We are looking for a Senior Offensive Security Consultant – FortiGuard Proactive Services to work in a dynamic and exciting new position reporting to the Director of our FortiGuard Security Consulting Services.  In this very hands-on, customer-facing role, your primary responsibilities will be to lead and conduct advanced Red Team engagements both full-scope and objective-lead and penetration tests to identify weaknesses in an organization’s countermeasures ultimately enhancing their overall security posture. In addition, the consultant, from time to time, will participate in pre-sales activities as well as provide thought leadership and information exchange through events such as speaking at security conferences and or producing blogs and whitepapers. 

Responsibilities:

Customer Engagements:  Collaborate with clients to understand their security needs and objectives. Lead and deliver Red Team and penetration testing engagements, ensuring high-quality results that align with customer expectations.

Red Team Operations: Plan and execute realistic and sophisticated Red Team operations to simulate advanced cyber threats. Mimic adversary tactics, techniques, and procedures (TTPs) to identify and exploit vulnerabilities in client environments.

Penetration Testing: Conduct thorough penetration tests on client systems, networks, and applications. Provide actionable insights and recommendations for remediation based on identified vulnerabilities.

Technical Expertise: Demonstrate proficiency in a variety of offensive security tools and techniques. Stay current with industry trends, emerging threats, and advancements in offensive security methodologies.

Documentation and Reporting: Document all testing procedures, findings, and recommendations in clear and concise reports. Communicate technical details effectively to both technical and non-technical stakeholders as well as provide proactive guidance on improving an organization’s security posture.

Required Skills:

• Excellent written and verbal communication skills – English 
• Experience developing and conducting red team and penetration testing engagements 
• Experience performing application security assessments 
• Public speaking experience at known security conferences is a plus
• Capable of performing assessments with common offensive toolsets as well as the ability to build custom tools and implants 
• Solid knowledge of scripting languages such as Python, Perl, PowerShell, Ruby 
• Development experience using C, C++, .NET, Java, Go 
• Solid understanding of Active Directory and Azure AD 
• Experience carrying out vulnerability assessments, physical assessments, wireless assessments, and social engineering campaigns.
• Strong understanding of operating system internals and endpoint security controls such as EDR and various evasion techniques 

Qualifications: 

• Bachelor’s Degree in Computer Engineering, Computer Science or related field

• Or 8 - 10+ years’ experience in Attack and Penetration testing roles 

• Certifications in offensive security such as CREST, OSCP, OSEP, GXPN, GRTP, etc.

The Canada base salary range for this full-time position is expected to be between $94,000 - $115,000 annually.  Wage ranges are based on various factors including the labour market, job type, and job level.  Exact salary offers will be determined by factors such as the candidate’s subject knowledge, skill level, qualifications, and experience.  

Fortinet strives to provide you and your family with a comprehensive benefits package. Benefits eligibility starts on your first day of hire and comprises of 100% company paid medical, dental, and vision coverage, including a Health Spending Account and a Personal Spending Account that gives you flexibility to spend where you need it the most. Our Employee & Family Assistance Plan (EFAP) offers you and your family access to various services like counseling, legal advice, mental health resources etc. We also provide critical illness, disability, and life insurance, as well as a Group Registered Retirement Savings Plan (RRSP) with a company match to help you save faster for retirement. We offer competitive Paid Time Off and flexible leave policies, including paid health days, to help you take care of yourself and your family members.

All roles are eligible to participate in the Fortinet equity program.  Bonus eligibility is reviewed at time of hire and annually at the Company’s discretion.