Junior Web Application Security Penetration Tester – Full Time

Parabellyx Cybersecurity is a fast-growing professional Applications Security and managed services company.

Located in Vaughan, Ontario, we work with the largest technology service providers across North America, helping organizations of all sizes, across many verticals secure their business-critical applications.

Parabellyx always puts people first. From our customers and partners to our culture of engineers and experts, we understand that people are our assets. You’ll work alongside thought leaders, engineers, and top cybersecurity experts in a culture that champions strategic vision, actualized expertise, intelligent and precise solutions, and continuous improvement.

We hire smart, curious, entrepreneurial, talented people to push boundaries, reimagine what’s possible and turn challenges into opportunities.

We are looking for a junior customer-facing consultant to join our security assurance practice, working with top Canadian and international clients, helping them evaluate the technical risks associated with their technology, cloud and applications.

Your role will include:

Your role will focus on performing penetration testing assessments and red team exercises, concentrating on customer-facing infrastructure and applications.

You will be working independently, with guidance, on a team with experienced consultants who will help you to develop skills and consulting experience, with the potential of progressive responsibilities in our security consulting practice.

This position is opened to junior cybersecurity professionals and graduates with exposure to penetration testing through practical lab exercises and CTF competitions:

Required Skills:

• Ability to work independently
• Basic knowledge of web application security in some capacity
• This likely includes some background with software development or software development concepts
• Ability to speak and write fluent English
• Experience drafting documentation with minimal supervision
• Experience with Microsoft products (Word, etc).

Nice to Have (these are a bonus):

• Professional experience with executing any type of penetration testing
• Awareness of CIS or other system hardening standards & experience implementing or auditing them
• Knowledge of mobile application (IOS/Android) security concepts or testing
• Awareness of code security or a code security review process
• Knowledge and experience with DevOps, CI/CD and other automation concepts
• Experience with advanced firewalls and other network security platforms
• Experience with TRA/PIA activities or methodologies

Please note: unless you have work experience in web application penetration testing or Offensive Security certifications (OSCP/OSWP/OSEP), make sure your resume or cover letter contains links to your HackTheBox or TryHackMe profile demonstrating your progress with Web-related exercises and CTFs.

Remote work is OK. (MUST be eligible to work in Canada without sponsorship). Candidates in the Toronto area are preferred. Must be able to obtain security clearance.