Job Order Detail

Description

Job Roles and Responsibilities:
Utilizing both automated and manual techniques to test security within applications.
Performance of application vulnerability assessments and penetration testing.
Responsible for web application and mobile application security testing.
Responsible for security testing of web services and APIs.
Performance of code reviews on code developed by AMS team, when required.
Performance of false positive/negative analysis and providing recommendations to developers.
Responsible for protecting all web applications using WAF.

The Resource(s) will be expected to develop strong relationships with teams throughout GOS and, utilizing strong collaboration and communications skills, work to further secure all of GOSs application assets.

The resource will be required to participate in consultant performance evaluation as deemed appropriate by the Ministry.

Familiarity with GOS or comparable entity, technical and business landscape will be evaluated.

BACKGROUND:
CSRM is responsible for managing all things related to IT security including, though not necessarily
limited to:
Providing interpretation and enforcement of the information security policy and standards;
Providing information security education and awareness;
Responding to information security Incidents;
Performing Threat Risk Assessments (TRAs) for IT-related business initiatives throughout Government;
Providing security assessment and overall security requirements oversight for IT-related
Solution and Services Procurements;
Providing information security advice and guidance for business areas;
Evaluating new threats and vulnerabilities

Mandatory:
Candidate must be a Certified Information Systems Security Professional (CISSP) or a Certified Ethical Hacker.
Candidate must be able to work 100% onsite at a Government of Saskatchewan office in Regina, Saskatchewan, effective the contract start date.