Specialist, Threat Emulation and Security Validation
Specialist, Threat Emulation and Security Validation
Location: Vancouver, British Columbia, CA; Calgary, AB, CA; Toronto, ON, CA
Closing Date: February 28, 2025
Position Status: Vacant
Teck is a leading Canadian resource company focused on responsibly providing the metals essential for global development and the energy transition while caring for the people, communities, and land that we love.
Reporting to the Manager, Cyber Threat Defence, the Specialist, Threat Emulation and Security Validation will collaborate with a team of third-party offensive security experts, develop innovative security processes, and collaborate with partners to improve our security posture. Your role will focus on automating offensive security tasks and building reusable scripts and tools to streamline and improve our testing capabilities. In this role, you will be responsible for conducting penetration tests, vulnerability assessments, and red team exercises to identify and address security weaknesses in our systems and networks.
Responsibilities
Be a courageous safety leader, adhere to and sponsor safety and environmental rules and procedures
Champion the 3 lines of defense model for risk management and act as a 2nd line of defense facilitator regularly interacting with the 1st line of defense
Develop and implement automated penetration testing scripts and tools and maintain offensive security scripts and automation tools using languages such as Python, Ruby, or PowerShell
Conduct regular automated penetration tests and vulnerability assessments using industry-standard tools and custom scripts
Integrate offensive security tools with other security platforms to enable seamless orchestration and automation
Collaborate with the threat intelligence and detection teams to ensure a comprehensive and integrated security approach
Continuously update and refine offensive security tools, techniques, and methodologies to address emerging threats
Provide guidance and support to the detection and response team on day-to-day operations and strategic projects
Qualifications
5+ years of experience in offensive security, penetration testing, and vulnerability assessment
Certified Ethical Hacker (CEH) and Offensive Security Certified Professional (OSCP) or equivalent. Additional relevant certifications (e.g., GIAC, GPEN, GWAPT) are a plus
Proven track record in automating security testing and developing custom security tools
Experience in working with third-party security service providers
Solid understanding of security operations, including threat intelligence, threat detection, incident response, and offensive security
Expertise in penetration testing tools and platforms (e.g., Metasploit, Burp Suite, Nessus, Kali)
Strong coding and scripting skills in Python, Ruby, PowerShell, or similar languages
Experience with automating offensive security tasks and processes
Knowledge of security automation and orchestration platforms (e.g., SOAR)
Understanding of APIs and integration techniques for security tools
Embody Teck values in daily activities by being responsible and courageous, respectful and inclusive, alongside humble and driven
You can demonstrate personal accountability, radical transparency, and a growth mindset
Why Join Us?
At Teck, we offer more than just a job – we provide a pathway to personal and professional enrichment. With captivating projects set against stunning backdrops, a culture of inclusivity and collaboration, and boundless opportunities to learn and grow, joining us means embracing a fulfilling and dynamic career adventure.
Teck employees receive access to our total rewards program and comprehensive benefits package that promote physical, mental, financial, and emotional well-being. This includes but is not limited to:
- Annual Performance Bonus
- Profit Share Plan
- Health Spending Account
- Personal Spending Account
- Extended Health Care
- Dental and Vision Care
- Employer Paid Pension Plan
- Life Insurance and Disability Coverage
- Paid Sick Leave, Vacation and Holidays
- Virtual Telemedicine and additional support for overall well-being
- Employee and Family Assistance Program (EFAP)
Salary Range: $103,000 - $127,000
The actual base salary offered is determined based on the successful candidate’s relevant experience, skills, and competencies and considers internal equity.
About Teck
At Teck, we value diversity. Our teams work collaboratively and respect each person’s unique perspective and contribution.
Teck is one of Canada's leading mining companies, focused on providing products that are essential to building a better quality of life for people around the globe. Our commitment to our people is why Teck has been named one of Canada’s Top 100 Employers for seven consecutive years, listed as one of Canada's Top Employers for Young People and named to the 2024 Bloomberg Gender-Equality Index.
Learn more about Teck at www.teck.com or follow @TeckResources.
We wish to thank all applicants for their interest and effort in applying for the position; however, only candidates selected for interviews will be contacted.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
