Security Analyst focusing on brand protection against online fraud and phishing attacks. Investigating threats, pursuing takedowns, and supporting sales evaluations in a hybrid work environment.
IA
Hybrid Offensive Security Analyst
Posted last week
About the role
- Offensive Security Analyst responsible for intrusion tests and enhancing security posture at iA Financial Group. Collaborating with teams to document findings and improve detection mechanisms.
Responsibilities
- plan and perform intrusion tests on web applications, APIs, cloud environments, internal infrastructures
- set up and participate in purple team exercises simulating real attack scenarios
- collaborate with defensive teams to validate controls and improve detection mechanisms
- document findings, provide remediation recommendations, and present results to stakeholders
- stay informed about emerging threats, tools, and techniques in offensive security
- work with a high degree of autonomy and initiative
Requirements
- 3 to 5 years of experience in offensive security
- 7 years of experience in information technology (IT)
- knowledge of the OWASP Top 10, MITRE ATT&CK, and threat-modeling frameworks
- ability to perform intrusion tests on various infrastructures
- proficiency with offensive security tools such as Burp Suite, Nmap, Nessus, BloodHound, Metasploit, Cobalt Strike
- strong ability to communicate technical concepts clearly
- intermediate level of English and French proficiency
- certifications such as OSCP, OSWE, OSEP, CRTP, GPEN, CPTS are strong assets
- experience in scripting (Python, Bash, PowerShell) for automation and exploit development
- experience with Infrastructure as Code, such as Terraform
- background in networking or software development
Benefits
- flexible group insurance
- competitive pension plan
- employee share purchase plan
- vacation and wellness/personal development days
- telemedicine
- employee and family assistance program
- ergonomic equipment program
- performance bonus
- discounts on iA products
- a healthy, safe, fair, and inclusive environment
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Jr. Vulnerability Management Analyst at OneDigital managing security vulnerabilities across infrastructure. Collaborating with IT teams to ensure timely remediation and effective reporting.
Offensive Security Analyst specializing in Red Team operations for AI/ML systems at Vanguard. Collaboration with data scientists and security teams to protect AI infrastructure.
IT Cybersecurity Analyst supporting vulnerability management and incident response for WEC Energy Group's cybersecurity infrastructure. Collaborating with teams to enhance security posture and mitigate risks.
IAM Security Engineer managing identity and access governance at WEC Energy Group. Collaborating on IAM solutions and troubleshooting access management issues.
Senior CyberSecurity Analyst focusing on identifying and responding to email borne threats at Proofpoint. Collaborating with a global team to develop detection signatures against phishing, malware, and spam attacks.
Information Security Analyst supporting client security projects and compliance with standards like ISO 27001. Engaging internal teams to enhance security maturity across clients.
Cybersecurity Analyst supporting Fidelity’s Cyber Assurance and Support team. Assisting with client inquiries and collaborating with technology and security teams.
Security Analyst preventing incidents for GuidePoint Security. Collaborating to stay ahead of emerging threats in a hybrid position based in Philadelphia, PA.
Security Analyst within PNC's SEC DEF SECURITY FUSION CENTER evaluating and mitigating cybersecurity alerts for organizational safety. Collaborating with various teams to ensure security posture against vulnerabilities.