Security Engineer
- Pay Rate: $70.00/hour, depending on experience
-
Contract Length: 2.5 Months with possible extension
Location: Calgary, Alberta
-
Raise is currently hiring a Security Engineer on behalf of our client. They’re expanding their team to meet growing needs, making this a unique opportunity to work with an industry leader. Our Client is a market leading financial institution
Note: The primary pay rate is based on T4 classification; however, we will also consider applications from candidates interested in an INC classification, where applicable.
Description
As part of our clients Technology team, you will help protect the financial wellness and personal data of more than 800,000 Albertans. If you are passionate about staying ahead of modern cyber adversaries and translating technical risk into secure business outcomes. As the next Security Engineer (Offensive Security & Threat Intelligence), you will play a critical role in proactively testing and hardening our clients defensive posture. This is a highly collaborative role designed for an offensive-minded security practitioner who enjoys rolling up their sleeves for deep-dive technical testing, but also excels at communicating risk to non-technical partners across the business. You will lead hands-on penetration testing and red team operations, design and facilitate tabletop simulations, and govern third-party assessment partnerships to ensure our defenses are resilient against real-world threat actors.
Responsibilities
-
Advanced Threat Emulation & Penetration Testing: Execute end-to-end, hands-on penetration tests across ’s applications, APIs, networks, and cloud environments. Design complex red team operations to validate detection and response capabilities against real-world adversary tactics.
-
Crisis Simulation & Tabletop Exercises: Author, design, and facilitate strategic, enterprise-wide cyber crisis simulations and tactical, team-specific Tabletop Exercises (TTX).
-
Remediation Governance & Defensive Alignment: Partner closely with blue teams, Cloud Security, and Software Engineering to provide actionable technical remediation guidance. Translate vulnerabilities into prioritized engineering items and validate completed security fixes.
-
Vendor Governance & Lifecycle Management: Define technical scopes of work, establish clear Rules of Engagement (ROEs), and oversee external third-party penetration testing vendors. Validate external findings for organizational risk acceptance.
-
Cross-Functional Risk Translation: Bridge the gap between deeply technical security findings and corporate business units by translating complex vulnerabilities into clear business impacts.
Operational Optimization & Tooling: Author high-quality technical documentation, Standard Operating Procedures (SOPs), and remediation runbooks. Develop custom scripts to automate routine testing workflows and scale assessment efficiency.
-
Qualifications
-
3 years of dedicated experience in offensive security, penetration testing, red teaming, or threat intelligence roles.
-
Proven hands-on experience conducting web application, API, network, and cloud-native (AWS/GCP) penetration tests.
-
Practical experience designing, planning, and facilitating tabletop exercises and crisis simulation drills for both technical and executive audiences.
-
Strong scripting capability (e.g., Python, Bash, PowerShell) to build custom automated testing tools and streamline workflows.
-
Outstanding technical writing and reporting skills, with the ability to clearly document vulnerabilities, proof-of-concepts, and mitigation paths.
-
Exceptional interpersonal skills; comfortable presenting technical findings to non-technical business stakeholders and driving collaborative remediation efforts.
-
Education and Certifications
-
Bachelor’s degree in Computer Science, Cyber Security, Information Technology, or a related field (or equivalent practical experience).
-
Highly Desired: OSCP (Offensive Security Certified Professional), CEH (Certified Ethical Hacker), GPEN (GIAC Penetration Tester), or GWAPT (GIAC Web Application Penetation Tester).
-
Assets: Cloud security certifications (AWS Certified Security, Google Cloud Professional Security Engineer) or defensive designations (CISSP, GCIH).
Additional Information
-
A requirement for candidates to be considered for this role will be to complete a criminal and credit check (including Canadian Credit Risk Score)
Looking for meaningful work? We can help!
Raise is an established hiring firm with over 65 years of experience. We believe strongly in making the world a better place through work, which is why we’re a certified B Corporation and donate 10% of our profits to charity.
We strive to build teams that reflect the diversity of the communities we work in. We encourage all qualified applicants to apply, including people from traditionally underrepresented groups such as women, visible minorities, Indigenous peoples, people identifying as LGBTQ2SI, veterans, and people with visible/nonvisible disabilities.
We have a dedicated webpage for accommodations where you can learn more about what we offer and request accommodation: https://raise.jobs/accommodations/
In order to submit candidates for roles, our clients will sometimes require personal information to confirm the identity of applicants and their legal status to work. Raise will never ask you for personal or banking information unless you have been selected for a job. If you are ever unsure about the legitimacy of this or any other Raise job posting (or have any other questions), please contact us at +1 800-567-9675 or [email protected].
#WES
#LI-SC1