IT Security Analyst

Our Banking Client, one of the top five Canadian banks, is seeking an experienced Application Security Analyst to join their high-visibility security team. This role offers the chance to work across multiple applications spanning the US, Mexico, and South America.

Candidate Value Proposition
Opportunity to gain international exposure, work on critical application assessments, and support enterprise-wide risk management initiatives.

Role:  IT Security Analyst – 5
Location: Scarborough, ON (open to fully remote candidates)

Candidate Requirements/Must Have Skills:
1) 10+ years of experience as an IT Security Analyst
2) Experience that demonstrates a comprehensive understanding of multi-tier Web Applications, web APIs, related vulnerabilities and potentials threats, current information released by organizations such as OWASP (Open Web Application Security Project) and CVE (Common Vulnerabilities and Exposures)
3) Experience that demonstrates a comprehensive understanding of the HTTP protocol, Secure Software Development Lifecycle (SDLC) and Web Programing for multi-tier web applications and web services.
- For example, experience with some of these: JavaScript, SQL, HTML, XML, ASP.net, VB.net, Java, PHP, Python, PowerShell, or Ruby, is essential.
4 Demonstrated experience working with the OWASP Application Security Verification Standard (ASVS).
5) Experience performing source code and/or application security assessments, including risk assessments and penetration testing, with vulnerability testing and scanning tools, with at least one of these: Checkmarx, BurpSuite, Acunetix, NetSparker, WebInspect, AppScan, SQLMap, ZAP, and Fortify.

Nice-To-Have Skills:
1) Prior Financial Institutional Experience
2) Experience with gateway technologies and network devices such as Load Balancers, Proxies, IPS, WAF, API Gateway.
3) Experience generating reports and tailoring communication strategies for various levels of technical staff, executive management, and business clients.