Software Secured is an application security firm located in Ottawa, Ontario. We help software development teams get ahead of hackers using a suite of services and products. Software Secured is a place where the curious come to grow. Curiosity, ownership, and humility are at the forefront of our core values and we are constantly striving to make Software Secured an awesome place to work where people can learn, be leaders in their space, and share their knowledge with others. We want to continue building an organization of ambitious, smart people who are committed to our mission and focused on overall company success. Software Secured is looking for a Junior Pentester.

As a Junior Pentester at Software Secured, you will have the opportunity to help our clients secure their mission-critical applications. This includes performing security code review, web, mobile, and network security tests. Help clients with security design reviews, threat modeling, and remediation strategies.

The ideal candidate will be self-driven and take ownership of the quality of their own work as well as the team’s deliverables. The individual will be motivated and passionate about application security and take pride in spreading the word and helping developers write secure code. You will be a part of the local and global security community and care about pushing the status quo. He/she will also have an affinity for security best practices and vulnerability exploits.

What you get:

Annual Salary: $70000-80000
Eligible for yearly profit sharing program bonuses
Work from home schedule (up to 100% during COVID)
Part of a fast-growing, exciting, and challenging environment.
You will receive a budget for speaking at conferences and meetups.
You will be mentored by and work closely with senior staff.
You will receive time and a budget for training.
You will be provided with perks such as company lunches on Thursdays.
You will receive a great health benefits package.
You will receive a free audible account
You will receive a minimum of 3 weeks' vacation.
Our famous AK Nitro Gaming Chair so you can pentest in style :) A picture here: https://www.canadacomputers.com/product_info.php?cPath=1283_1333_1334&item_id=086607

Mandatory:

Share our core values (please see below).
Experience performing application, mobile pentesting, or comparable experience doing independent research or bug bounties.
If pentesting experience is limited an OSCP, OSWE, or GWAPT would go a long way to closing the gap.
Demonstrated software development background in one or more of Python, .NET, Ruby, Java, Objective C/Swift.
You have competed in CTFs (Capture The Flags).
Expert with OWASP Top 10 and can explain them easily.
Strong verbal and written communication skills.
Demonstrated analytical and problem solving skills

Nice to Haves:

Experience in adjacent security related roles e.g. Secure Development/Engineering, Security Operations/SOC/Blue Teaming, Incident Response, IT Security, etc.
Experience or security certification in cloud technologies (AWS, Azure)
Open-source contributions
Public speaking experience
Performing training in a professional capacity
Teaching experience, preferably security or CS topics

What we care about

Keeping it Secure: Software Secured’s mission and values are a part of everything we do. We care about how our clients can do what they do without having to worry about hackers disrupting their work.
Curiosity and humility: We are dedicated to learning and constantly improving. We hire the best of the best, humility is the key to remain the best.
Own it: our engineers work hard to improve the state of web application security. To get there, we need to own every project, every assessment, every challenge and every line of code.
Dive Deep: hard problems require diving deep to understand the real cause of the problem, we are not afraid of diving deep to come up with the best solutions.
Bold: we take huge risks so our clients can minimize theirs, taking risks is part of what we do daily so we ensure the highest impact of our solutions.