Security Consultant I - Toronto, Canada - TELUS

TELUS

Verified Company

Toronto, Canada

3 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

Location:
Toronto, ON, CA Burnaby, British Columbia, CA Calgary, AB, CA Vancouver, British Columbia, CA Edmonton, AB, CA Ottawa, ON, CA- Req ID: Jobs by Category: Security & Automation- Job Function: Cybersecurity- Status: Full Time- Schedule: Regular
Description:

Join our team and what we'll accomplish together

As a member of the CDC Security Operations Center (CDC SOC) team within the Chief Security Office at TELUS you will be part of a growing national team that supports security solutions for our managed security services customers and TELUS.

In this exciting role, you will support the cloud security detection and response outcomes across multiple cloud and SaaS environments team in the Cyber Defence Centre (CDC).

As a Security Consultant in the SOC enablement team, you will work with a team of cloud and security experts to support new cloud detection tools and SOC alerts enabling critical cloud detection and response capabilities.

You will work on grounding breaking cloud technologies to enhance our cloud monitoring footprint and to better serve internal teams and external customers.

What you'll do

Develop playbooks for handling Incident Response (IR) type of alerts for our Google Cloud Platform using Cloud Security Posture Management, Cloud Workload Protection Platform and Security orchestration, automation and response (SOAR) tools.
Plan, research, design, create and implement Information Security Monitoring playbooks & procedures.
Develop scripts for playbooks and TerraForm templates
Correlate security alerts in Security orchestration, automation and response (SOAR) tool
Build Information Security Monitoring playbooks & procedures to handle incidents
Write Terraform templates to provision resources and environments in GCP to aid the security monitoring process
Support POC initiatives, CDC projects and collaborate with teams across TELUS
Evaluate and respond to alerts and events from the security tools, including tuning of tool configuration to minimize false positives, development of event response documentation and processes for Security Operations Center response to follow for event actions.
Clearly document all processes and tools
Policy development, tuning, analyst response, automation and playbook creation, and integration with Cloud (GCP, AWS, Azure) and SaaS (Slack, Identity, ) environments.

Qualifications:

What you bring

Strong understanding of Google Cloud Platform (GCP) cloudnative operations, technologies, and principle
Understands different security alert types for Google Cloud Platform (GCP)
Knowledge of security incident response alerts generated by Cloud Security Posture Management and Cloud Workload Protection Platform.
Knowledge of Cloud security compliance frameworks (e.g. CIS, CCM, MITRE ATT&CK)
Experience with Docker, Containers and Kubernetes (GKE)
Scripting in languages like Python, Go, Javascript, building and consuming Application Program Interfaces (APIs)/microservices
Experience with cloud automation technologies to provision resources and environments (e.g. TerraForm).
Selfstarter with Cloud Security experience
Excellent communication, leadership and documentation skills
University degree in Business or Technology

Great-to-haves