Who We Are:Headquartered in Atlantic Canada with offices across the United States and around the world, Bulletproof has decades of experience in IT, security, and compliance. The company's footprint now includes users on six continents trusting Bulletproof to address their technology challenges and strengthen their security posture.Driven by innovative, empowered, and creative teamwork, we build solutions that solve business challenges and deliver overall business improvement for our global clients. At Bulletproof, we are committed to our customers, our team, and our communities. Bulletproof's practices include Security and Network Operations Centers, Security Assessment & Audit, Quality Assurance and Testing, Project Management, Microsoft Consulting, Managed Services, Managed Security Services, and Product Fulfillment; working together to provide true end-to-end business solutions.Why Bulletproof:At Bulletproof, our people are the core of who we are and what we do. Founded in Atlantic Canada and now operating globally, it is our people who drive us and who bring us together. We believe that it is through trusting and empowering our entire team, that we achieve more. Bulletproof is a Microsoft Solutions Provider, a FOUR-PEAT Microsoft Canada Workplace Impact Award winner, and crowned the 2021 Microsoft Global Security Partner of the Year. Bulletproof is proud to be a member of the Microsoft Intelligent Security Association. We are committed to helping our customers achieve more.Why Work with Us?We are growing... We have 20+ years in the market, and since the acquisition of Bulletproof by Gaming Laboratories International (GLI), our mandate to expand our capacity and market reach is aggressive. We are building the team to help us achieve those goals, in Canada, in the USA and internationally. We have ambitious plans to leverage our depth of experience across our practices and we are building an ambitious team to achieve those goals together.Interested? Read on to see if your experience is a fit.Please ONLY APPLY if you are a South African citizen, or hold a work permit to work in South Africa.This position will focus on the following:Managing and delivering ISMS audit assignmentsDefining the scope for ISMS audit assignmentsDeveloping and quality assuring security audit reportsTravelling to client's and to other group's office locationsCollaborating with clients to develop appropriate remediation plans.Teaming up with colleagues in other lines of services in support of client needs for Information Security ServicesWorking as subject matter expert for ISMS auditsPerforming and/or administering a variety of security testing assignments with direct supervision such as vulnerability assessments, penetration tests, firewall reviews, social engineering, source code reviewManaging simple security testing projectsDeveloping security test reportsFollowing, maintaining and improving standard operation procedures (SOP)Achieve and maintain any required professional certification.Education, Experience and Skills:Degree in Computer Science, Information Systems, Computer Engineering, Electrical Engineering, or equivalent technical discipline. Other degrees which are compensated by relevant technical experience will be evaluated.At least two years working experience in ISO 27001/InfoSec external audit at an Accounting/Consulting organization would be highly appreciated.Two or more of the following certifications are required:ISACA Certified Information Security AuditorISO 27001 Lead AuditorISACA Certified in Risk and Information Systems ControlISACA Certified Information Security ManagerISO 27001 Lead ImplementerPCI Security Standards Council Qualified Security Assessors(ISC)2 Certified Information Systems Security ProfessionalMust be familiar with InfoSec processes, operational workflows, and businessesOne or more of the following certifications are required:EC-Council Certified Ethical Hacker (CEH)EC-Council Licensed Security Consultant (LPT)GIAC Certified Security Consultant (CPEN)IACRB Certified Security Consultant (CPT)Offensive Security Certified Professional (OSCP)CREST Registered Tester (CRT)CREST Infrastructure CertificationCESG CHECK Team LeaderCESG CHECK Team MemberTiger Scheme Senior Security TesterTiger Scheme Quality Security TesterAny other recognized penetration testing certification/accreditationYour work experience has been:Hands-on experience in projects including ISO 27001 compliance (audit/implementation), internal control, business processes review, IT audit, IT general control, cloud computing, IT system implementation is A MUST.Fluent English is required.Must have sound knowledge of OSI model and related protocols.Knowledge of AAA protocols and standards (Radius, TACACS, LDAP), SSO protocols (Kerberos, SAML, OpenID), access controls models (DAC, MAC, RBAC, ABAC) and related technologies requiredMust have experience in implementing/assessing physical and environmental security controls (site perimeter, fire prevention, cooling, power, DRP, offsite back-up, redundant sites)Exposure to data analytics and proficiency in analytic software (ACL, Access, SQL Server, SPSS, SAS, R, Tableau, QlikView) is preferredMust demonstrate sound report writing skills, presentation and communication skills.Must have conflict resolution skills, stress resilience, positive attitude, appetite for team workExperience in application and/or infrastructure penetration testing that is above and beyond running automated toolsMust understand Linux, Windows and network security skillsMust be familiar with the following test suites:-Qualys Vulnerability Management- Nessus- Metasploit- Burp Suite- Kali Linux- NMap- Fortify- Acunetix- Netsparker.Experience with PCI ASV is preferred, but not required:Must be able to travel up to 50% of the time.Equal Opportunity Statement:Bulletproof is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. Bulletproof is also committed to compliance with all fair employment practices regarding citizenship and immigration status.Other detailsJob Family CanadaPay Type SalaryEmployment Indicator RegularApply Now#J-18808-Ljbffr