Summary

CAPTOSEC, Inc. is currently seeking an Information Security Governance Advisor to complete an Information Security Governance mandate with one of our new clients. The candidate must join our team and be autonomous. The position is based in Quebec but work can be done remotely from Canada.

 

Duties and Responsibilities:

+ Participate in the development and implementation of the governance program;

+ Participate in information security governance activities such as the creation and updates of policies, directives and organizational processes;

+ Develop the annual information security awareness plan and ensure its implementation;

+ Document the CIA triad for all assets and update the categorization, classification or authority registers;

+ Participate in the development and maintenance of an IT recovery plan in collaboration with the managers of the various assets;

+ Validate compliance reports for security requirements;

+ Produce security advisories in order to propose recommendations to improve information security;

+ Perform and follow up on various security audits;

+ Maintain and document information shared on the intranet.

 

Specific Requirements

The candidate must:
+ Hold an undergraduate university degree in computer science or a related discipline or equivalent experience;

+ Have five (5) years of experience in the IT field, including three (3) years in IT security architecture;

+ Have a minimum of five (5) years of experience in information security, including five (5) years in governance and (3) years in awareness;

+ Have written analysis reports;

+ Master the spoken and written French language;

+ Have a good knowledge of the English language;

+ Hold at least one of the following industry certifications: CISSP, CISM, ISO 27001LI, CRISC..

 

Job-Type: Full-time or Independant consultant

Benefits (For permanent employee): Group insurance (Life, medical, dental and glasses), Reimbursement of transportation fees, 13 days of paid annual leave

Start Date: As soon as possible

 

Are you interested?

Send us your CV to info@captosec.com and one of our Human Resources Advisors will contact you as needed.

 

About CAPTOSEC, Inc.

CAPTOSEC is a Canadian IT company, human-sized and specialized in information security and cybersecurity. We offer a stimulating environment that allows you to progress quickly in your professional career, while having fun. Our services cover consulting, managed services, security testing and assessments, and cybersecurity training. For more details, visit our website at www.captosec.com.

Thanks for trusting us !

Summary

 

CAPTOSEC, Inc. is currently seeking an IT Security Architecture Advisor to complete an architectural mandate with one of our long-term IT security clients. The candidate must join our team of architects and be autonomous. The position is based in Quebec.

 

Duties and Responsibilities:

+ Convene and participate in architecture workshops;

+ Produce project security deliverables;

+ Carry out security risk analyzes as part of the project;

+ Validate compliance reports for security requirements;

+ Advise the project manager on the planning of implementation activities for the solutions developed in the security deliverables;

+ Obtain all the decisions, orientations, constraints, rules, policies and others of the various stakeholders (backups, SAN, networks, technological architects, security architects, physical security, etc.) and integrate them into the releasable security assets;

+ Comply with the client’s safety guidelines and rules.

 

Specific Requirements

The candidate must:
+ Hold an undergraduate university degree in computer science or a related discipline or equivalent experience;

+ Have five (5) years of experience in the IT field, including three (3) years in IT security architecture;

+ Have carried out security mandates involving an architecture (3-tier or AOS) which combines central computer technologies, departmental servers (Unix, .Net, Oracle), workstations, extended network and telephone ;

+ Have participated over the last three (3) years in a project using methodologies based mainly on the Extreme Programming, Scrum, Kanban and Disciplined Agile 2.0 approaches and adaptation of Center DMR Productivitté (Green Guide);

+ Have written analysis reports;

+ Have a good knowledge of the English language;

+ Hold at least one of the following industry certifications: CISSP, ISO 27001LI, CISM, CEH, GSEC, ISO 27001LA.

 

Job-Type: Full-time or Independant consultant

Benefits (For permanent employee): Group insurance (Life, medical, dental and glasses), Reimbursement of transportation fees, 13 days of paid annual leave

Start Date: As soon as possible

 

Are you interested?

Send us your CV to info@captosec.com and one of our Human Resources Advisors will contact you as needed.

 

About CAPTOSEC, Inc.

CAPTOSEC is a Canadian IT company, human-sized and specialized in information security and cybersecurity. We offer a stimulating environment that allows you to progress quickly in your professional career, while having fun. Our services cover consulting, managed services, security testing and assessments, and cybersecurity training. For more details, visit our website at www.captosec.com.

Thanks for trusting us !

Summary

 

CAPTOSEC, Inc. is currently seeking a Cyber Security Analyst to fulfill a long-term intrusion monitoring and detection mandate. The candidate will have to join our SOC team and have a team spirit. The position is based in Quebec city.

 

Duties and Responsibilities:

+ Analyze alerts, events and security logs generated by security devices (NIDS Probe, Firewall, Linux and Windows Servers, HIPS Wazuh Probe, etc.);

+ Perform intrusion and vulnerability tests on applications, on-site and cloud computing infrastructures;

+ Detect and respond to threats and attempted attacks;

+ Provide actionable information by enriching cyber threat information from our partners, suppliers and open sources to protect external and internal IT resources, data, customers and brand reputation.

+ Identify and record the compromises in the MISP platform (domain names, URLs, IP, Hash of malware, etc.);

+ Ensure the security watch on advanced threats and vulnerabilities (from CAPTOSEC’s home tools and reference sites);

+ Participate in the drafting of safety notices;

+ Analyze and evaluate the security bulletins of some vendors (Microsoft, Cisco, Adobe, etc.), using standards and tools such as CVSS, NVD, CVE, etc. ;

+ Maintain and update security features and tools (IDS / IPS Probe, Snort, Suricata, Zeek, Wazuh, Osquery, rules, signatures, policies, etc.);

+ Troubleshoot security features, in collaboration with customer representatives (network, systems, applications);

+ Participate and contribute to security incident response activities;

+ Design, develop and implement the tools necessary to carry out the tasks of the CAPTOSEC security operations center (scripts, forms, etc.);

+ Perform vulnerability scans on client infrastructures with Nessus and OpenVAS tools;

+ Produce and analyze reports of vulnerability scans;

+ Contribute to projects implementing or evolving security solutions (eg SIEM, GRC, etc.);

+ Document operational procedures (Confluence, Sphinx, etc.).

 

Specific Requirements

The candidate must:

+ Hold a bachelor’s degree in computer science or a DEC + 5 years of experience;

+ At least have a one-year (1) cybersecurity mandate, preferably in intrusion detection;

+ Have extensive network knowledge (OSI, TCP / IP, etc.);

+ Have knowledge of Linux, Windows and MacOS operating systems;

+ Have knowledge of cyber threats (malware, attack, attack vectors, attack techniques, etc.);

+ Have a thorough understanding of security controls to mitigate risks (antivirus, IPS / IDS, firewall, email filtering, website blocking, patches) and how they work;

+ Hold one or more recognized cybersecurity certifications in industry (CISSP, CEH, OSCP, CCNA Security, Security +, etc.) – Asset;

+ Be curious and have an analytical mind (strong attention to detail);

+ Enjoy fluency in oral communication, both in English and in French;

+ Love open source tools and resourcefulness;

+ Be a good editor.

 

Job-Type: Full-time

Benefits (For permanent employee): Group insurance (Life, medical, dental and glasses), Reimbursement of transportation fees, 13 days of paid annual leave

Start Date: As soon as possible

 

Are you interested?

Send us your CV to info@captosec.com and one of our Human Resources Advisors will contact you as needed.

 

About CAPTOSEC, Inc.

CAPTOSEC is a Canadian IT company, human-sized and specialized in information security and cybersecurity. We offer a stimulating environment that allows you to progress quickly in your professional career, while having fun. Our services cover consulting, managed services, security testing and assessments, and cybersecurity training. For more details, visit our website at www.captosec.com.

Thanks for trusting us !

Summary

 

CAPTOSEC, Inc. must support one of its clients in its project to improve its identity and access management solution. To achieve this, CAPTOSEC is currently looking for an identity and access management analyst to carry out this major mandate. The successful candidate will work in collaboration with a team of experienced consultants and interns. The latter must demonstrate commitment, seriousness and above all have a culture of results and customer satisfaction. It will be supervised if necessary by experts in the field.

 

Tasks and Responsibilities

+ Analyze and document customer needs (e.g., security and technical specifications) in terms of identity and access management;

+ Design an identity and access management solution that meets the needs of the client;

+ Deploy the Identity and Access Management solution;

+ Document identity and access management process and procedures (change management, etc.);

+ Contribute to the design and implementation of the hosting infrastructure (private cloud) of the identity and access management solution;

+ Configure the identity and access management environment;

+ Contribute to the resolution of problems and incidents related to identities and accesses;

+ Develop plugins and adapters for unsupported applications and systems (legacy);

+ Apply good practices in identity and access management;

+ Train users and administrators (Transfer of knowledge).

 

Specific Requirements

The candidate must:

+ Hold a Bachelor in computer science;

+ Have at least one year of experience in Identity and Access Management;

+ Have a thorough knowledge of identity management and access (federation, self-service, multifactor authentication, etc.);

+ Have knowledge on Linux and Windows operating systems;

+ Have notions in identity federation, SSO, RBAC, Provisioning,

+ Have already worked with at least one identity and access management solution (e.g., Keycloak, Apache Syncope, Oracle IAM, ForgeRock, NetIQ, etc.);

+ Have concepts in object-oriented programming concepts;

+ Have a good knowledge of directory services such as LDAP, Active Directory, etc.;

+ Know the standard protocols such as OAuth2, SAML 2.0, OpenID connect, etc.;

+ Be curious and have an analytical mind (strong attention to detail);

+ Have notions in Java programming language;

+ Be bilingual (French and English), asset, but just French or English will suffice;

+ Be able to learn quickly;

+ Love open source tools and resourcefulness;

+ Be a good editor.

 

Job Strengths: You will have the opportunity to be part of a team of dynamic experts passionate about cybersecurity. In addition, you will also have the opportunity to develop expertise in a highly sought-after area of information security, identity management and access.

Job Type: Permanent

Benefits: Group insurance (Life, medical, dental and glasses), Reimbursement of transportation fees, 13 days of paid annual leave

Work Location: Quebec City, downtown

Date of start: As soon as possible

Are you interested?

Please, send us your CV to info@captosec.com and one of our Human Resources Advisors will contact you as needed.

 

About CAPTOSEC, Inc.

CAPTOSEC is a Canadian IT company, human-sized and specialized in information security and cybersecurity. We offer a stimulating environment that allows you to progress quickly in your professional career, while having fun. Our services cover consulting, managed services, security testing and assessments, and cybersecurity training. For more details, visit our website at www.captosec.com.

Thanks for trusting us !

Summary

 

CAPTOSEC, Inc. is currently looking for a Programmer Analyst to participate in a project to upgrade its GRC web application. The successful candidate must join a team of experienced consultants with varied skills. The latter must demonstrate commitment, seriousness and above all have a culture of results and customer satisfaction. He will be supervised by experts in the field.

 

Tasks and Responsibilities

+ Analyze and document customer needs in terms of GRC;

+ Contribute to the development of Web applications according to Agile and Scrum methodologies;

+ Participate in the improvement of existing applications and assume the maintenance;

+ Participate as a team in recommending solutions and new technologies to improve platforms (Framework, tools, etc.);

+ Participate in the implementation of various features;

+ Support the implementation and training team;

+ Document the process and procedures;

+ Configure development and testing environments;

+ Develop plug-ins and adapters for the GRC web application;

+ Contribute to the resolution of problems and incidents related to bugs;

+ Apply best practices in the secure development of Web applications according to the OWASP top 10 and WITHOUT top 25;

+ Configure and use tools such as Confluence, Jira and Gitlab.

 

Specific Requirements

+ The candidate must :Hold a DEC or AEC in computer science;

+ Have at least six months of experience in web application development;

+ Have basic knowledge of application security;

+ Have knowledge of Linux and Windows operating systems;

+ Have notions of concepts in object oriented programming;

+ Have notions in C #, .Net, Java or PHP programming language;

+ Being bilingual (French and English), an asset, but just French or English may suffice;

+ Have good knowledge of SQL databases (SQL Server and / or MySQL);

+ Have knowledge of different Web Framework, including ASP.Net/MVC;

+ Knowledge of AJAX, REST, JSON and SOAP (asset);

+ Have knowledge of the Azure, TFS, git and / or AWS environment (asset);

+ Ability to manage priorities and meet deadlines;

+ Be concerned with quality;

+ Demonstrate resourcefulness, proactivity, creativity, thoroughness, versatility and organization;

+ Being able to learn quickly.

 

Assets of the position: The successful candidate will have the opportunity to be part of a team of dynamic experts passionate about IT and cybersecurity. In addition, he will also have the opportunity to develop expertise in a highly sought after area of information security, governance, risks and compliance.

 

Type of employment : Permanent

Benefits: Group insurance (Life, medical, dental and glasses), Reimbursement of transportation costs, 13 days of paid annual leave

Work place : Quebec City, 20 Rue Saint-Nicolas

Starting Date : As soon as possible

 

Are you interested?

Please, send us your CV to info@captosec.com and one of our Human Resources Advisors will contact you as needed.

 

About CAPTOSEC, Inc.

CAPTOSEC is a Canadian IT company, human-sized and specialized in information security and cybersecurity. We offer a stimulating environment that allows you to progress quickly in your professional career, while having fun. Our services cover consulting, managed services, security testing and assessments, and cybersecurity training. For more details, visit our website at www.captosec.com.

Thanks for trusting us !