Web Application Penetration Tester

Wawanesa InsuranceEdmonton, AB
CA$90,000 - CA$110,000Hybrid

About The Position

The Web Application Penetration Tester role will contribute to Wawanesa’s success by helping to deliver security testing services to our enterprise client groups. This role will ensure that Wawanesa’s internally-developed web applications and APIs are free of design flaws or vulnerabilities prior to their release.

Requirements

  • Bachelor’s degree in computer science, an analytical discipline or equivalent experience
  • 1+ year of web application security testing experience
  • Knowledge of Web application vulnerabilities and security considerations
  • Working knowledge of industry standard technical security controls
  • Familiarity with vulnerability assessment and penetration best practices
  • Experience with the following: vulnerability and penetration testing techniques and tools, Burp Suite, testing web and mobile platforms, working with markup, scripting, and programming languages such as HTML, XML, JavaScript, PHP, Perl, Python, Bash, ASP, C++, C#, Java, and .NET
  • Possess or working towards one of the following certifications: GIAC Penetration Tester (GPEN), GIAC Web Application Penetration Tester (GWAPT), GIAC Certified Incident Handler (GCIH), Offensive Security Certified Expert (OSCE), Offensive Security Certified Professional (OSCP)
  • Must have an ability to communicate effectively, both verbally and in writing, to interact effectively with internal teams (such as developers, project team members, and management) to build relationships and use facilitation skills with both technical and non-technical personnel.
  • Ability to work independently and within a team

Nice To Haves

  • Knowledge of and experience in the insurance industry is considered an asset

Responsibilities

  • Perform evaluations of client systems, web applications, APIs and their supporting networks to discover vulnerabilities
  • Configure, run, and monitor automated security testing tools
  • Thoroughly document exploit chain/proof of concept scenarios for internal client consumption
  • Assist clients with the design, implementation, and/or monitor security measures for the protection of web applications
  • Identify, define, and/or implement system security requirements for external and internal facing web applications
  • Assist with vulnerability risk assessments
  • Follow established practices and processes
  • Perform role in cyber incident response as required
  • Generate reports based on test findings.
  • Perform other duties as assigned.

Benefits

  • annual bonus plan
  • leave of absence top-up programs
  • generous vacation time
  • personal days
  • premium free benefits
  • pension plan
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service