Search Jobs

Security Operations Engineer (Closed)

About the Opportunity

• The Security Operations Engineer will be responsible for evaluating security technologies/tools, automating security tasks, continuous monitoring activities (analyzing scan/vulnerability assessment findings, defining and testing remediation steps and tracking vulnerabilities through to remediation implementation), improving our production alerting/monitoring solution, performing security impact assessments on production system changes, and ensuring technical security controls are implemented that maintain compliance with regulatory and customer requirements along with completion of any projects assigned based on underlying risks, research, company objectives and compliance needs
• The ideal candidate will also be responsible for identifying security responsibilities in the various operational roles and working closely with the Compliance Manager to ensure proper tracking and reporting of continuous monitoring activities for regulatory (i.e., PCI and SOC2) compliance
• Act as the technical point of contact for third party assessors performing internal and/or external VA scanning, web application assessments and/or manual pen testing activities. To support third party assessments you will be responsible for providing the list of in scope systems that fall within the assessment scope, as well as ensure all access to systems is properly planned, provided for the assessment and removed following the assessment as applicable
•  Responsible for managing keys and certificates within the environments, ensuring web application security controls are in place

About You

• University degree (BS/MS) in Engineering, Computer Science or equivalent
• Familiarity with PCI DSS, ITSG-33 and SOC2 or other Relevant standard
• Participation in compliance audits (working with assessors/audits and/or defining/implementing security controls in compliance with regulatory IS requirements)
• Experience supporting a production environment
• Linux and Microsoft certifications
• Security training/ certifications an asset (ethical hacking, CISSP, CompTIA Security+, SecureNinja courses, etc.) 
•  In-depth knowledge of IP, SSL, TLS
• Understanding protocol analyzers (wireshark, tcpdump, etc.)
• Understanding of cryptography, X.509/PKI, cross certification
• Understanding of OWASP Top10 
• Knowledge of network intrusion prevention/detection techniques
• Knowledge of SIEM solutions and alert optimization
• Working knowledge of openssl and ciphers
• Network and OS (Linux/Windows) hardening
• Proficient in Linux and Windows system administration
• Understanding of evolving Attack knowledge of Windows/Linux based attacks
• Intermediate knowledge of Red-teaming activity
• Understanding of MITRE attack framework
• Advanced analytical and technical experience
• Good communication (verbal and written) skills, excellent skills in documentation
• Ability to assess and articulate risks to a system as a result of a suspected vulnerability, a proposed change or a compromise
• Actively detect, respond to, and remediate security events across infrastructure
• Work closely with other members of the Information Security Team to improve the company’s network defense posture
• Understanding of cyber threat vectors and countermeasures
• Understanding of webservers apache, tomcat and their architectures
• Thorough understanding of security threat landscape
• Switches/Routers/Firewalls (Basic configuration understanding)
• Network/System Intrusion Detection or Prevention Systems
• Strong working knowledge of TCP/IP networking/ VPN, VLAN,NAT,and security concepts
• Working Knowledge of Operating System Software (Microsoft Windows Client and Server, Mac and Linux)
• Working knowledge of VMware/vcenter
• Security architectures and designs (E.g. SIEM, IDS/IPS)
• Experience performing offensive assessments, penetration testing or vulnerability analysis
• Intermediate knowledge and exposure of tools (Nessus, Burp, Nikto, Kali OS, Metasploit) to scan system devices for vulnerabilities according to compliance policies
• Basic scripting knowledge (bash, python, PowerShell)
• Knowledge of compliance standards such as PCI/SOC2/NIST CSF/ITSG-33 Anex4-1 Protected B
• Basic understanding of Docker Ansible and Jenkins
• Familiarity with ITIL or other recognized change management procedures

Salary

$90,000 - $110,000/year

How to Apply

Click the “Apply Now” button and follow the instructions to submit your resume. Please note that we only accept documents in MS Word or Rich Text formats. When referencing this job, quote #28530.

You must currently reside within the Greater Toronto Area and be permitted to work in Canada to be considered for this opportunity. A recruiter will be in touch with you if your profile meets our client’s requirements for this role.