- Secure cloud platforms (AWS and Azure) by implementing best practices and industry standards.
- Develop and implement Identity and Access Management strategies to ensure secure access control.
- Implement data protection measures to safeguard sensitive information within cloud environments.
- Strengthen infrastructure security through appropriate configurations and security controls.
- Establish logging and monitoring mechanisms to detect and respond to security incidents.
- Build detective controls to identify and mitigate potential security threats.
- Lead incident response efforts to address security breaches or vulnerabilities.
- Ensure compliance with relevant regulatory requirements and industry standards.
- Review cloud architecture designs and provide recommendations for security enhancements.
- Communicate security risks and best practices to technical and non-technical stakeholders.
- Possess programming skills to automate security processes and tasks.
- Demonstrate a strong understanding of network concepts and their application in cloud security.
- Knowledge of CI/CD pipelines and ability to secure CI/CD processes (DevSecOps ).
- Work on automation initiatives to streamline security operations and improve efficiency.
- Act as a subject matter expert (SME) in cloud security, providing guidance and support to the team.
- Assist in security alerts investigations and resolution.
- Demonstrate leadership qualities to mentor junior team members and drive security initiatives forward.
- A university degree in Engineering, Computer Science, or Information Technology.
- 5-8 years of experience developing and fielding security architectures and/or engineering
- Security certification such as CISSP or CCSP or CCSK or any Cloud Certified Professional or Specialty certification (e.g., AWS Certified Security Specialty, Microsoft Certified Solutions Expert).
- Proficiency in Identity and Access Management (IAM) and data protection strategies.
- Strong understanding of infrastructure security principles and practices.
- Hands-on experience with logging and monitoring tools for cloud environments.
- Excellent communication skills with the ability to interact effectively with stakeholders.
- Knowledge of technical security control environments and compliance frameworks including CSA CCM, ISO27001, ISO 27017 and NIST
- Demonstrated Knowledge of cloud architecture, cloud operations, cloud-based identity access and management, security, automation, and orchestration.
- A clear understanding of security protocols and standards and experience with software and security architectures
- Extensive experience with Cloud-native Security Solutions
- Firm grasp of networking protocols and operations. Comfortable with low-level packet sniffing, working knowledge on Kali, Wireshark, Burpsuite, Metasploit, Nmap, fiddler, sqlmap, Nessus. Knowledge of network attacks, detections, and defenses
- knowledge of theoretical and applied cryptography, key management, and a strong understanding of cryptography algorithms such as RSA, AES, SSL vs TLS, PKI, etc
- Knowledge of Identity and Access Management concepts and technologies to secure production and corporate access, such as SSO, SAML Federated Identity, RBAC, authentication & authorization solutions
- Experience with scripting (Python, Perl, Bash, PowerShell) and API integrations
- Demonstrable internal and external relationship building skills and the ability to clearly articulate complex security concepts that influence decision making within a diverse corporate culture.
- Ability to lead an in-depth client meeting/workshop across a broad range of topics including discovery, cloud compliance, and security.
- Strong programming skills with experience in API and Webhook development using Python, , Ruby, PowerShell, and Shell Scripting languages.
- Strong interpersonal, communication and leadership Skills
- A critical thinker with strong research, analytics, and problem-solving skills.
- Self-motivated with a positive attitude and an ability to work independently and or in a team.
- Ability to communicate across business units and the ability to interface with and communicate complex technical concepts to a broad range of internal and external stakeholders.
- Time management skills with the ability to manage multiple streams and lead less experienced architects.
-
Security Engineer
1 week ago
Lerer Hippeau Ventures Montreal, CanadaSecurity Engineer | Ingénieur de sécurité(version française) · WorkJam est le premier lieu de travail numérique de première ligne au monde, connectant l'ensemble de la main-d'œuvre sur le terrain pour travailler en parfaite harmonie. WorkJam est une superbe application entièremen ...
-
Security Engineer
1 week ago
Lerer Hippeau Ventures Montreal, CanadaSecurity Engineer | Ingénieur de sécurité (version française) WorkJam est le premier lieu de travail numérique de première ligne au monde, connectant l'ensemble de la main-d'œuvre sur le terrain pour travailler en parfaite harmonie. WorkJam est une superbe application entièrement ...
-
Security Engineer
1 week ago
Lerer Hippeau Ventures Montréal, QC, CanadaSecurity Engineer | Ingénieur de sécurité (version française) · WorkJam est le premier lieu de travail numérique de première ligne au monde, connectant l'ensemble de la main-d'œuvre sur le terrain pour travailler en parfaite harmonie. WorkJam est une superbe application entièreme ...
-
Cloud Security Engineer
4 days ago
SageBeans RPO Montreal, CanadaJob Title: Cloud SecOps · Location: Montreal, QC (Hybrid) · Job Type: Contract (6 months renewable) · French is mandatory · Description de l'emploi: · Spécialiste en développement d'infrastructure infonuagique public · La Direction Principale Services infonuagiques est présenteme ...
-
Security Engineer
1 week ago
WorkJam Montreal, Canada Full timeWorkJam is the world's first digital frontline workplace, connecting the entire deskless workforce to work in perfect harmony. WorkJam is a fully modular super app that solves the most common problems faced by frontline enterprises around the world through task management, shift ...
-
Cloud Security Engineer
3 days ago
SageBeans RPO Montréal, QC, CanadaJob Title: Cloud SecOpsLocation: Montreal, QC (Hybrid)Job Type: Contract (6 months renewable)French is mandatory Description de l'emploi:Spécialiste en développement d'infrastructure infonuagique public · La Direction Principale Services infonuagiques est présentement à la recher ...
-
Cloud Security Engineer
3 days ago
SageBeans RPO Montréal, QC, CanadaJob Title: Cloud SecOpsLocation: Montreal, QC (Hybrid)Job Type: Contract (6 months renewable)French is mandatory Description de l'emploi:Spécialiste en développement d'infrastructure infonuagique public · La Direction Principale Services infonuagiques est présentement à la recher ...
-
Cloud Security Engineer
2 days ago
SageBeans RPO Montreal, CanadaJob Title: Cloud SecOps Location: Montreal, QC (Hybrid) Job Type: Contract (6 months renewable) French is mandatory Description de l'emploi: Spécialiste en développement d'infrastructure infonuagique public · La Direction Principale Services infonuagiques est présentement à la r ...
-
Network Security Engineer
1 month ago
AtkinsRéalis Montréal, Canada Full timeJob Description · Network Security Engineer · The Network Security Operations Engineer position is a hands-on role to manage, monitor and support the network infrastructure and services. Working within the Network Security Operations Team you will provide support with resolving i ...
-
Security Engineer
1 week ago
SAP Brossard, CanadaWe help the world run better · At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces d ...
-
Security Engineer
1 week ago
SAP Brossard, QC, Canada $71,000 - $150,800We help the world run better · At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces ...
-
Cloud and Security Engineer
3 weeks ago
Vanguard Brossard, QC, CanadaHead of Cloud Security Architecture and Engineering As the Head of Cloud Security Architecture and Engineering at Vanguard, you will lead a largeteam responsible for designing, implementing, and maintaining infrastructure security for our cloud and data center networks, safeguard ...
-
Sr. Security Engineer
1 week ago
The Kraft Heinz Company Brossard, CanadaSr. Security Engineer - Cryptography and Access Management The Kraft Heinz Company · The Kraft Heinz Company provides high quality, great taste and nutrition for all eating occasions whether at home, in restaurants or on the go. View company page · The Information Security team ...
-
SaaS Security Engineer
3 weeks ago
Autodesk Brossard, CanadaWe seek a talented and motivated individual who will strategize and support opportunities to further mature our Autodesk's security posture on the SaaS Trust team. This newly created role will be responsible for all daily for SaaS Security & Trust at Autodesk. · You will execute ...
-
Security DevOps Engineer
3 weeks ago
SAP Brossard, Canada $98,500 - $167,400Our company culture is focused on helping our employees enable innovation by building breakthroughs together. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driv ...
-
Senior Security Engineer
3 weeks ago
BMO Brossard, QC, CanadaWe are seeking a highly skilled Senior Cloud Security Specialist with expertise in securing cloud platforms, particularly AWS and Azure. The ideal candidate will have hands-on experience in cloud security and a deep understanding of various aspects including Identity and Access M ...
-
Application Security Engineer
3 weeks ago
Scotiabank Brossard, QC, CanadaContributes to the overall success of the Cloud Security Engineering team with a global focus on code control, and pipeline security, supporting the achievement of the Bank's information security objectives of integrity, confidentiality/privacy, availability, and continuity. · T ...
-
Application Security Engineer
3 weeks ago
Scotiabank Brossard, CanadaRequisition ID: 196479 · Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture. · Contributes to the overall success of the Cloud Security Engineering team with a global focus on code control, and pipeline security, supporting the a ...
-
Security Operations Engineer
3 weeks ago
Whatnot Brossard, QC, CanadaWe're building the future of ecommerce, bringing together community, shopping and entertainment. We are committed to our values , and as a remote-first team, we operate out of hubs within the US, Canada, UK, Ireland, and Germany today. · We're innovating in the fast-paced world ...
-
Security Engineer, Network
3 weeks ago
Fivesky Brossard, QC, Canada Full timeAre you a self-motivated and independent level 3 engineer with a security background? Do you want to play an important role in ensuring that software systems are resilient against cyber threats and vulnerabilities? If so, then you might be Fivesky's next Security Controls Develop ...
Senior Cloud Security Engineer - Brossard, QC, Canada - BMO
![BMO background](https://contents.bebee.com/companies/ca/bmo/background-nyc6v.png)
Description
We are seeking a highly skilled Senior Cloud Security Specialist with expertise in securing cloud platforms, particularly AWS and Azure. The ideal candidate will have hands-on experience in cloud security and a deep understanding of various aspects including Identity and Access Management, Data Protection, Infrastructure Security, Logging and Monitoring, Incident Response , and Compliance Frameworks such as CIS and NIST. The candidate should also possess excellent communication skills and the ability to collaborate effectively with stakeholders across different teams.
You are a leader with a strong technical background. You're have demonstrated strength at developing and implementing secure cloud architectures using a risk-based cybersecurity & data privacy strategy, defining security patterns, roadmap and operating model that leverages collaboration, facilitating industry-standard information security governance, advising senior leadership on cybersecurity & privacy risks and threats and investment strategies, and documenting appropriate policies and procedures to manage information security risks.
Your Responsibilities
Secure cloud platforms (AWS and Azure) by implementing best practices and industry standards.
Develop and implement Identity and Access Management strategies to ensure secure access control.
Implement data protection measures to safeguard sensitive information within cloud environments.
Strengthen infrastructure security through appropriate configurations and security controls.
Establish logging and monitoring mechanisms to detect and respond to security incidents.
Build detective controls to identify and mitigate potential security threats.
Lead incident response efforts to address security breaches or vulnerabilities.
Ensure compliance with relevant regulatory requirements and industry standards.
Review cloud architecture designs and provide recommendations for security enhancements.
Communicate security risks and best practices to technical and non-technical stakeholders.
Possess programming skills to automate security processes and tasks.
Demonstrate a strong understanding of network concepts and their application in cloud security.
Knowledge of CI/CD pipelines and ability to secure CI/CD processes (DevSecOps ).
Work on automation initiatives to streamline security operations and improve efficiency.
Act as a subject matter expert (SME) in cloud security, providing guidance and support to the team.
Assist in security alerts investigations and resolution.
Demonstrate leadership qualities to mentor junior team members and drive security initiatives forward.
Required Core Skills:
A university degree in Engineering, Computer Science, or Information Technology.
5-8 years of experience developing and fielding security architectures and/or engineering
Security certification such as CISSP or CCSP or CCSK or any Cloud Certified Professional or Specialty certification (e.g., AWS Certified Security Specialty, Microsoft Certified Solutions Expert).
Proficiency in Identity and Access Management (IAM) and data protection strategies.
Strong understanding of infrastructure security principles and practices.
Hands-on experience with logging and monitoring tools for cloud environments.
Excellent communication skills with the ability to interact effectively with stakeholders.
Knowledge of technical security control environments and compliance frameworks including CSA CCM, ISO27001, ISO 27017 and NIST
Demonstrated Knowledge of cloud architecture, cloud operations, cloud-based identity access and management, security, automation, and orchestration.
A clear understanding of security protocols and standards and experience with software and security architectures
Extensive experience with Cloud-native Security Solutions
Firm grasp of networking protocols and operations. Comfortable with low-level packet sniffing, working knowledge on Kali, Wireshark, Burpsuite, Metasploit, Nmap, fiddler, sqlmap, Nessus. Knowledge of network attacks, detections, and defenses
knowledge of theoretical and applied cryptography, key management, and a strong understanding of cryptography algorithms such as RSA, AES, SSL vs TLS, PKI, etc
Knowledge of Identity and Access Management concepts and technologies to secure production and corporate access, such as SSO, SAML Federated Identity, RBAC, authentication & authorization solutions
Experience with scripting (Python, Perl, Bash, PowerShell) and API integrations
Demonstrable internal and external relationship building skills and the ability to clearly articulate complex security concepts that influence decision making within a diverse corporate culture.
Ability to lead an in-depth client meeting/workshop across a broad range of topics including discovery, cloud compliance, and security.
Strong programming skills with experience in API and Webhook development using Python, , Ruby, PowerShell, and Shell Scripting languages.
Other Skills:
Strong interpersonal, communication and leadership Skills
A critical thinker with strong research, analytics, and problem-solving skills.
Self-motivated with a positive attitude and an ability to work independently and or in a team.
Ability to communicate across business units and the ability to interface with and communicate complex technical concepts to a broad range of internal and external stakeholders.
Time management skills with the ability to manage multiple streams and lead less experienced architects.
Compensation and Benefits:
$92, $171,600.00Application Deadline:
07/30/2024Address:
33 Dundas Street WestJob Family Group:
TechnologyWe are seeking a highly skilled Senior Cloud Security Specialist with expertise in securing cloud platforms, particularly AWS and Azure. The ideal candidate will have hands-on experience in cloud security and a deep understanding of various aspects including Identity and Access Management, Data Protection, Infrastructure Security, Logging and Monitoring, Incident Response , and Compliance Frameworks such as CIS and NIST. The candidate should also possess excellent communication skills and the ability to collaborate effectively with stakeholders across different teams.
You are a leader with a strong technical background. You're have demonstrated strength at developing and implementing secure cloud architectures using a risk-based cybersecurity & data privacy strategy, defining security patterns, roadmap and operating model that leverages collaboration, facilitating industry-standard information security governance, advising senior leadership on cybersecurity & privacy risks and threats and investment strategies, and documenting appropriate policies and procedures to manage information security risks.
Your Responsibilities
Required Core Skills:
Other Skills:
Compensation and Benefits:
$92, $171,600.00Pay Type:
SalariedThe above represents BMO Financial Group's pay range and type.
Salaries will vary based on factors such as location, skills, experience, education, and qualifications for the role, and may include a commission structure. Salaries for part-time roles will be pro-rated based on number of hours regularly worked. For commission roles, the salary listed above represents BMO Financial Group's expected target for the first year in this position.
BMO Financial Group's total compensation package will vary based on the pay type of the position and may include performance-based incentives, discretionary bonuses, as well as other perks and rewards. BMO also offers health insurance, tuition reimbursement, accident and life insurance, and retirement savings plans. To view more details of our benefits, please visit:
We're here to help
At BMO we are driven by a shared Purpose: Boldly Grow the Good in business and life. It calls on us to create lasting, positive change for our customers, our communities and our people. By working together, innovating and pushing boundaries, we transform lives and businesses, and power economic growth around the world.
As a member of the BMO team you are valued, respected and heard, and you have more ways to grow and make an impact. We strive to help you make an impact from day one – for yourself and our customers. We'll support you with the tools and resources you need to reach new milestones, as you help our customers reach theirs. From in-depth training and coaching, to manager support and network-building opportunities, we'll help you gain valuable experience, and broaden your skillset.
To find out more visit us at .
BMO is committed to an inclusive, equitable and accessible workplace. By learning from each other's differences, we gain strength through our people and our perspectives. Accommodations are available on request for candidates taking part in all aspects of the selection process. To request accommodation, please contact your recruiter.
Note to Recruiters: BMO does not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to BMO, directly or indirectly, will be considered BMO property. BMO will not pay a fee for any placement resulting from the receipt of an unsolicited resume. A recruiting agency must first have a valid, written and fully executed agency agreement contract for service to submit resumes.
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
#J-18808-Ljbffr