52 Junior Security Consultant jobs in Canada

Job Description

Job Description

Salary:

Company Overview:

Arctiq is a leader in professional IT services and managed services across three core Centers of Excellence: Enterprise Security, Modern Infrastructure and Platform Engineering. Renowned for our ability to architect intelligence, we connect, protect, and transform organizations, empowering them to thrive in today's digital landscape. Arctiq builds on decades of industry expertise and a customer-centric ethos to deliver exceptional value to clients across diverse industries.

We are seeking an experiencedSecurity Consultant to lead a Palo Alto Networks Next-Generation Firewall (NGFW) ruleset optimization project for one of our clients. In this role, youll collaborate closely with the clients project team to assess, refine, and enhance existing firewall policies, driving improved security posture, efficiency, and alignment withZero Trust principles.

Engagement Details:

• Work Location: Montreal, QC (preferred) or remote within Canada.
• Contract Duration: 8 weeks (possible extension)

Responsibilities:

• Lead NGFW ruleset optimization efforts in collaboration with the customers team.
• Perform overall rule export and detailed assessment.
• Conduct permissive rule analysis and certification.
• Execute flow analysis and identify application/service owners.
• Assess and categorize associated risks.
• Review and refine application, user, and web category controls.
• Establish a Zero Trustbased optimization baseline.
• Document all findings and update internal documentation.
• Implement changes through customer-defined change control processes (e.g., insert above existing rule, monitor, decommission old rule).

Qualifications:

• Proven experience with Palo Alto Networks NGFWs, policy tuning, and security optimization.
• Strong understanding of Zero Trust frameworks and best practices.
• Hands-on experience in rulebase review, risk analysis, and traffic flow validation.
• Excellent documentation and communication skills.
• Ability to collaborate effectively with cross-functional technical teams.

Arctiq is an equal opportunity employer. If you need any accommodations or adjustments throughout the interview process and beyond, please let us know. We celebrate our inclusive work environment and welcome members of all backgrounds and perspectives to apply.

We thank you foryour interest in joining the Arctiq team! While we welcome all applicants, only those who are selected for an interview will be contacted.

**Introduction**
A career in IBM Consulting is rooted by long term relationships and close collaboration with clients across the globe.
You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio, including Software and Red Hat.
Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in groundbreaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
About Business Unit:
IBM Consulting is IBM's consulting and global professional services business, with market leading capabilities in business and technology transformation. With deep expertise in many industries, we offer strategy, experience, technology, and operations services to many of the most innovative and valuable companies in the world. Our people are focused on accelerating our clients' businesses through the power of collaboration. We believe in the power of technology responsibly used to help people, partners and the planet.
**Your role and responsibilities**
* Develop an understanding of our client's future state cybersecurity goals and processes, then define the steps needed and leading technologies to help turn their goals into reality.
* Shadow IBM Cybersecurity professionals and participate in client engagements, assist with client deliverables, participate in client meetings, and provide recommendations to improve clients' security posture.
* Work closely with senior security consultants and Security leadership in a variety of roles within Consulting & Systems Integration, Portfolio Management and Canadian Regional SOC.
* Learn about a client's industry, tackle new Cybersecurity challenges, and learn about how their business and technology intersect especially with respect to Cybersecurity.
* Join our IBM North America intern community and meet other IBMers during networking events, special team events and career development activities
What you can expect:
At IBM, we prioritize ongoing learning, development of technical and core skills, and investing in your personal growth, all grounded in a culture of coaching and mentorship - you'll get exposure to all that and more as an intern. You may work on projects under any one or more of the following Cybersecurity practices at any given time: Strategy & Risk, Threat Management, Identity & Access Management, Cloud & Infrastructure Security, Managed Security Services, Portfolio Management.
**Required technical and professional expertise**
*
Enrollment in a Bachelor's degree program in Cybersecurity, Information Security, Computer Science, or a related field.
*
Eligibility to obtain Canadian L2 Secret Clearance
*
Consultative mindset and ability to solve problems for clients and add value.
*
Strong interest in cybersecurity and a basic understanding of security concepts.
*
Familiarity with operating systems such as Windows, Linux, and macOS.
*
Knowledge of networking fundamentals and protocols.
*
Ability to work independently and as part of a team.
*
Excellent problem-solving, analytical and critical-thinking skills.
*
Strong communication and interpersonal skills.
*
Strong writing skills
**Preferred technical and professional experience**
* A passion for innovative ideas, coupled with the ability to understand and assimilate different points of view.
* Can translate business requirements into technical solutions.
* Demonstrate leadership experience and ability to adapt, with willingness to readily take ownership of tasks and problems.
* Have initiative to actively seek new knowledge and improve skills.
* Knowledge / Understanding of Cybersecurity fundamentals related to one or more of the below:
* Cybersecurity Frameworks - NIST / PCI-DSS etc; Q Radar and/or Splunk/ Sentinel ; Identity Management solutions
* Cyber Threat Analysis
* IDS/IPS/SIEM Fundamentals
* Proficiency in programming or scripting languages (e.g., Python, C/C++, PowerShell)
* Firewall Administration
* Network Trouble shooting
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

Job Description

Job Description

Description

At CDW, we make it happen, together. Trust, connection, and commitment are at the heart of how we work together to deliver for our customers. It’s why we’re coworkers, not just employees. Coworkers who genuinely believe in supporting our customers and one another. We collectively forge our path forward with a level of commitment that speaks to who we are and where we’re headed. We’re proud to share our story and Make Amazing Happen at CDW.

Fueled by our shared passion and expertise, CDW delivers innovative technology solutions for our customers. We are also committed to fostering an environment that embraces collaboration, celebrates integrity, inclusivity, and individuality, and paves the path for personal and professional growth. Experience a life in balance and join us on the journey forward.  

Job Summary

The Managing Consultant performs ongoing client support for highly complex technical performance issues and ensures adherence to service level agreements and customer service excellence. Recommends process enhancements and drives efficiency by reducing average troubleshooting time, repetitive issues and problem service tickets. The Managing Consultant has specialized in at least one of three particular disciplines: Network Security, Information Security, and/or Endpoint Security; and brings an established repository of technical expertise to act as a Subject Matter Expert. The Managing Consultant leads process improvements, creates efficiencies and opportunities for improved workflow and automation. In addition, the Managing Consultant is required to build and manage client relationships as a Trusted Partner, making meaningful contributions to expand the relationship and build loyalty.

What you will do:

• Services Delivery – 50% job weight
  • Manages complex technical questions and ticket escalations and monitors system performance
  • Identifies and makes recommendations on technical deficiencies, service performance issues, product utilization, bugs, and enhancements
  • Recommends process improvements to drive efficiencies, reduction of the average time to trouble-shoot, and reducing false-positive alerts
  • Performs ongoing analysis and system testing of new system releases, upgrades, and/or patches to supported technologies
  • Embodies Trusted Advisor principles, including building trust and influencing loyalty with the client and internal coworkers.
  • Confidently runs Great Meetings, differentiating services per MSS positioning
  • Accountable for the delivery of quarterly, monthly meetings and tuning calls with assigned accounts
  • Handle technical account management responsibilities for assigned accounts
  • Helps improve the business, proactively engages when service is inconsistent, or risk is identified
  • Mentors team with technical advice / support
  • Identifies and manages out of scope requirements and facilitate the resolution
  • Builds and manages client relationship as a Trusted Partner
• Services Improvement and Enhancement - 40% job weight
  • Identifies and provides recommendations for technical deficiencies, service performance issues, product utilization, bugs, and enhancements
  • Accountable for executing on identified recommendations to improve client’s security posture
  • Develops reports and presentations; and provides technical knowledge transfer and analysis to clients on performance status, trends, and metrics in a specific area of discipline.
  • Recommends process enhancements and drives efficiency by reducing average time to trouble-shoot, repetitive issues and problem service tickets, reducing false-positives
  • Develops best practices, strategies, methodologies, business process documentation and templates to improve the business and align with financial targets
  • Develops new service definition and support the launch of new service offerings
  • Performs ongoing analysis and system testing of new system releases, upgrades, and/or patches in one or more specific technologies
  • Identifies and develops business process documentation to improve workflows and drive automation, creating efficiencies.
  •  Develops and improves Standard Operating Procedures (SOPs) and knowledge base articles
  • Conduct technical, procedural and incident handling knowledge transfer sessions
  • Carry out research on supported technologies and develop actionable threat advisory documentation
• Professional Development - 10% job weight
  • Develops Self-paced training content on supported technologies and processes
  • Maintains a strong network and promotes the organization at various meetings, forums, panels, publications, and conferences
  • Begins to establish thought leadership in the industry

What we expect of you:

• Bachelor's degree (B.A./B.S.) or 3-year diploma in Engineering, Computer Science, or a Technology related field and 7 years of security experience in a client-focused environment, and/or working in security operations center, and at least 2 years of experience leading projects and initiatives to improve and transform the business, OR
• 11 years total of Information Technology experience to include 7 years of security experience in a client-focused environment, and/or working in security operations center, and at least 2 years of experience leading projects and initiatives to improve and transform the business
• At least two technical advanced or expert level certifications in Managed Security Services disciplines, included but not limited to:
  • Check Point:  CCSE: Cisco;  CCNP Security, CyberOps Professional, CCIE Security; Palo Alto PCNSE, Cortex XDR-PMXdC; IBM QRadar Security: Administrator, Deployment Professional; SANS GCIA, GCIH, Splunk, CrowdStrike Falcon: CCCS, CCFR, CCFH, CCFA, CCIS; Exabeam: Advanced or Principal Implementation Engineer, Tenable VM Expert or similar technology certifications
• The position is part of a 7-day per week, 24-hour per day managed services operations. Must be available to work outside of the regular business hours which may include weekends and holidays.
• Excellent prioritization / and time management skills, including the ability to manage their time without supervision to focus on priorities and handle multiple tasks simultaneously.
• Experience designing, implementing, and supporting IT infrastructure and Information Systems Design or support involving hardware, software and services at an enterprise level for at least one discipline in the Managed Security Services portfolio
• Direct involvement in working with internal and external teams to implement and troubleshoot complex configuration hardware, software and services
• Experience presenting ideas and solutions to clients and adapting presentation style to fit particular client situations
• Demonstrated knowledge of company products and services, testing methodology, and system troubleshooting
• Demonstrated ability to investigate complex problems where analysis of situations or data requires an in- depth evaluation of variable factors from multiple IT infrastructure systems
• Demonstrated ability to establish positive working relationships and conduct complex and important work critical to the organization in a team, consulting environment
• Proven ability to select resolutions and techniques that meet technical requirements within the context of best practices, and make recommendations to achieve targeted objectives
• Clear, concise, and engaging communication and presentation skills in various settings.
• Collaborative problem-solving approach and mentorship ability.
• Proven ability to proactively step into team leadership roles and empower others to increase contribution and level of responsibility
• Consistently achieves high levels of customer satisfaction.
• Demonstrated ability to execute service delivery using productivity tools such as word processing, spreadsheet, diagram creation, presentation and email processing applications.

At CDW, we strive to offer market-competitive total rewards packages to attract and retain talent. As such, we are committed to  pay transparency and ensuring fair compensation for all our coworkers. Each of our roles is assigned a salary range that is informed by multiple sources of market data. We determine individual pay within a given range based on a candidate's prior experience, knowledge, skills and abilities. This approach allows us to offer competitive and equitable salaries that reflect the value and responsibilities of each role at CDW. Salaries are based on a 37.5-hour workweek, and paid on a bi-weekly payroll schedule.  

Pay range: $ 121,000.00 - $ 169,500.00, depending on experience and skill set 
 

About us   

We make technology work so people can do great things.   

CDW is a Fortune 500 technology solutions provider to business, government, education, and healthcare organizations across the globe. At CDW, we make it happen, together. Trust, connection and commitment are at the heart of how we work together to deliver for our customers. It’s why we’re coworkers, not just employees. Coworkers who genuinely believe in supporting our customers and one another. We collectively forge our path forward with a level of commitment that speaks to who we are and where we’re headed. We’re your long-term, full-stack, full-lifecycle technology partner. We have the experience, expertise, scale, relationships and deep industry knowledge to bring just about any vision to life. Together, we can deliver the full promise of what technology can do. Together, we Make Amazing Happen. 

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.   

We make technology work so people can do great things.      

CDW is a leading multi-brand provider of information technology solutions to business, government, education and healthcare customers in the United States, the United Kingdom and Canada. A Fortune 500 company and member of the S&P 500 Index, CDW helps its customers to navigate an increasingly complex IT market and maximize return on their technology investments. Together, we unite. Together, we win. Together, we thrive.

CDW is an equal opportunity employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status or any other basis prohibited by state and local law. 

Security Consultant Intern, BS/MS, Summer 2026
_corporate_fare_ Google _place_ Toronto, ON, Canada _bar_chart_ Intern & Apprentice
_info_outline_
X
Please complete your application before **October 31st, 2025.**
Applications will be reviewed on a rolling basis and it's in a candidate's best interest to apply early.
Timing on when you can hear back will vary and can take upwards of 90+ days. If you haven't heard from us in three months about your application, we likely proceeded with other candidates for the role.
Participation in the internship program requires that you are located in Canada for the duration of the internship program.
This internship is intended for students in their penultimate academic year, who are pursuing a Bachelor's or Master's degree program in Computer Science, Information Security, or related technical field.
Google is a global company and, in order to facilitate efficient collaboration and communication globally, English proficiency is a requirement for this internship program.
To start the application process, you will need an updated CV or resume and a current unofficial or official transcript in English. Click on the "Apply" button on this page and provide the required materials in the appropriate sections (PDFs preferred):
1. In the "Resume Section:" attach an updated CV or resume.
2. **Please ensure you've listed your anticipated graduation date (in MM/YY)**
3. In the "Education Section:" attach a current or recent unofficial or official transcript in English.
4. Under "Degree Status," select "Now attending" to upload a transcript.
**Minimum qualifications:**
+ Currently pursuing a Bachelor's or Master's degree in Computer Science, Information Security, or related technical field
+ Experience in investigative or incident response environments
+ Experience in professional cyber security domains
**Preferred qualifications:**
+ Currently attending a degree program in Canada and available to work full time for 12 weeks outside of university term time
+ In their penultimate academic year or returning to a degree program after completion of the internship
+ Experience working in SOC analysis, malware research, threat hunting, or similar
+ Familiar with fundamentals of operating systems, including Linux, or OS X
**About the job**
We ensure the long-term success of our clients by providing talented, passionate, and specialized security expertise. Our Mandiant Security Consultants partner with clients to evaluate, create, develop, improve, and mature information security operations and programs. By utilizing the latest industry standards and combining experience and knowledge gained from Incident Response, Intelligence, and Managed Defense practices, we are able to develop defense forward information security programs for our clients.
Google is and always will be an developing company. We hire people with a broad set of technical skills who are ready to address some of technology's greatest challenges and make an impact on millions, if not billions, of users. At Google, developers not only revolutionize search, they routinely work on massive scalability and storage solutions, large-scale applications and entirely new platforms for developers around the world. From Google Ads to Chrome, Android to YouTube, Social to Local, Google developers are changing the world one technological achievement after another.
**Responsibilities**
+ Provide guidance on building and/or maturing cybersecurity programs and the implementation of tools and technologies used for enterprise security.
+ Evaluate client needs, coordinate design for a solution, and clearly communicate the value proposition of complex and highly technical subjects.
+ Implement and/or assess existing security controls.
+ Interface with clients to address concerns, issues, or escalations. Track and drive to closure any issues that impact the service and its value to clients.
+ Engage and collaborate with client stakeholders and other groups within customer environment to drive resolution for security issues.
Information collected and processed as part of your Google Careers profile, and any job applications you choose to submit is subject to Google'sApplicant and Candidate Privacy Policy (./privacy-policy) .
Google is proud to be an equal opportunity and affirmative action employer. We are committed to building a workforce that is representative of the users we serve, creating a culture of belonging, and providing an equal employment opportunity regardless of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition (including breastfeeding), expecting or parents-to-be, criminal histories consistent with legal requirements, or any other basis protected by law. See alsoGoogle's EEO Policy ( ,Know your rights: workplace discrimination is illegal ( ,Belonging at Google ( , andHow we hire ( .
If you have a need that requires accommodation, please let us know by completing ourAccommodations for Applicants form ( .
Google is a global company and, in order to facilitate efficient collaboration and communication globally, English proficiency is a requirement for all roles unless stated otherwise in the job posting.
To all recruitment agencies: Google does not accept agency resumes. Please do not forward resumes to our jobs alias, Google employees, or any other organization location. Google is not responsible for any fees related to unsolicited resumes.
Google is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also and If you have a need that requires accommodation, please let us know by completing our Accommodations for Applicants form:

Job Description

Job Description

*This is a remote position, and candidates must be located in Ontario, CA

NetSPI® is an award-winning pioneer of Penetration Testing as a Service (PTaaS) with its AI-powered platform supported by more than 350 in-house cybersecurity experts. Specializing in 50+ pentest types, attack surface visibility, vulnerability prioritization, and attack simulation, NetSPI delivers security testing with unprecedented clarity, speed, and scale.

NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at

Join the mission as a Senior Security Consultant. We’re seeking a technically skilled and analytical AI/ML Penetration Tester to strengthen our cybersecurity defenses through advanced, cutting-edge testing of AI and machine learning systems. As a Penetration Tester supporting AI/ML, you will work closely with clients to deliver clear, actionable reports and contribute to the development of security best practices.

Responsibilities :

• Conduct engagements on AI/ML systems, web applications and API’s independently and provide technical oversight
• Design and execute advanced adversarial testing (e.g., evasion, data poisoning, model extraction, inversion/inference) to expose vulnerabilities in AI/ML pipelines and architectures.
• Present comprehensive penetration test findings to clients while emphasizing AI/ML risks, and collaborate on remediation strategies with model hardening, adversarial training, and threat mitigation.
• Help author tools, presentations, white papers, and blog posts to share insights on AI/ML security best practices and emerging attack trends with the broader cybersecurity community. Contribute to the cybersecurity community through tools, presentations, white papers, and blogging.
• Review reports for accuracy in technical oversight, perform weekly QA oversight, and provide mentoring support to others
• Create, deliver, and collaborate on penetration testing reports in diverse client environments, maintaining client-specific processes, reporting standards, and access protocols to help improve their security posture
• Research and develop innovative techniques, tools, and methodologies for penetration testing services, alongside commitment to improvement and execution on NetSPI specific products and processes
• Participate in development, implementation, and oversight of testing, delivery, and management strategies for key client accounts
• Perform administrative tasks related to day-to-day consulting activities to ensure smooth business and engagement operations.

Minimum Qualifications :

• Bachelor’s degree or higher, with a focus on IT, Computer Science, Engineering or Math or equivalent experience
• Minimum of 3-5 years of work experience in Penetration Testing
• Proficiency in using and customizing offensive toolkits for network, application, and AI/ML penetration testing
• Thorough understanding of how major ML frameworks (e.g., Tensorflow, PyTorch) are implemented in real-world training and deployment pipelines.
• Understanding of how to deploy AI/ML models with LangChain, including secure configuration of data flows, environment isolation, and integration with production systems
• Understanding of Adversarial Machine Learning and its practical applications
• Familiarity with offensive tools, based on applicable skillset (e.g., Kali Linux, Burp Suite, Metasploit, Nessus)
• Familiarity with offensive and defensive IT concepts and protocols
• Extensive understanding of the OWASP Top 10, MITRE ATT&CK framework, and various security frameworks.
• Working knowledge of Windows, Linux and MacOS operating systems internals
• Experience mentoring or coaching to growing team members, while sharing knowledge externally through blogs, hosting webinars, or presenting at conferences
• Ability to work independently and as part of a team
• Proficient communication skills, both written and verbal
• Willingness to travel up to 5-10% minimum
• This position requires an 8-hour workday, with occasional evenings or weekends necessary to meet project deadlines or critical needs

Preferred Qualifications:

• Ability to provide technical and QA oversight on AI/ML service line.
• Comprehensive knowledge of secure AI/ML development protocols and architecture
• Strong problem-solving skills and the ability to think like both an attacker and a defender.
• A continuous learning mindset to keep up to date with the rapidly evolving AI/ML and cybersecurity landscapes.
• Experience with model interpretability and explainability tools to understand model behavior and potential biases.
• Experience in ML model development, feature engineering, and data pre-processing.
• Experience in one or more of the following programming or scripting languages (e.g., Ruby, Python, Perl, C, C++, Java, and C#)
• Offensive Security Certifications (e.g., GXPN, GPEN, OSCP, GWAPT)

We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.

Job Description

Job Description

*This is a remote position, and candidates must be located in Ontario, CA

NetSPI® is an award-winning pioneer of Penetration Testing as a Service (PTaaS) with its AI-powered platform supported by more than 350 in-house cybersecurity experts. Specializing in 50+ pentest types, attack surface visibility, vulnerability prioritization, and attack simulation, NetSPI delivers security testing with unprecedented clarity, speed, and scale.

NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at

Join the mission as a Security Consultant II. We’re seeking a technically skilled and analytical Web Application and AI/ML Penetration Tester to strengthen our cybersecurity defenses through advanced, cutting-edge testing of AI and machine learning systems. As a Penetration Tester supporting AI/ML, you will work closely with clients to deliver clear, actionable reports and contribute to the development of security best practices.

Responsibilities :

• Conduct engagements on Web Applications and API’s independently, providing technical oversight as needed, including those which contain AI/ML components and features.
• Perform prompt injection techniques against a variety of models, including text, voice, image, video, and multi-modal processing models.
• Present comprehensive penetration test findings to clients while emphasizing AI/ML risks, and collaborate on remediation strategies with model hardening, adversarial training, and threat mitigation.
• Create, deliver, and collaborate on penetration testing reports in diverse client environments, maintaining client-specific processes, reporting standards, and access protocols to help improve their security posture.
• Research and develop innovative techniques, tools, and methodologies for penetration testing services, alongside commitment to improvement and execution on NetSPI specific products and processes.
• Participate in development, implementation, and oversight of testing, delivery, and management strategies for key client accounts
• Perform administrative tasks related to day-to-day consulting activities to ensure smooth business and engagement operations.

Minimum Qualifications :

• Bachelor’s degree or higher, with a focus on IT, Computer Science, Engineering or Math or equivalent experience.
• Minimum of 2-4 years of work experience in Penetration Testing.
• Familiarity with attack techniques utilized against text, voice, image, video, and multi-modal models.
• Proficiency in using and customizing offensive toolkits for network, application, and AI/ML penetration testing.
• Understanding of Adversarial Machine Learning and its practical applications.
• Familiarity with offensive tools, based on applicable skillset (e.g., Kali Linux, Burp Suite, Metasploit, Nessus).
• Familiarity with offensive and defensive IT concepts and protocols.
• Extensive understanding of the OWASP Top 10 for both web applications and large language models, MITRE ATT&CK framework, and various security frameworks.
• Working knowledge of Windows, Linux and MacOS operating systems internals.
• Experience mentoring or coaching to growing team members.
• Ability to work independently and as part of a team.
• Proficient communication skills, both written and verbal.
• This position requires an 8-hour workday, with occasional evenings or weekends necessary to meet project deadlines or critical needs.

Preferred Qualifications:

• Ability to provide technical and QA oversight on AI/ML service line.
• Comprehensive knowledge of secure AI/ML development protocols and architecture.
• Strong problem-solving skills and the ability to think like both an attacker and a defender.
• A continuous learning mindset to keep up to date with the rapidly evolving AI/ML and cybersecurity landscapes.
• Experience with model interpretability and explainability tools to understand model behavior and potential biases.
• Experience in ML model development, feature engineering, and data pre-processing.
• Experience in one or more of the following programming or scripting languages: Ruby, Python, Perl, C, C++, Java, and C#
• Offensive Security Certifications (e.g., GXPN, GPEN, OSCP, GWAPT)

We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.

Your potential has a place here with TTEC's award-winning employment experience. As a Palo Alto Security Auditor working remotely in Canada, you'll be a part of bringing humanity to business. #experienceTTEC
**What You'll be Doing:**
Do you have a passion for information security and auditing? Looking for an opportunity to apply your Palo Alto firewall expertise in a dynamic and remote environment? In this role, you'll be responsible for auditing firewall changes, threat intelligence, and ensuring compliance with security policies. You'll collaborate with IT teams, analyze logs, and deliver recommendations aligned with business and technical objectives.
You'll report to the Information Security Manager. We're looking for a detail-oriented professional to act as one, as you will encourage and motivate your team to resolve issues, accomplish goals and influence security posture.
**During a Typical Day, You'll:**
+ Serve as the administrator and auditor for:
+ Firewall Changes - conduct post-implementation reviews to ensure compliance and effectiveness
+ Discovery Tool (Census) - monitor alerts for new TTEC-related transactions and assess their security implications.
+ Conduct regular audits and reviews of firewall rules to ensure alignment with security policies and best practices.
+ Analyze firewall logs for anomalies, troubleshooting, and incident response.
+ Collaborate with IT teams to communicate findings and deliver actionable recommendations.
+ Maintain documentation of audit findings, remediation actions, and compliance reports.
+ Stay current with Palo Alto firewall updates, features, and security trends.
**What You Bring to the Role:**
+ Proven experience auditing and administering Palo Alto Firewalls.
+ Strong understanding of firewall principles, rule sets, and traffic flow.
+ Proficiency in analyzing firewall logs and troubleshooting network issues.
+ Solid networking knowledge, including Internet protocols such as TCP/IP, HTTP, HTTPS, SSL, FTP, Telnet, SSH, etc.
+ Excellent communication and interpersonal skills, with the ability to convey technical concepts to non-technical stakeholders.
+ Strong ethics, integrity, and attention to detail.
+ Ability to work independently and collaboratively in a remote environment.
+ Strong organizational skills and ability to manage multiple priorities.
**What You Can Expect:**
+ Supportive of your career and professional development
+ An inclusive culture and community minded organization where giving back is encouraged
+ A global team of curious lifelong learners guided by our company values
+ Ask us about our paid time off (PTO) and wellness and healthcare benefits
And yes. a great compensation package and performance bonus opportunities, benefits you'd expect and maybe a few that would pleasantly surprise you (like tuition reimbursement)
**Compensation:**
The anticipated range is $70,000 - $85,000 CAD annually. Actual compensation offers to a candidate may vary based upon geographic location, work experience, education and/or skill levels.
**About TTEC**
Our business is about making customers happy. That's all we do. Since 1982, we've helped companies build engaged, pleased, profitable customer experiences powered by our combination of humanity and technology. On behalf of many of the world's leading iconic and hypergrowth brands, we talk, message, text, and video chat with millions of customers every day. These exceptional customer experiences start with you.
TTEC is proud to be an equal opportunity employer where all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. TTEC embraces and is committed to building a diverse and inclusive workforce that respects and empowers the cultures and perspectives within our global teams. We aim to reflect the communities we serve, by not only delivering amazing service and technology, but also humanity. We make it a point to make sure all our employees feel valued, belonging, and comfortable being their authentic selves at work. As a global company, we know diversity is our strength because it enables us to view things from different vantage points and for you to bring value to the table in your own unique way.
**Title:** _Information Security Engineer_
**Location:** _CAN-ON-London_
**Requisition ID:** _04775_

**Work Location:**
Barrie, Ontario, Canada
**Hours:**
37.5
**Line of Business:**
Technology Solutions
**Pay Details:**
$91,200 - $136,800 CAD
TD is committed to providing fair and equitable compensation opportunities to all colleagues. Growth opportunities and skill development are defining features of the colleague experience at TD. Our compensation policies and practices have been designed to allow colleagues to progress through the salary range over time as they progress in their role. The base pay actually offered may vary based upon the candidate's skills and experience, job-related knowledge, geographic location, and other specific business and organizational needs.
As a candidate, you are encouraged to ask compensation related questions and have an open dialogue with your recruiter who can provide you more specific details for this role.
**Job Description:**
We are seeking experienced ServiceNow ITOM (CMDB/Discovery) Analyst to join our team. The ideal candidate will be proficient in managing the Configuration Management Database (CMDB) within ServiceNow, with a strong background in ServiceNow Discovery and Service Mapping.
The successful candidate will be responsible for operating CMDB / Discovery within the ServiceNow platform, including identifying and remediating Discovery errors, ensuring the accuracy and integrity of the CMDB, addressing pain points and enhancing the health of CMDB as well as enforcing Enterprise Asset Management Governance process.
**KEY ACCOUNTABILITIES**
**CUSTOMER**
+ Provide consultation and advice to partners on a broad range Technology Controls / Information Security programs / policies / standards and incidents for own specialized area
+ Conduct project consulting on assessment of risk, definition of required controls, appropriateness of implemented control procedures, vulnerability assessments and any other relevant areas
+ Lead or contribute to completion of risk and control design assessments for an application portfolio, articulate and document impact of control gaps to the business and the overall Bank, risk mitigation and remediation plans, remediation strategy document as applicable
+ Contribute to the definition, development, and oversight of a global security management strategy and framework
+ Ensure technology, processes, and governance are in place to monitor, detect, prevent, and react to both current and emerging technology / security threats against TDBG's business
+ Develop on-going Technology Risk reporting, monitoring key trends and defining metrics to regularly measure control effectiveness for own area
+ Work proactively with technology partners / stakeholders and service/platform owners to ensure all technology security components are integrated into the bank's overall Enterprise Architecture, and any control gaps are addressed.
+ Consult on Regulatory compliance requirements, reporting and questions
+ Provide support and consulting in preparation for Audits and in composing management responses and appropriate remediation activities
+ Participate in computer security incident responses relevant to business (or enterprise wide) and represent respective function and Enterprise position to the business, and business needs to incident response team
**SHAREHOLDER**
+ Adhere to internal policies / procedures, technology control standards, and applicable regulatory guidelines
+ Contribute to the review of internal processes and activities and assist in identifying potential opportunities for improvement
+ Adhere to and advise on / oversee / monitor / enforce enterprise frameworks and methodologies that relate to technology controls / information security activities
+ Influence behavior to reduce risk and foster a strong technology risk management culture throughout the enterprise
+ Remain informed of emerging issues, industry trends and/or relevant changes
+ Define / develop / implement / manage standards, policies, procedures, and solutions that mitigate risk and maximize security, availability of service, efficiency and effectiveness
+ Actively manage relationships with other areas of Technology / businesses / corporate and/or control functions and ensure alignment with enterprise and/or regulatory requirements
+ Keep abreast of emerging issues, trends, and evolving regulatory requirements and assess potential impacts to the Bank
+ Assess / identify key issues and escalate to appropriate levels and relevant stakeholders where required
+ Maintain a culture of risk management and control, supported by effective processes and sound infrastructure an in alignment with risk appetite
+ Participate in business specific / cross-functional / enterprise initiatives as a subject matter expert helping to identify risk / provide guidance
+ May develop / provide / contribute to complex reporting, analysis, and assessments at the functional or enterprise level
**EMPLOYEE / TEAM**
+ Maintain and manage the Configuration Management Database (CMDB) within ServiceNow and supported integrations with external data sources.
+ Ensure the ongoing inventory accuracy and integrity of CMDB data, implementing best practices and standards.
+ Regularly audit and reconcile CMDB data to maintain ongoing inventory accuracy and data quality.
+ Analyze and evaluate CMDB and discovery technologies across a broad spectrum of modern hardware and software IT assets
+ Perform day-to-day administration of the ServiceNow Discovery, including validating discovery results and troubleshooting discovery errors, discovery schedules, credentials, permissions and mid-servers
+ Identify opportunities for process improvement and automation within ServiceNow.
+ Provide input tothe CMDB and discovery product roadmaps, including cross-product and cross-organizational dependencies
+ Support key CMDB consumers such as IT service management processes,Enterprise Technology Currency management and SecOps and ensure alignment with business goals and regulatory requirements.
+ Support bi-annual ServiceNow Platform Upgrades
+ Stay up-to-date on ServiceNow releases and new capabilities, recommending enhancements that benefit the organization.
+ Continuously enhance knowledge / expertise in own area
+ Keep current on emerging trends / developments and grow knowledge of the business, analytical tools and techniques
+ Prioritize and manage own workload to deliver quality results and meet assigned timelines
+ Support a positive work environment that promotes service to the business, quality, innovation and teamwork and ensure timely communication of issues/ points of interest
+ Identify and recommend opportunities to enhance productivity, effectiveness and operational efficiency
+ Establish effective relationships across multiple business and technology partners, program and project managers
+ Participate in knowledge transfer within the team and business units
**BREADTH & DEPTH**
+ Expert knowledge of IT security and risk disciplines and practices
+ Advanced knowledge of of organization, technology controls / security/ risk issues
+ May participate on complex, comprehensive or large projects and initiatives
+ Acts as a lead expert resource in technology controls / information security for project teams, the business / organization and/or outside vendors
+ Generally reports to Senior Manager or above
**EXPERIENCE & EDUCATION**
+ Bachelor's Degree in Computer Science or Engineering or equivalent combination of education and experience.
+ Minimum 5 years of hands-on experience implementing, administering and optimizing ServiceNow ITOM (CMDB, Discovery, Service mapping).
+ Proven hands-on experience in optimizing discovery, tailoring patterns and development.
+ Proven hands-on experience monitoring, troubleshooting and remediating CMDB & Discovery related issues in large organizations including experience with any cloud service providers such as Azure, GCP or VMware.
+ Working knowledge of hybrid IT infrastructure, which combines on-premises, data center, and cloud-based operations including in-depth knowledge of networking.
+ Strong understanding of Networking principles, Server Administration concepts, Cloud Infrastructure and Middleware and Databases.
+ Knowledge of ServiceNow Common Services Data Model (CSDM) framework.
+ The following certifications would be considered as assets: Certified ServiceNow System Administrator (CSA), and Certified Implementation Specialist (CIS) in Discovery, Service Mapping, Vulnerability Response
+ Excellent analytical and problem-solving skills with the ability to troubleshoot complex technical issues;
+ Effective communication and interpersonal skills, with the ability to collaborate with stakeholders at all levels of the organization.
+ Demonstrated ability to work independently, prioritize tasks, and manage multiple issues and initiatives simultaneously.
+ Self-starter, positive attitude, and ability to problem-solve under minimal supervision
**Who We Are:**
TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues.
TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you've got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we're here to support you towards your goals. As an organization, we keep growing - and so will you.
**Our Total Rewards Package**
Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical, and mental well-being goals. Total Rewards at TD includes a base salary, variable compensation, and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off, banking benefits and discounts, career development, and reward and recognition programs. Learn more ( Information:**
We're delighted that you're considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we're committed to providing the support our colleagues need to thrive both at work and at home.
Please be advised that this job opportunity is subject to provincial regulation for employment purposes. It is imperative to acknowledge that each province or territory within the jurisdiction of Canada may have its own set of regulations, requirements.
**Colleague Development**
If you're interested in a specific career path or are looking to build certain skills, we want to help you succeed. You'll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD - and we're committed to helping you identify opportunities that support your goals.
**Training & Onboarding**
We will provide training and onboarding sessions to ensure that you've got everything you need to succeed in your new role.
**Interview Process**
We'll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call.
**Accommodation**
Your accessibility is important to us. Please let us know if you'd like accommodations (including accessible meeting rooms, captioning for virtual interviews, etc.) to help us remove barriers so that you can participate throughout the interview process.
We look forward to hearing from you!
**Language Requirement (Quebec only):**
Sans Objet
Federal law prohibits job discrimination based on race, color, sex, sexual orientation, gender identity, national origin, religion, age, equal pay, disability and genetic information.