Lead Information Security Engineer (Cloud)
Lead Information Security Engineer (Cloud)
Toronto, Ontario, Canada - Permanent
Job Description
To support our continued growth and success, we are seeking an Information Security Engineer to design and implement security solutions in support of the cloud security strategy. This position will focus on evaluating security posture maturity and ensuring that assets are verifiably protected in alignment with Mastercard control frameworks and technical standards. assist in all operational aspects of our security program with a focus on Cloud. The ideal candidate will also drive several important components of our Information Security Program: vulnerability assessment and penetration testing, SDLC initiatives and application security, and software security controls deployment and operation (WAF, vulnerability scanners, container scanners, static code analysis engines).
If you are looking for a challenge that will allow you to collaborate with dynamic teams and work in a fast-paced environment, this position is for you.
Questions
• Can you demonstrate a strong working level of knowledge in information security and secure development disciplines?
• Can you assess security controls for cloud-native and multi-cloud applications and infrastructure?
• Can you perform security analysis of application architectures and cloud services; identifying methods to mitigate threats, attacks, and risks to payment applications?
Responsibilities
• Validate and analyze the risk of security configurations and management practices for cloud environments
• Develop and implement security solutions to assess the implementation of security controls and assist with compliance activities
• Collaborate with development and operational teams on process improvements and automation opportunities to gain efficiencies across security domains
Must Have Skills:
• Advanced knowledge of security capabilities and constraints related to Microsoft Azure services, including relevant practical experience
• Advanced knowledge of information security, risk management, and data privacy practices
• Experience identifying and remediating cloud-related risks with Cloud Security Posture Management (CSPM) technologies or equivalent solutions
• Understanding of automation tooling, scripting languages, and continuous delivery/continuous integration processes
• Demonstrated technical competency in cloud security engineering based on hands-on experience or relevant qualifications
• Demonstrated effectiveness working in a global environment
• Ability to communicate effectively and develop solid working relationships across multiple levels and organizational boundaries
Preference will be given to candidates with working experience in the following areas:
·Microsoft Azure secure configuration, hardening, and monitoring
·Extensive Linux and Windows administration and troubleshooting experience.
·Strong familiarity with networking protocols and an ability to dig deep into the stack to identify and troubleshoot common issues.
·Extensive understanding of PKI infrastructure. An ability to guide and mentor cross-team members regarding best practice to ensure our systems meet the most stringent guidelines.
·HSM for example Luna 7 or related appliances.
·Experience building and maintaining vulnerability management systems solutions across development and image publication systems. For example, Github, Bitbucket, Artifactory, Jenkins or related tools.
·Splunk and Rsyslog filtering.
·Hashicorp Vault as it pertains to secret and PKI management.
·SIEMs like QRadar/Splunk or related technologies