bank of canada
  • Home
  • >
  • Vulnerability Management Analyst (Recent graduate)

Vulnerability Management Analyst (Recent graduate)

  • Full Time
  • Ottawa
  • Applications have closed.

Bank of Canada

bank of canada

Job description

The Bank of Canada has a vision to be “a leading central bank—dynamic, engaged and trusted—committed to a better Canada.” No other employer in the country offers you the unique opportunity to work at the very center of Canada’s economy, in a diverse and inclusive organization with significant impact on the economic and financial well-being of all Canadians. You will be challenged, energized and motivated to excel in an environment where we are reinventing central banking, renewing ways of doing business and reinforcing a culture of innovation.

What you will do  

As the Vulnerability Management Analyst, you will help shape the future of IT security standards at the Bank. You will perform vulnerability analyse, hands on security testing and validation, share theoretical knowledge of concepts, and propose solutions to identified security flaws. You will play a central role in educating and collaborating with IT operational teams to ensure the security of the Banking systems is maintained for the financial institutions in Canada.

In addition, you will:

  • be responsible for ingesting, validating, and rating new vulnerabilities into a central tracker
  • continuously update vulnerabilities as threats and risks evolve
  • assist with the coordination, prioritisation of remedial activities working directly with IT operational support teams
  • ensure remediations are completed on time and validate vulnerabilities are remediated.

What you need to succeed

A combination of experience and knowledge with OS platforms, applications, databases, cloud, web services, IT Network Infrastructures and Security Zoning (ITSG 22/38).  You should have the ability to perform security testing and validation on various platforms and to systematically analyze information, define problems and draw logical conclusions. Hands on experience with vulnerability scanning tools (such as Nexpose, and Nessus) would be ideal.

 

Nice-to-have

  • experience as a third-party assessor or internal or external auditor, providing consultation services to public sector organizations or Crown corporations
  • relevant certification (OSCP, OSCE, OSWE, GSSP-Java, GSSP-.NET, GPEN, GWAPT or equivalent)
  • familiarity with security risk assessment methodologies and reporting (CSEC-RCMP HTRA preferred)

 

Your education and experience

The position requires a a university degree or 3-year college diploma in computer science, software or systems engineering, or a related discipline or an equivalent combination of education and experience may be considered.

 

What you need to know

  • Language requirement: English or French essential
  • Priority will be given to Canadian citizens and permanent residents
  • Security level required: Secret
  • You will work remotely from any location within Canada while the Bank operates under mandatory telework. Flexibility for remote work for the duration of the term may be granted.
  • There will be no relocation assistance provided
  • Please save a copy of the job poster. Once the closing date has passed, it will no longer be available.
  • In response to the COVID-19 pandemic and further to public health guidelines, preventative measures are being taken to ensure health and safety during the recruitment process. All interviews are conducted virtually.

 

We wish to thank all applicants for their interest and effort in applying for this position. Only candidates selected for interviews will be contacted.

 

What you can expect from us
This is a great opportunity to join a leading organization and be part of a high-performing team. We offer a competitive compensation and benefits package designed to meet your needs at every stage of your life and career. For more information on key benefits please visit A great deal to consider.

 

  • Salaries are based on qualifications and experience and typically range from $57,200 to $67,200 (job grade 13)
  • Depending on performance, you may be eligible for performance pay for successfully meeting (3 to 5% of your base salary) or for exceeding expectations (7% of your base salary). Exceptional performers who far exceed expectations may be eligible for higher performance pay.
  • Flexible and comprehensive benefits so you can choose the level of health and dental coverage that meets your needs
  • Extra vacation days (up to five each year) that you can purchase to add to your vacation entitlement
  • Option to join the indexed, defined-benefit pension plan after 24 consecutive months of service

 

We strive to make our policies, programs and workplace more inclusive, respectful and barrier-free. We encourage applications from women, Indigenous peoples, veterans, persons with disabilities, members of visible minorities and persons of all races, ethnic origins, religions, abilities, sexual orientations, and gender identities and expressions.

bank of canada

Job description

The Bank of Canada has a vision to be “a leading central bank—dynamic, engaged and trusted—committed to a better Canada.” No other employer in the country offers you the unique opportunity to work at the very center of Canada’s economy, in a diverse and inclusive organization with significant impact on the economic and financial well-being of all Canadians. You will be challenged, energized and motivated to excel in an environment where we are reinventing central banking, renewing ways of doing business and reinforcing a culture of innovation.

What you will do  

As the Vulnerability Management Analyst, you will help shape the future of IT security standards at the Bank. You will perform vulnerability analyse, hands on security testing and validation, share theoretical knowledge of concepts, and propose solutions to identified security flaws. You will play a central role in educating and collaborating with IT operational teams to ensure the security of the Banking systems is maintained for the financial institutions in Canada.

In addition, you will:

  • be responsible for ingesting, validating, and rating new vulnerabilities into a central tracker
  • continuously update vulnerabilities as threats and risks evolve
  • assist with the coordination, prioritisation of remedial activities working directly with IT operational support teams
  • ensure remediations are completed on time and validate vulnerabilities are remediated.

What you need to succeed

A combination of experience and knowledge with OS platforms, applications, databases, cloud, web services, IT Network Infrastructures and Security Zoning (ITSG 22/38).  You should have the ability to perform security testing and validation on various platforms and to systematically analyze information, define problems and draw logical conclusions. Hands on experience with vulnerability scanning tools (such as Nexpose, and Nessus) would be ideal.

 

Nice-to-have

  • experience as a third-party assessor or internal or external auditor, providing consultation services to public sector organizations or Crown corporations
  • relevant certification (OSCP, OSCE, OSWE, GSSP-Java, GSSP-.NET, GPEN, GWAPT or equivalent)
  • familiarity with security risk assessment methodologies and reporting (CSEC-RCMP HTRA preferred)

 

Your education and experience

The position requires a a university degree or 3-year college diploma in computer science, software or systems engineering, or a related discipline or an equivalent combination of education and experience may be considered.

 

What you need to know

  • Language requirement: English or French essential
  • Priority will be given to Canadian citizens and permanent residents
  • Security level required: Secret
  • You will work remotely from any location within Canada while the Bank operates under mandatory telework. Flexibility for remote work for the duration of the term may be granted.
  • There will be no relocation assistance provided
  • Please save a copy of the job poster. Once the closing date has passed, it will no longer be available.
  • In response to the COVID-19 pandemic and further to public health guidelines, preventative measures are being taken to ensure health and safety during the recruitment process. All interviews are conducted virtually.

 

We wish to thank all applicants for their interest and effort in applying for this position. Only candidates selected for interviews will be contacted.

 

What you can expect from us
This is a great opportunity to join a leading organization and be part of a high-performing team. We offer a competitive compensation and benefits package designed to meet your needs at every stage of your life and career. For more information on key benefits please visit A great deal to consider.

 

  • Salaries are based on qualifications and experience and typically range from $57,200 to $67,200 (job grade 13)
  • Depending on performance, you may be eligible for performance pay for successfully meeting (3 to 5% of your base salary) or for exceeding expectations (7% of your base salary). Exceptional performers who far exceed expectations may be eligible for higher performance pay.
  • Flexible and comprehensive benefits so you can choose the level of health and dental coverage that meets your needs
  • Extra vacation days (up to five each year) that you can purchase to add to your vacation entitlement
  • Option to join the indexed, defined-benefit pension plan after 24 consecutive months of service

 

We strive to make our policies, programs and workplace more inclusive, respectful and barrier-free. We encourage applications from women, Indigenous peoples, veterans, persons with disabilities, members of visible minorities and persons of all races, ethnic origins, religions, abilities, sexual orientations, and gender identities and expressions.

How else we can help...

writing

Career Guides

office workspace

Help me with my cover letter

Did you apply for this job?

If you submitted an application, click Yes and we will add this position to your Job Tracker. If you did not apply, please click No.
Yes Remove from my Favorites