Penetration Tester - Cyber Security Supervisor at RSM: A Comprehensive Overview

Are you a cybersecurity expert with a passion for ethical hacking and a knack for uncovering vulnerabilities? RSM, a leading provider of professional services to the middle market globally, is seeking a talented and experienced Penetration Tester - Cyber Security Supervisor to join our dynamic Security and Privacy Risk Consulting group. This is an exciting opportunity to lead security assessments, mentor team members, and help our clients protect their critical systems and data from evolving cyber threats.

Role Overview

As a Penetration Tester - Cyber Security Supervisor, you will play a crucial role in safeguarding our clients' digital assets. You will be responsible for leading and conducting security assessments, including static and dynamic application security testing. Your expertise in both manual and automated testing methodologies will be essential in identifying vulnerabilities and providing actionable remediation recommendations.

This role requires a strong understanding of web security principles, cloud security best practices, and various development technologies. You will collaborate with clients in a fast-paced environment, working across diverse technology stacks and services, including cloud platforms and development technologies. Your ability to clearly articulate findings to senior management and clients, both in writing and verbally, is paramount.

You will also be responsible for supervising, mentoring, and managing the engagement of other staff working on assigned projects. This includes fostering teamwork, promoting open communication, and ensuring the delivery of successful outcomes. As a leader, you will stay up-to-date with the latest security trends, technologies, and best practices, and share your knowledge with the team.

A Day in the Life

Here’s a glimpse into a typical day for a Penetration Tester - Cyber Security Supervisor at RSM:

• Morning: Start the day by reviewing the scope and objectives of an upcoming penetration testing engagement. Coordinate with the client to gather necessary information and access credentials.
• Mid-day: Conduct manual penetration testing on a web application, using your expertise to identify vulnerabilities such as SQL injection, cross-site scripting (XSS), and authentication flaws. Document your findings and prioritize them based on severity.
• Afternoon: Collaborate with the development team to explain the identified vulnerabilities and provide guidance on remediation strategies. Use SAST and DAST tools to automate the testing process and identify additional potential security risks.
• Late Afternoon: Prepare a comprehensive report summarizing the findings of the penetration test. Present the report to senior management and the client, clearly articulating the risks and providing actionable recommendations.
• End of Day: Mentor junior team members, sharing your knowledge and experience. Stay up-to-date with the latest security trends and research new attack techniques.

Why Calgary and Toronto?

RSM has a strong presence in both Calgary and Toronto, offering a diverse range of opportunities for professional growth. These cities are hubs for innovation and technology, attracting top talent from around the world. By working in these locations, you will have the chance to collaborate with leading organizations and contribute to the growth of the local economy.

Calgary is a vibrant city known for its entrepreneurial spirit and strong energy sector. It offers a high quality of life, with access to stunning natural landscapes and a thriving arts and culture scene. Toronto, on the other hand, is a global metropolis and Canada's largest city, offering a diverse range of industries, cultural experiences, and career opportunities.

Both Calgary and Toronto offer a great work-life balance, with numerous recreational activities, excellent schools, and affordable housing options. RSM values its employees' well-being and provides a supportive work environment that encourages personal and professional growth.

Career Path

At RSM, we are committed to helping our employees reach their full potential. The career path for a Penetration Tester - Cyber Security Supervisor can lead to various opportunities within the Security and Privacy Risk Consulting group. You can progress to become a Senior Supervisor, Manager, or even a Director, leading larger teams and managing more complex projects.

RSM also offers opportunities to specialize in specific areas of cybersecurity, such as cloud security, application security, or incident response. You can pursue relevant certifications, such as the Offensive Security Certified Professional (OSCP) or the Certified Information Systems Security Professional (CISSP), to enhance your expertise and career prospects.

We encourage our employees to take ownership of their career development and provide them with the resources and support they need to succeed. Our mentorship programs, training opportunities, and performance management system are designed to help you achieve your goals.

Salary and Benefits

RSM offers a competitive salary and benefits package that is commensurate with your experience and qualifications. The salary range for a Penetration Tester - Cyber Security Supervisor in Calgary and Toronto typically falls between $110,000 and $160,000 per year.

In addition to a competitive salary, RSM provides a comprehensive benefits package that includes:

• Comprehensive health insurance (medical, dental, vision)
• Generous paid time off (PTO) and holidays
• Retirement plan with company match
• Professional development opportunities and training programs
• Employee assistance program (EAP)
• Life insurance and disability coverage
• Flexible spending accounts (FSA)
• Health savings account (HSA)
• Wellness programs
• Tuition reimbursement
• Employee referral bonus program
• Opportunities for advancement within the company
• Mentorship programs
• Employee recognition programs
• RSM Cares Volunteer Program
• Paid parental leave
• Flexible work arrangements (where applicable)
• Business travel accident insurance
• Professional certifications support
• Technology allowance

RSM Culture

At RSM, we believe that our exceptional people are the key to our success. We foster an inclusive culture that inspires and empowers you to thrive both personally and professionally. We value diversity and celebrate the unique perspectives and experiences that each employee brings to the table.

Our core values are:

• Respect: We treat each other with respect and value diverse perspectives.
• Integrity: We uphold the highest ethical standards and act with integrity in all that we do.
• Collaboration: We work together as a team to achieve common goals.
• Excellence: We strive for excellence in all that we do.
• Stewardship: We are responsible stewards of our resources and committed to making a positive impact on our communities.

RSM is committed to creating a workplace where everyone feels valued, respected, and supported. We believe that when our employees thrive, our clients thrive as well.

How to Apply

If you are a passionate and experienced cybersecurity professional looking for an exciting opportunity to lead and mentor a team, we encourage you to apply for the Penetration Tester - Cyber Security Supervisor position at RSM.

To apply, please submit your resume and cover letter through our online application portal. Be sure to highlight your relevant skills, experience, and certifications. We look forward to hearing from you!

Frequently Asked Questions (FAQ)

1. What is the typical career path for a Penetration Tester - Cyber Security Supervisor at RSM?
   The career path can lead to Senior Supervisor, Manager, or Director roles within the Security and Privacy Risk Consulting group.
2. What certifications are preferred for this role?
   Offensive Security Web Assessor (OSWA) and Offensive Security Web Expert (OSWE) certifications are preferred but not required.
3. What programming skills are required for this role?
   Proficiency in Java, Python, Ruby, and JavaScript is highly desirable.
4. Does RSM offer professional development opportunities?
   Yes, RSM provides numerous professional development opportunities, including training programs, mentorship programs, and tuition reimbursement.
5. What is the company culture like at RSM?
   RSM fosters an inclusive culture that values respect, integrity, collaboration, excellence, and stewardship.
6. What cloud platforms experience is preferred?
   Experience with AWS and knowledge of cloud security best practices are preferred.
7. What is the salary range for this position?
   The typical salary range is between $110,000 and $160,000 per year, depending on experience and qualifications.
8. What type of security testing experience is required?
   Experience with both static application security testing (SAST) and dynamic application security testing (DAST) is essential.
9. What are the key responsibilities of this role?
   Key responsibilities include leading security assessments, conducting manual penetration testing, developing security standards, and mentoring team members.
10. What benefits does RSM offer?
    RSM offers a comprehensive benefits package, including health insurance, paid time off, retirement plan, and more.