
Penetration Tester – Networks, Cloud
Posted 1 day ago

Posted 1 day ago
This is a fully remote position, open to applicants in Canada.
• The Penetration Tester will report to the Senior Manager of Network and Strategic Penetration Testing.
• Responsible for coordinating and executing ethical hacking efforts to uncover vulnerabilities and areas for enhancement.
• Aids in the delivery of security testing projects following a structured methodology, which includes writing comprehensive test reports.
• Supports the execution of highly technical and analytical security assessments for Active Directory environments, network infrastructure, cloud platforms, and AI technologies.
• Provides guidance on secure development practices.
• Acts as a technical leader within business areas, serving as a subject matter expert in Security Testing.
• Identifies security vulnerabilities and deficiencies through the conduct of risk assessments.
• Assists in planning, testing, tracking, and advising on the necessary risk acceptance for identified security threats.
• Collaborates with management and colleagues to support the growth of less experienced Security Testing Consultants.
• Bachelor’s degree in Information Security, Information Technology, Information Systems Management, Computer Science, Engineering, or related fields, or equivalent demonstrated work experience.
• A minimum of 3+ years of experience in Manual Penetration Testing for Networks and Cloud Environments.
• Strong familiarity with testing in Active Directory Environments and related vulnerabilities and exploitation techniques.
• High proficiency in using security testing tools and penetration testing Linux distributions, such as Kali.
• Extensive practical knowledge of employing the Mitre Attack framework.
• Preference will be given to candidates holding at least one certification in a relevant field, particularly Information Security certifications from recognized institutions (e.g., OSCP, OSEP, HackTheBox Cloud security testing certificates, etc.).
• Capability to identify and exploit vulnerabilities in Active Directory environments and Cloud workflows, as well as navigate multi-step attack paths.
• Proficiency in at least one scripting language.
• Competence in documenting reproducible steps for technically accurate findings.
• Experience in security testing of agentic AI solutions is a plus.
• Experience in security testing of CI/CD pipelines is also a plus.
• Health insurance.
• Tuition reimbursement.
• Accident and life insurance.
• Retirement savings plans.
CSC Generation
Derex Technologies Inc
LoanCare
CarringtonCrisp
Get handpicked remote jobs straight to your inbox weekly.