Skip to main content Skip to Footer

Job Listing

Security Consultant - Threat and Vulnerability Management

Job Location: Ontario - Toronto

Regional Description: Canada

Job Number: 00572004


- Job description

Accenture is a leading global professional services company, providing a broad range of services and solutions in strategy, consulting, digital, technology and operations. Combining unmatched experience and specialized skills across more than 40 industries and all business functions—underpinned by the world’s largest delivery network—Accenture works at the intersection of business and technology to help clients improve their performance and create sustainable value for their stakeholders. With approximately 442,000 people serving clients in more than 120 countries, Accenture drives innovation to improve the way the world works and lives. Visit us at

The TVM consultant is responsible for creating and delivering high-quality information security solutions that address the ever-growing need for companies to secure their business critical assets, data, and resources. TVM consultants are also expected to lead and deliver security engagements autonomously while providing oversight and coaching for junior TVM testing resources. Consultants are also expected to work collaboratively with offshore delivery center testing personnel and be proficient on both a technical and inter-personal level while interfacing with clients. 
The TVM Consultant is expected to proficiently execute the following: 
Internal/External Vulnerability Assessment and Penetration Tests
Application Testing and Penetration Testing (Web, IOT, Hardware, etc…)
  - Exploiting SQL Injection, Cross-Site Scripting, Parameter Manipulation, Session Hijacking, etc)
Social Engineering Assessments (Physical, Phone, Email)
Wireless Security Assessment
Network Device Configuration Review
Technical Security Assessments (Windows/Unix Based, Firewalls, Routers, Servers, etc)

Posted quals
Minimum of 3 years of IT Security Testing (e.g., penetration testing, web application security assessments, vulnerability assessments and technical security assessments 
Minimum of 3 years of server, application and network security hardening experience (e.g., design, recommend and implementation of security hardening technical controls) 
Minimum of 3 years of technical writing and report generation 
Bachelor's Degree
Industry recognized certification in security (e.g., CISSP, CISA, CISM, CEH, etc) 
Knowledge of enterprise IT security risk assessments and related frameworks (e.g., ISO 27000 series, COBIT, IT General Controls, etc.)
Application development experience preferred 

More detailed Qualifications 
Bachelors Degree (B.S.) from a four-year college or university in Computer Science, Engineering, Networking or Information Assurance or related area of study
One or more of the follow industry recognized Security Certification or equivalents
- OSCP– Offensive Security Certified Professional
- CISSP – Certified Information Systems Security Professional
- CEH – Certified Ethical Hacker
- GSEC – SANS GIAC Security Essentials
- CISSP – Certified Information Systems Security Professional
Minimum 3 years of Information Security experience strongly preferred
- Assessing clients network security posture through the use of automated tools and manual techniques to identify and verify common security vulnerabilities
- Using creative approaches to identify vulnerabilities that are commonly missed in security assessments
- Exploiting vulnerabilities and identify specific, meaningful risks to clients based on industry and business focus
- Executing opportunistic, blended and chained attack scenarios that combine multiple weaknesses to compromise client environments
- Creating comprehensive assessment reports that clearly identify root cause and remediation strategies
- Communicating strengths and weaknesses to the client or internal project management team and developing effective solutions.
- Improving methodologies, toolsets and offerings through collaborative development work and by updating team documentation
Travel 100%

Preferred Skills and Certifications 
Prior IT Security Consulting experience
Application development experience
Security Certifications:
- OSCE – Offensive Security Certified Professional
- OSWP – Offensive Security Wireless Professional
- OSEE - Offensive Security Exploitation Expert
- OSWE - Offensive Security Web Expert
Exploit Research and Development
Active Threat Exploitation and Network Escalation and Propogation Experience

It is currently our objective to assign our people to work near where they live. However, given the nature of our business and our need to serve our clients our employees must be available to travel when needed.

Accenture does not discriminate on the basis of race, religion, color, sex, age, non-disqualifying physical or mental disability, national origin, sexual orientation, gender identity or expression, or any other basis covered by local law.   Accenture is committed to providing employment opportunities to current or former members of the armed forces.
We are committed to employment equity. We encourage all people, including women, visible minorities, persons with disabilities and persons of aboriginal descent to apply.

Find a job

Start your search here: Enter job title, skill, experience level or city

Stay in touch

Join the Accenture Talent Connection, follow our Careers blog, or sign up for job alerts.