Security Risk Assessment Consultant

WorkiyFredericton, NB

About The Position

The client is seeking an experienced Security Risk Assessment Consultant to perform a comprehensive Security Risk Assessment (SRA) for its Digital Trust solution. The consultant will assess the security posture of a complex environment consisting of mobile applications, cloud services, identity platforms, APIs, enterprise integrations, and government applications. The successful candidate will conduct end-to-end security risk assessments, application security testing, penetration testing, mobile security assessments, and deliver comprehensive security reports. The role requires expertise in OWASP frameworks, authentication and identity platforms, cloud security, mobile application security, and enterprise architecture.

Requirements

  • Written and spoken English proficiency.
  • Minimum 5 years of experience conducting security assessments.
  • Ability to perform comprehensive enterprise security risk assessments.
  • Experience producing high-quality security assessment documentation.

Nice To Haves

  • 3+ years conducting security assessments using OWASP ASVS and/or OWASP MASVS.
  • 1+ year assessing identity and authentication platforms.
  • Experience with security assessment processes used by SNB or similar government organizations.
  • 3+ years producing Security Risk Assessments (SRA) or equivalent reports for complex enterprise, public-sector, regulated, or privacy-sensitive environments.

Responsibilities

  • Perform a comprehensive Security Risk Assessment (SRA) of the Digital Trust solution.
  • Conduct end-to-end architectural security assessments across mobile, cloud, web, APIs, and enterprise systems.
  • Perform application security testing using OWASP ASVS Level 3.
  • Conduct mobile application security assessments using OWASP MASVS.
  • Perform static and dynamic application security testing (SAST/DAST).
  • Validate authentication, authorization, and access control mechanisms.
  • Conduct penetration testing and vulnerability assessments.
  • Assess identity and authentication platforms including Ping Identity services.
  • Evaluate APIs, integrations, cloud storage, and enterprise services supporting Digital Trust.
  • Review mobile applications for iOS and Android platforms.
  • Analyze risks across credential issuance, verification, revocation, and identity proofing processes.
  • Identify security vulnerabilities and recommend mitigation strategies.
  • Produce detailed Security Risk Assessment reports and remediation recommendations.
  • Present findings to stakeholders and participate in project meetings.
  • Work closely with SNB's Departmental Information Security Officer (DISO), Security Strategist, and Project Manager.
  • Support occasional after-hours or weekend testing activities when required.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service