Apply Now

iON is always on the lookout for talented individuals who excel at their craft.

Tell us about yourself to be added to our contractor placement or iON Team candidates list.

Senior Security Consultant – Penetration Tester

Go Back

iON United Inc. is one of Canada’s most trusted cybersecurity solution providers. Founded in 2003, our experienced team delivers best-in-class advisory, technology, and managed services for securing IT, OT, and cloud environments. With consecutive year-over-year growth, we foster meaningful relationships through meaningful work by helping organizations make informed risk management decisions. Recognized for growth by Canadian Business magazine six times and The Globe and Mail in 2021, we continue to build and support a customer community on the leading edge of technology. Cultivating a culture of performance and accountability has earned us a renowned reputation and continues to attract Canada’s best talent to work alongside the nation’s top clients. Our focus on cybersecurity allows the organizations we partner with to maintain their focus on growing their business, We Protect the Brands You Know.™

iON Security Consultants are a key part of the iON team, responsible for designing, implementing, configuring, managing, supporting, and troubleshooting various security solutions provided by the company. The successful candidate will provide security expertise, technical acumen, and customer service skills as a member of a team delivering security products and services to our customers.

The Senior Security Consultant will be involved in projects and managed services as required by iON customers. In this customer-facing role, you will use your security and technical knowledge in the context of our customer’s business requirements to provide an exceptional level of service, helping them to benefit from our solutions and improve their overall security posture. You will have the opportunity to work with a variety of security technologies on multiple projects in diverse customer environments ranging from mid-sized organizations to large enterprise environments.  You will be a part of a dynamic team that uses expert knowledge to solve the problems of our varied customers and help ensure their security.


  • Assess client information technology projects, initiatives, and environments for security vulnerabilities and risks by scoping, preparing, and conducting penetration tests, and vulnerability and security assessments
  • Demonstrate the likelihood of data compromises via ‘proof of concept’ exploration
  • Act as a technical advisor to iON clients for remediating and mitigating security risks
  • Remain current on newly evolving threats to information systems, and find opportunities to reduce risks posed by these new threats for iON clients
  • Provide thorough findings and recommendations for iON’s clients for remediation and mitigating security risks
  • Mentorship, training, oversight of team members (QA)
  • Support overall development and maintenance of the managed service practice
  • Act as a trusted cybersecurity advisor for customers and enterprises of all sizes and industries

Professional Qualifications and Expertise – preference will be given to candidates who have:

  • At least 5 years of previous experience in penetration testing and/or incident response
  • 5 years of network or system administration experience is an asset
  • One or more relevant certifications (CEH, OSCP, OSWA, GPEN, GWAPT, GCIH, etc)
  • Strong working knowledge of TCP/IP, HTTP/HTTPS, routing protocols, etc.
  • Proficient in one or more programming or scripting languages is an asset
  • Practical experience with Active Directory security, Windows and Linux, Wireshark/TCPDump, Metasploit, Burp Suite, etc.
  • Excellent written and oral communications skills (English)
  • Familiarity with the Open Web Application Security Project (OWASP), National Institute of Standards and Technology Cybersecurity Framework (NIST CSF), CIS Critical Security Controls, and Open Source Security Testing Methodology Manual (OSSTMM)
  • Experience in identifying, analyzing, scoping, containing, and eradicating real-world threats
  • Knowledge of the latest attack trends, tools, and the threat landscape
  • Experience evaluating and assessing risk
  • Understanding of common web and system security vulnerabilities and remediation techniques
  • Cloud Security knowledge and experience (AWS, Azure, Google) skillset is an asset

Desirable Skills

  • Ability to work independently and with a team in a high-demand environment
  • Effective communicator of technical and business information, both verbal and written
  • Experience writing and reviewing reports and presenting findings in person or virtual
  • Excellent troubleshooting/problem solving/analytics skillset
  • Strong customer service skills, personable, adaptable
  • Time management and project management skills
  • Motivated to learn, grow, and quickly adapt to new technologies
  • Ability to assess risk and identify threats
  • Vendor or industry certifications are an asset
  • Experience in large customer/business environments
  • Cybersecurity experience in industrial control system environments (ICS)
  • Initiative/do the right thing/self-directed/self-motivated/fresh perspectives

Additional Information

  • iON has a mandatory vaccination policy for new employees and contingent workers that requires you to be fully vaccinated with a Health Canada-approved vaccine against COVID-19.
  • As a requirement of this position, the successful candidate must satisfy and receive clear results for a Criminal Record Check.