Requisition ID: 88109
Join the Global Community of Scotiabankers to help customers become better off.
Scotiabank’s Information Security & Control (IS&C)’s Cyber Security Red Team is responsible for delivery of Offensive Security services across Scotiabank Globally, such as Covert Attack Engagements, MITRE ATT&CK Testing, Control Resiliency Assessments, and traditional application and network Penetration Testing.
The Cyber Security Red Team (CSRT) is looking for a Senior Penetration Tester, with expertise in network and application penetration testing, to join our internal penetration testing team. As a senior resource, you will be responsible for leading testing practices within your core areas of expertise, and accountable for the delivery of technical services within your domain. Collaborating with the CSRT Service Management Team, responsible for overall engagement oversight and coordination, you will ensure services are delivered in alignment with CSRT’s mission, and the Bank’s Global Security Strategy.
As a Senior Penetration Tester, you can expect to support 15 – 40 engagements annually, as either the lead tester executing testing engagements, or through assessment oversight where you may support scoping of third-party lead engagements, or support and review deliverables by junior team members. Engagements performed by the Cyber Security Red Team members will typically range 2 - 10 weeks in duration, completed sequentially over the course of the year.
Is this role right for you?
This role is ideal for professional penetration testers with leadership experience, or professional independent contractors who operate independently and can manage customer relationships. You are now looking to further develop your service delivery capabilities, and team management skills.
You take initiative and dedicate time to continuing your education, practising your craft and honing your skills.
You are patient and you seek to share knowledge & coach junior team members.
You have strong customer service skills
Do you have the skills that will enable you to succeed in this role?
This role is ideal for penetration testing professionals with 5+ years experience in penetration testing, and 10+ years experience in Information Security.
The ideal candidate has achieved multiple expert level industry recognized certifications (OSEE, OSCE, GXPN, OSWE, etc.)
Experienced and familiar with defensive technologies, and able to identify organizational level control gaps, and articulate risk & recommendations to resolve.
Possesses strong leaderships skills, and able to provide technical coaching to junior team members.
Experienced in developing custom tooling, and leverage whitepapers and online resources to enhance testing practices for the team.
Possesses an in-depth understanding of testing methodologies, within their area of expertise. (ex OWASP Web & Mobile testing methodologies and OSSTMM, and the MITRE ATT&CK Framework.)
You possess strong communication (verbal/written/presentation) skills in English, and able to develop and present executive ready reports and presentations. The same in Spanish is a strong asset.
What's in it for you?
Joining the Bank of Nova Scotia’s Cyber Security Red Team will enable you to rapidly accelerate your cyber career by providing a wide range of opportunities and experiences to learn from, in addition to professional training.
The Cyber Security Red Team encourages personal development of both technical and soft skills in alignment with personal development goals and career objectives, and offers advancement based on personal capabilities.
As an inhouse team member, you will have the opportunity to work in a diverse team, that encourages team work, and provides learning opportunities, and time for knowledge sharing and individual projects.
We have no stuffy dress codes; casual attire is welcome.
We offer flexible work arrangements, with the ability to work remotely.
A competitive total rewards package, including a performance bonus, company matching programs (pension & Employee Share Ownership), generous vacation; health/medical/wellness benefits; employee banking privileges.
The primary office in Scarborough is freshly renovated with a design focus on enabling collaboration through both environment and technology.
Onsite cafeteria plus complimentary hot beverage stations in the workplace.
Minutes by TTC bus from Warden subway station on Line 2.
Free employee shuttle service connecting the IT campus with nearby GO stations.
Minutes from the 401 & DVP.
Free onsite & offsite employee parking with charging stations for electric vehicles onsite
Location(s): Canada : Ontario : Scarborough
As Canada's International Bank, we are a diverse and global team. We speak more than 100 languages with backgrounds from more than 120 countries. Our employees are committed to a superior customer experience and use the Bank’s six guiding sales practice principles to ensure they act with honesty and integrity.
At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.