly motivated Cyber Security professional at the Senior Manager level to join our team. · Leadership, oversight, and successful delivery of cyber security transformation engagements serving multiple clients across various industries. · Understand our clien ...
1 month ago
This is a full-time on-site role located in Calgary for a Leasing Consultant. The primary responsibilities of the Leasing Consultant include assisting prospective residents with leasing apartments and managing lease agreements. · Assisting prospective residents with leasing apart ...
3 weeks ago
Principal Consultant, Strategic Advisory Services
Only for registered members
As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn't changed — we're here to stop breaches, and we've redefined modern security with the world's most advanced AI-native pla ...
2 days ago
The Alberta Securities Commission ASC is responsible for maintaining the integrity of Albertas capital market ensuring a fair and level playing field for investors and overseeing the conduct of market participants. · Maintaining a central repository of novel accounting and auditi ...
5 days ago
The Summer Student will provide research and documentation assistance to the OCA team in enhancing their understanding of capital markets. · ...
4 days ago
Data Elephant is a boutique data and analytics consulting firm helping Canadian organizations develop data strategies. As a certified partner with leading cloud platforms including AWS Azure and Databricks we deliver strategic solutions that create real business impact. · We are ...
1 month ago
We are looking for an early-career Consultant with foundational experience in cybersecurity and a strong interest in Operational Technology (OT) and Industrial Control System (ICS) security. · Assist in cybersecurity risk and maturity assessments using frameworks such as NIST SP ...
1 month ago
+We are seeking an experienced application penetration tester with expertise in both manual and automated testing to join our Security and Privacy Risk Consulting group. · Supervise and lead security assessments, including static and dynamic application security testing · Conduc ...
1 month ago
C'est le moment d'apporter votre expertise à Insight. Nous ne sommes pas seulement une entreprise technologique ; nous sommes une entreprise qui met les gens au premier plan. · Nous croyons qu'en libérant le pouvoir des personnes et de la technologie, nous pouvons accélérer la tr ...
4 weeks ago
We are seeking experienced .NET Software Developers to support the development and enhancement of an internal web application used by operational teams. · ...
3 weeks ago