Consulting Project Manager

The Opportunity

We are looking for a technical Project Manager to join our consulting team in an effort to scale and to introduce consistency in the delivery of our client engagements. If you have an IT background but mostly love interacting with as many clients as possible, then this job may be for you!

Responsibilities

  • Respond to resource requests and scheduling of consulting resources for immediate and upcoming projects of all sizes and complexities.
  • Coordinate kickoff and requirements gathering of upcoming consulting projects with the client.
  • Support consulting team members by scheduling and planning meetings, documenting minutes and distributing project material and following up on action items as required.
  • Ensure timely delivery of project deliverables, working together with the client and consulting resources.
  • Track, process and reconcile timesheets and invoices in a timely manner following standard processes.
  • Update project repository and ensure completion of other project close-out processes.

Required Skills:

  • Minimum of 4 year undergraduate, university degree
  • Minimum of 5 years' experience in a client-facing professional service delivery role
  • 3 to 5 years' experience in the information technology domain
  • Strong MS Project and MS Office suite skills
  • Previous experience working on information security projects would be a definite asset
  • Project management certification is not required, but an asset

Preferred Skills

  • Passion for customer service
  • Proven ability to multi-task
  • Report writing and presentation delivery experience
  • Excellent English communication skills, written and verbal
  • Attention to detail and professionalism
  • Excellent ability to resolve issues as they arise
  • Proven ability to learn quickly
  • Willingness to learn and able to take constructive criticism
  • Creative thinking, enthusiastic, and an optimistic attitude

What We Offer

  • Generous salary range, based on experience
  • Excellent benefits and bonus programs
  • ESOP program available
  • Reimbursement, support for learning and growth initiatives
  • Flexible work schedule
  • Excellent growth potential
  • Exceptional working environment in a supportive and collaborative office
  • An "open culture" that is fun, creative, energetic, passionate and challenging where you have the freedom to make changes and solve problems

Company Description

Security Compass is an industry-leading information security firm that provides professional services, training, and software to security-conscious companies. We bring extensive, internationally recognized, cross-industry experience to every client. To our clients, we're not simply an information security company — we are trusted partners in the development of secure software.

The culture of Security Compass is derived from one founding principle: to provide our clients with best-in-industry expertise and customer service.

To apply, please send your resume and links to any open source code you've written to careers@securitycompass.com

 

Application Security Researcher

Looking to have a real, meaningful impact on the global state of information security? Join us as an application security researcher to help address security issues at the source: insecure software.

You will have a chance to positively impact nearly every part of the world’s digital infrastructure by helping shape secure software development at our clients: the world’s largest financial services, software, healthcare, telecom, technology, media and industrial control system companies.

We’re looking for an expert in application security, with extensive knowledge of software security issues such as those listed in the Common Weakness Enumeration (CWE) and corresponding countermeasures. This position is ideal for academics with a passion for practical software security who are looking to work in research, application security consultants who are looking to focus on research and reduce travel, or developers who want to help influence other developers in software security.

Specific responsibilities include:

  • Staying up to date with the latest software security vulnerabilities & related compliance standards by monitoring conferences, reading papers, relevant websites, social media and mailing lists
  • Researching and defining broad threats and corresponding defensive controls/requirements
  • Map requirements to security test cases
  • Build and/or work with experts on secure coding samples in a variety of languages, including Java, .Net, Python, Ruby, JavaScript, C/C++, Objective C and more
  • Build testing scripts and guidance to aid QA & security testers in validating security requirements
  • Understand & learn about a broad range of application types, including web, mobile, client/server, desktop, and embedded software
  • Mapping third party content to existing SD Elements data structure
  • Provide research output to a design team for building computer based training modules

Desired Skills & Experience

  • Extensive experience and interest in application security
  • Strong written communication skills and desire to write
  • Working understanding of networking and client server architecture
  • Direct development experience or past experience working with developers is a bonus
  • Existing understanding of relevant compliance standards such as PCI DSS, HIPAA, GLBA, embedded systems security (ISA) etc. very helpful
  • Must be based in Toronto and able to come into our downtown office. Telecommuting available two days per week

Company Description

Security Compass is an industry-leading information security firm that provides professional services, training, and software to security-conscious companies. We bring extensive, internationally recognized, cross-industry experience to every client. To our clients, we're not simply an information security company — we are trusted partners in the development of secure software.

The culture of Security Compass is derived from one founding principle: to provide our clients with best-in-industry expertise and customer service.

To apply, please send your resume and links to any open source code you've written to careers@securitycompass.com

 

Security Consultant

The Role

As a security consultant, you will be expected to perform various testing activities and documentations pertaining to network and application targets. You will participate in projects in network and application security penetration testing, source code reviews, and threat modeling. You will also contribute to talks, articles, and whitepapers on leading topics of IT security.

About Us

Security Compass is an industry-leading information security firm that provides professional services and training to security-conscious companies. We bring extensive, internationally recognized, cross-industry experience to every client engagement. To our clients, we're not simply an information security company - we are trusted partners in the development of secure software.

The culture of Security Compass is derived from one founding principle: to provide our clients with best-in-industry expertise and customer service.

Every member of our team is passionate about their work. We believe that engaged and motivated consultants lead to consistent customer satisfaction - and that consistent customer satisfaction leads to engaged and motivated consultants. We also understand that we have a responsibility to improve the state of software security, so we contribute regularly with initiatives such as the open-source Exploit-Me series of security testing tools and labs.securitycompass.com

Experience

Required

  • Minimum of 4 year undergraduate, university degree
  • 3+ years experience in IT security
  • Understanding of network and web application penetration testing and source code review
  • Ability to analyze root causes and deliver strategic recommendations during client reviews
  • CISSP, CEH, GIAC certifications an asset; other certifications valued as well

Non-technical

  • Proven ability to learn quickly
  • Outstanding problem solving ability
  • Creative thinking ability
  • Report writing and presentation delivery experience
  • Excellent oral and written communication skills
  • Attention to detail and professionalism
  • Passion for customer service
  • Willingness to learn and able to take constructive criticism
  • Enthusiastic, optimistic attitude
  • Desire to keep up-to-date skill set

Nice to Have

  • Understanding of J2EE or .Net security practices
  • Understanding of how to integrate security into the Software Development Life Cycle
  • System Administration experience (e.g. maintenance of various operating systems, networking devices and customer support)
  • Software development experience
  • Experience in writing books, articles, or papers whitepapers on technical subjects

Contact

careers@securitycompass.com

 

Part-Time Web Developer

We're looking for someone bright and enthusiastic to work with Security Compass as a webmaster.

You'll be responsible for maintaining and updating our website and social media presence.

Responsibilities

  • Implementation of a pre-designed website layout
  • Work with primary Website Developer to complete weekly iterations
  • Work with Graphic Designer on user experience and overall flow of the website
  • Routine daily maintenance of existing sites and applications

Required Skills

  • Strong HTML/CSS
  • Git/Mercurial/SVN or any other version control software
  • Basic Templating (PHP, Liquid, Jinja, Smarty, Twig, Mustache, etc..)
  • Basic Javascript/jQuery
  • IE Debugging/Shimming
  • Good taste

Nice to Have

  • SASS or LESS
  • CMS (Drupal, Wordpress, Jekyll, Hyde or anything similar)
  • Being able to use Chrome debugger or Firebug
  • Working knowledge of HTTP
  • Basic shell
  • Image editing

Company Description

Security Compass is an industry-leading information security firm that provides professional services, training, and software to security-conscious companies. We bring extensive, internationally recognized, cross-industry experience to every client. To our clients, we're not simply an information security company — we are trusted partners in the development of secure software.

The culture of Security Compass is derived from one founding principle: to provide our clients with best-in-industry expertise and customer service.

To apply, please send your resume and links to any open source code you've written to careers@securitycompass.com

 

Marketing Intern

Security Compass is looking for a qualified intern to join our marketing team. Our marketing department supports three major verticals globally and seeks an intern who can participate in various stages of our marketing campaigns. You should be prepared to work in an energetic fast-paced highly technical team environment. Upon completion of the internship, you will have gained broad experience in a technical B2B market.

You should have excellent written and verbal skills with extensive knowledge in web, social media and Microsoft office (power point, excel and word). Interest in technology is a bonus and will be considered when choosing the best applicant.

Duties

  • Assist in the creation of signage, mock ups, e-mail campaigns, on line promotion, etc.
  • Assist in the distribution or delivery of marketing materials
  • Assist with fulfillment of marketing offers
  • Assist with execution of trade shows
  • Assist with the preparation and delivery of training materials
  • Assist with analysis of marketing and sales data
  • Seek and analyze competitor marketing and sales materials both on and offline
  • Prepare presentations
  • Scrub and assign lead list with our Account Development Rep
  • Enter contact information into contact management systems
  • Provide support to social media efforts
  • Maintain tracking report of public relations and media activity

Company Description

Security Compass is an industry-leading information security firm that provides professional services, training, and software to security-conscious companies. We bring extensive, internationally recognized, cross-industry experience to every client. To our clients, we're not simply an information security company — we are trusted partners in the development of secure software.

The culture of Security Compass is derived from one founding principle: to provide our clients with best-in-industry expertise and customer service.

To apply, please send your resume and links to any open source code you've written to careers@securitycompass.com