QUALIFICATIONS AND SKILLS

Requirements and Experience

QUALIFICATION -

• University degree (or college) in Computer Science, Information Technology, or other IT-related field of study.
• The preferred candidate may also have one or more of the following designations:
  o CISA, CIA, CISSP or CISM
  o ISO 27001 Lead Auditor
  o PCI QSA
  o Certified Ethical hacker (CEH), Offensive Security Certified Professional (OSCP), Offensive Security Certified Expert (OSCE), CREST, SANS GIAC Penetration Tester, Web Application Penetration Tester, Exploit Researcher and Advanced Penetration Tester.

MUST HAVE SKILLS –

• Skills to plan, implement, administer, maintain, and secure a computer network.
• Have experience of an audit with a CPA / CA firm or a top-tier IT Consulting firm – must have done audit work. At least 3-year experience in audit and cyber security
• Must have knowledge of scripting languages such as perl, vbscript, *nix shell scripting.
• Previous experience with IDS and log correlation software (SIEM) is an asset.
• Excellent knowledge of cyber security standards, risks, threats, prevention measures, and best practices.
• Experiences in improving a vulnerability management process and/or a vulnerability-scanning concept.
• Hands-on experience with vulnerability scanning and management processes and tools like Qualys, ServiceNow Vulnerability Response. Experience with vulnerability management in cloud solutions
• Knowledge of OWASP Top 10, OWASP ASVS, SANS, NIST, OWASP testing guide and Penetration Testing Execution Standard
• Sound computer user support skills, network administration skills and security and vulnerability assessment and remediation skills
• Proficient with Microsoft Office applications (Word / Excel / PowerPoint / Access / Visio)
• Project management - Able to multitask, work under pressure and finish work in tight deadlines.
• Communicates task progress and findings by providing information in status meetings, highlighting unresolved issues.
• Protects organization’s reputation by keeping information confidential.
• Good English writing skills
• At least 3-year experience in audit and cyber security
• Willing to work additional hours and weekends to meet client needs.

GOOD TO HAVE SKILLS-

• Knowledge with Auditing Standards
• Knowledge / Experience in the use of CaseWare and Case view
• Knowledge of Controls audits / IT audits and experience with SOX or SOC reports
• Demonstrate an interest in pursuing relevant designations and completing the required examinations; maintaining personal networks; participating in professional organizations.
• Preference will be given to applicants residing in North York / Toronto
• Work form home option is not available for this position

Work Remotely

• No

Job Type: Full-time
Pay: $68,664.53-$87,042.51 per year

Benefits:

• Dental care
• Extended health care
• Life insurance

Schedule:

• 8 hour shift
• Monday to Friday
• Weekends as needed

Ability to commute/relocate:

• North York, ON: reliably commute or plan to relocate before starting work (required)

Experience:

• IT Audit: 3 years (required)
• Top-tier IT Consulting firm or CPA / CA firm: 3 years (preferred)

Licence/Certification:

• either of CISA, CISSP, AWS or Azure Certifications (preferred)

Work Location: In perso