Application Security Penetration Tester – Full Time

Date Posted:

Aug 2, 2022

Job Type

Full Time

Career Level:

Entry/Mid-Level

Job Function:

Technical Consultant

Parabellyx Cybersecurity is a fast-growing professional Applications Security and managed services company.

Located in Vaughan, Ontario, we work with the largest technology service providers across North America, helping organizations of all sizes, across many verticals secure their business-critical applications.

Parabellyx always puts people first. From our customers and partners to our culture of engineers and experts, we understand that people are our assets. You’ll work alongside thought leaders, engineers, and top cybersecurity experts in a culture that champions strategic vision, actualized expertise, intelligent and precise solutions, and continuous improvement.

We hire smart, curious, entrepreneurial, talented people to push boundaries, reimagine what’s possible and turn challenges into opportunities.

We are looking for an experienced customer-facing consultant to join our security assurance practice, working with top Canadian and international clients, helping them evaluate the technical risks associated with their technology, cloud and applications.

This person should expect to provide thought leadership in one or several areas of a penetration testing practice (with a focus on web/mobile application security) and help the team build and maintain a library of tools, knowledge, findings and other technical resources.

Your role will include:

Your role will focus on performing penetration testing assessments and red team exercises, concentrating on customer-facing infrastructure and applications. A bulk of this work will be in web/mobile application security testing, following OWASP methodologies.

You will be working independently on a team with experienced consultants.  Ideally, you will be a contributor to building the team’s breadth and depth of knowledge and provide unique expertise and experience in some area.

This position is open primarily to cybersecurity professionals who have recent experience and demonstrated expertise in penetration testing.

Required Skills:

  • Ability to work independently
  • Strong knowledge and experience with web application security testing
  • Knowledge of mobile application (IOS/Android) security concepts and/or testing
  • Awareness of code security or a code security review process
  • Ability to speak and write fluent English
  • Experience drafting documentation with minimal supervision
  • Experience with Microsoft products (Word, etc).

Nice to Have (these are a bonus):

  • Awareness of CIS or other system hardening standards & experience implementing or auditing them
  • Knowledge and experience with DevOps, CI/CD and other automation concepts
  • Experience with SAST/DAST and other development pipeline-based software security tools and services.
  • Experience with advanced firewalls and other network security platforms
  • Experience with Governance/Risk/Compliance activities or methodologies including TRA/PIA, or standards such as ISO27001 or SOC2.

Remote work is OK. (MUST be eligible to work in Canada without sponsorship).  Must pass CPIC background check and provide references.

Request our guidance on top cybersecurity priorities

We’ll help you evaluate your cybersecurity strengths and vulnerabilities

Talk to an Expert