Plan engagements, find security vulnerabilities, and help fix them.
Establish rapport with leadership and support improvement of the company’s cybersecurity posture and resiliency.
Report to the Senior Manager, Application Security.
Execute secure code reviews, penetration tests, and other offensive security activities to improve Wealthsimple’s security.
Collaborate with engineering teams to suggest practical remediations and implement fixes.

Requirements

Experience (5+ years preferred) in a mix of network, application, and native mobile penetration testing with a proven history of working cross-functionally with high functioning teams.
Experience performing boundary testing for PCI-DSS card holder environments or equivalent.
Experience performing mobile testing for Android/iOS applications.
Technical understanding of networks, endpoint, identity, cloud, encryption, data protection and application deployment stacks.
Knowledge of standard penetration testing methodologies, including NIST SP 800-115.
Familiarity with Ruby, React, and GraphQL testing is preferred.
Development and/or scripting competence is preferred.
AWS testing experience is preferred.
Previous industry experience in Financial Services is preferred.
Experience using automation and AI to supplement and scale manual testing is preferred.

Benefits

📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

penetration testingsecure code reviewsboundary testingmobile testingnetwork securityapplication securityencryptiondata protectionRubyReact

Soft Skills

collaborationrapport buildingcross-functional teamworkcommunication

Certifications

PCI-DSS