Consultant or Senior Consultant, Offensive Security

BDO is a firm built on a foundation of positive relationships with our people and our clients. Each day, our professionals provide exceptional service, helping clients with advice and insight they can trust. In turn, we offer an award-winning environment that fosters a with a high priority on your personal and professional growth.

We are seeking a Cybersecurity Consultant, working from anywhere in Canada, to join the BDO team and own the following responsibilities, supporting the Cyber Offensive Security delivery team :

Participating in Application & Network Penetration Tests, assessing customer environments and custom applications for vulnerabilities and defects.

Participating in Red-Team and Adversary Simulation exercises, leveraging advanced techniques to discover potential vulnerabilities in an organization’s people, process, procedure as well as technology stack.

Leveraging Social Engineering, Hardware Hacking, Network Implants, Physical Bypass techniques and various evasion capabilities in Physical Site Penetration Testing.

Contributing to Research and Development in new exploitation techniques as well as strategies to deliver client engagements with enhanced effectiveness and efficiency.

Authoring detailed and accurate reports with a high level of quality to be consumed by technical and non-technical audiences.

Contributing to Thought Leadership articles, publications and presentations used in BDO events as well as industry conferences.

Interfacing with client delegates, ensuring testing and assessment projects run smoothly and requirements are met.

Working with clients to ensure they understand the impact to the Confidentiality, Integrity, and Availability of their organization from assessment findings.

How do we define success for your role?

You demonstrate BDO's core values through all aspect of your work : Integrity, Respect and Collaboration.

You understand your client’s industry, challenges, and opportunities; client describe you as positive, professional, and delivering high-quality work.

You identify, recommend, and are focused on effective service delivery to your clients.

You share in an inclusive and engaging work environment that develops, retains & attracts talent.

You actively participate in the adoption of digital tools and strategies to drive an innovative workplace.

You grow your expertise through learning and professional development.

Your experience and education

Bachelor’s degree or Advanced Diploma in Cybersecurity or related technology centric path.

Demonstrated interest and dedication to the Cyber Security career path shown through related extra-curricular activities.

Completion, or progress made towards completing a relevant Offensive Security certification such as OSCP, CRTP, eWPT, GPEN etc.

Participation in Bug Bounty Programs, CTF Tournaments, industry events etc .

Literacy in scripting languages such as Python, Ruby, Powershell etc.

Strong oral and written skills in report and documentation writing.

Ability to gain / maintain Federal Security Clearance

You must be located in Canada to be eligible for this opportunity.

Nice-to-have Skills / Experience :

Conceptual understanding or experience performing Risk Assessments against industry frameworks.

Understanding of Application Security Concepts such as SAST, DAST and SCA.

Understanding of SOC concepts, responsibilities, and toolsets (blue team operations).

Cloud Security Engineering capabilities in Azure, AWS and GCP.