Vulnerability Management Specialist - Cyber Security Consultancy
1564179
Posted: 01/10/2025
- $80,000 base
- Toronto [Ontario]
- Permanent
- 80000
- Enterprise Security
- Cyber Security
A dynamic and forward-thinking Cyber Security Consultancy is seeking an experienced Vulnerability Management Specialist consultant to work with their many North American clients.
This is a fantastic opportunity to join a Penetration testing specialist team and work with interesting and exciting customers.
This is 100% remote with great benefits on offer! If you are interested in this opportunity, apply today!
Key Responsibilities:
- Conduct vulnerability scans using industry-standard tools (e.g., Nessus, Qualys, OpenVAS) to identify security gaps within client networks, systems, and applications.
- Perform manual penetration testing to assess the exploitability of identified vulnerabilities.
- Prioritize and categorize vulnerabilities based on risk, severity, and potential business impact.
- Work with clients to provide actionable recommendations for remediation of vulnerabilities and ensure that corrective actions are taken in a timely manner.
- Prepare clear and detailed reports outlining findings, risk analysis, and remediation recommendations for both technical and non-technical stakeholders.
- Stay up-to-date with the latest security threats, vulnerabilities, and best practices in vulnerability management and penetration testing.
- Collaborate with internal teams to enhance scanning tools, methodologies, and processes for continuous improvement.
- Contribute to the development of security training materials and resources for clients.
Skills/Must have:
- Proven experience in penetration testing and vulnerability management, ideally within a consultancy environment.
- Strong proficiency with vulnerability scanning tools (Nessus, Qualys, OpenVAS) and manual penetration testing techniques.
- In-depth knowledge of networking, web application security, operating systems, and cloud environments.
- Familiarity with common vulnerability databases (CVE, NVD) and relevant frameworks (OWASP Top 10, NIST).
- Solid understanding of security controls, remediation strategies, and risk management.
- Excellent communication skills, with the ability to explain complex technical issues to both technical and non-technical stakeholders.
- Industry certifications such as CEH, OSCP, CISSP, or similar are a plus.
Benefits:
- 10% Bonus
- Medical and Dental
- Very Generous Annual Leave
- Certifications paid for
Salary:
- $80,000 base
Kieran Waite
Head of Enterprise & Security Canada