Share this Job
Requisition Number:  2978
Position Type:  Permanent
Position Length:  indeterminate

Ottawa (Downtown), ON, CA

Closing Date:  January 21, 2020 - 23h59 EST

Diversity and Inclusion
As one of Canada’s Top 100 Employers, we offer you a superior work environment that allows you to reach your full potential both professionally and personally. We make career growth and professional development a priority. We are committed to developing inclusive, barrier-free recruitment and selection processes, and a work environment that supports our diverse workforce.

Let our team know if you need accommodation or support during the recruitment process due to a disability or other reason. We can provide support in multiple ways, from using this site and submitting your application, right through to the interview process. If you are the successful candidate, you can also discuss accommodation needs when you receive your offer.

Contact to discuss how.

Senior IT Security Assessment Specialist

Take a central role
The Bank of Canada has a vision to be “a leading central bank—dynamic, engaged and trusted—committed to a better Canada.” No other employer in the country offers you the unique opportunity to work at the very center of Canada’s economy, in a diverse and inclusive organization with significant impact on the economic and financial well-being of all Canadians. You will be challenged, energized and motivated to excel in an environment where we are reinventing central banking, renewing ways of doing business and reinforcing a culture of innovation.


About the position
This is an excellent opportunity to join a dynamic and highly skilled team of cyber specialists working in a fast-paced and innovative environment enabling Canada’s central Bank to work securely. As a Security Vulnerability Analyst, you help shape the future of IT security standards at the Bank. You perform practical testing, share theoretical knowledge of concepts, dive deep into technology assessments and propose solutions to newly discovered security flaws. In addition, you play a central role in educating and collaborating with solutions architects, solutions integrators, principal consultants, project managers, system administrators and network specialists in operational teams to build solutions that will strengthen the banking system for financial institutions in Canada. 


Your future responsibilities
This role is responsible for performing vulnerability testing for new IT solutions and consulting on projects to ensure that IT security standards are met. You would also review changes in the IT environment to protect against new security risks and develop plans to safeguard critical business data against accidental or unauthorized modification, destruction or disclosure. The role also involves performing risk assessments on third-party service providers to ensure that data in outsourced arrangements, such as cloud computing, are secure. 


Your education and experience

  • a university degree or 3-year college diploma in computer science, software or systems engineering, or a related discipline with minimum of three years of recent work experience directly related to one or more of the following areas:
    • technical vulnerability assessment and penetration testing (including at the application layer)
    • web application security
    • secure development
    • coding practices or technical security risk assessment/security audits on web, server or desktop applications


  • an equivalent combination of education and experience may be considered


Your knowledge and skills 

  • ability to gather and document business and functional requirements for implementing security controls and technologies
  • familiarity with security risk assessment methodologies and reporting (CSEC-RCMP HTRA preferred)
  • ability to systematically analyze information, define problems and draw logical conclusions
  • strong communication skills, both oral and written
  • innovative problem solver, self-starter and effective team player 



  • experience as a third-party assessor or internal or external auditor, providing consultation services to public sector organizations or Crown corporations 
  • relevant certification (OSCP, OSCE, OSWE, GSSP-Java, GSSP-.NET, GPEN, GWAPT or equivalent)


Language requirement
English or French essential


What you can expect from us
This is a great opportunity to join a leading organization and be part of a high-performing team. We offer a competitive compensation and benefits package designed to meet your needs at every stage of your life and career.

  • Salaries are based on qualifications and experience and typically range from $83,900 to $104,800 (job grade 17)
  • Depending on performance, you may be eligible for performance pay for successfully meeting (7 to 10% of your base salary) or for exceeding expectations (15% of your base salary). Exceptional performers who far exceed expectations may be eligible for higher performance pay.
  • Flexible and comprehensive benefits so you can choose the level of health, dental disability and life and/or accident insurance coverage that meets your needs
  • Extra vacation days (up to five each year) that you can purchase to add to your vacation entitlement
  • Indexed, defined-benefit pension


For more information on key benefits, please visit
Additional information

  • Priority will be given to Canadian citizens and permanent residents
  • Security level required: Secret 
  • Relocation assistance may be provided, if required


We encourage applications from women, Indigenous peoples, veterans, persons with disabilities, members of visible minorities and persons of all races, ethnic origins, religions, abilities, sexual orientations, and gender identities and expressions.


We wish to thank all applicants for their interest and effort in applying for this position; however, only candidates selected for interviews will be contacted.