Specialist, Security Operations Jobs

Your Moneris Career - The Opportunity

You will lead the identification, reporting, and monitoring of all vulnerabilities affecting Moneris. Also, the Vulnerability and Penetration Testing specialist will lead the scoping, designing, and planning of penetration testing initiatives.

You will also have key responsibilities in reporting weekly and monthly vulnerability metrics to the Sr. Manager and CISO. Additionally, you will ensure continuous vulnerability scanning and reporting practices following PCI and Audit requirements.

In addition to maintaining routine vulnerability scanning and assessment efforts, you will monitor the threat landscape to assess, identify, report, and improve any vulnerability that may threaten Moneris.

Location: You will be based in our Toronto office and will work in a Hybrid model.

Reporting Relationship: You will report to Senior Manager, Security Operations.

Your Moneris Career - What you'll do

• Scope, design and execute all penetration testing efforts.
• Collaborate and plan VM assessments with external business partners.
• Lead ad-hoc penetration testing efforts and related projects.
• Meet all PCI and Audit requirements concerning Vulnerability Management.
• Produce weekly and monthly metrics on vulnerability status and remediation efforts to the Sr. Manager of Security Operations and CISO.
• Conduct routine vulnerability scans and assessments on all assets and applications.
• Monitor the threat landscape to assess, identify, report, and remediate any vulnerability that may pose a threat to Moneris.
• Promote ongoing relationships with key stakeholders responsible for vulnerability remediation activities.
• Become an important player to the Moneris Vulnerability Management strategy and Cyber Security vision.
• Identify and report all vulnerabilities, security gaps, and weaknesses.
• Partner with application security and development teams on application-related vulnerabilities.

Your Moneris Career - What you bring

• Work experience in Vulnerability Management and Penetration Testing planning.
• Experience with administration of ITSM solutions used for vulnerability tracking and reporting (Service Now SecOPS VM module, JIRA and others).
• Knowledge of Risk-Based Vulnerability Management (RBVM) software and methodologies.
• Familiarity with Cyber Kill Chain, MITRE AT&CK, NIST CSF and other frameworks.
• Reporting background.
• Experience in developing and maintaining standard operating procedures for vulnerability management.
• Experience in management and configuration of vulnerability assessment platforms (e.g., Rapid7 Insight VM, Nessus, Qualys VM, Kenna, Burp Suite, ZAP and others).
• Demonstrated understanding of vulnerability management standards (e.g., NVD, CVE, CVSS, CWE, OWASP and others).

Nice-to-have...

• Experience with automation and orchestration tools or scripting.
• Experience with multiple cloud providers (Azure, Google, Amazon) and knowledge of how to identify and improve vulnerabilities on these platforms.

Your Moneris Career - What you get

• Learning & development programs and resources including unlimited free access to LinkedIn Learning, Coursera and an Educational Assistance Program
• Company-wide paid year-end closure & personal time off (including religious, personal, and volunteer days)
• RRSP matching & defined contribution pension plan
• Holistic approach to your well-being, with an Employee Assistance Program for you and your family, monthly wellness events and a supportive workplace culture
• Comprehensive Total Rewards Program including bonuses and flexible benefits plans starting from Day 1

Find out more about the work perks and benefits you get as a Moneris employee at Moneris.com/careers

Note: We welcome and encourage applications from Indigenous peoples, people of colour, people with disabilities, people of all genders, sexual orientation and intersectional identities.

We acknowledge that people from equity-deserving groups (including racialized individuals, women, gender diverse individuals, individuals with disabilities, neurodivergent individuals, members of 2SLGBTQIA+ communities and those born outside of Canada) are less likely to apply for jobs unless they feel they meet all the requirements posted. At Moneris, we believe candidates bring experience to their work in many ways. We encourage you to apply and share, in the application form, the transferrable experience you bring, and how this will support your success in this role.