Senior Cloud Security Engineer - Brossard, QC, Canada - BMO

Description

We are seeking a highly skilled Senior Cloud Security Specialist with expertise in securing cloud platforms, particularly AWS and Azure. The ideal candidate will have hands-on experience in cloud security and a deep understanding of various aspects including Identity and Access Management, Data Protection, Infrastructure Security, Logging and Monitoring, Incident Response , and Compliance Frameworks such as CIS and NIST. The candidate should also possess excellent communication skills and the ability to collaborate effectively with stakeholders across different teams.

You are a leader with a strong technical background. You're have demonstrated strength at developing and implementing secure cloud architectures using a risk-based cybersecurity & data privacy strategy, defining security patterns, roadmap and operating model that leverages collaboration, facilitating industry-standard information security governance, advising senior leadership on cybersecurity & privacy risks and threats and investment strategies, and documenting appropriate policies and procedures to manage information security risks.

Your Responsibilities

Secure cloud platforms (AWS and Azure) by implementing best practices and industry standards.

Develop and implement Identity and Access Management strategies to ensure secure access control.

Implement data protection measures to safeguard sensitive information within cloud environments.

Strengthen infrastructure security through appropriate configurations and security controls.

Establish logging and monitoring mechanisms to detect and respond to security incidents.

Build detective controls to identify and mitigate potential security threats.

Lead incident response efforts to address security breaches or vulnerabilities.

Ensure compliance with relevant regulatory requirements and industry standards.

Review cloud architecture designs and provide recommendations for security enhancements.

Communicate security risks and best practices to technical and non-technical stakeholders.

Possess programming skills to automate security processes and tasks.

Demonstrate a strong understanding of network concepts and their application in cloud security.

Knowledge of CI/CD pipelines and ability to secure CI/CD processes (DevSecOps ).

Work on automation initiatives to streamline security operations and improve efficiency.

Act as a subject matter expert (SME) in cloud security, providing guidance and support to the team.

Assist in security alerts investigations and resolution.

Demonstrate leadership qualities to mentor junior team members and drive security initiatives forward.

Required Core Skills:

A university degree in Engineering, Computer Science, or Information Technology.

5-8 years of experience developing and fielding security architectures and/or engineering

Security certification such as CISSP or CCSP or CCSK or any Cloud Certified Professional or Specialty certification (e.g., AWS Certified Security Specialty, Microsoft Certified Solutions Expert).

Proficiency in Identity and Access Management (IAM) and data protection strategies.

Strong understanding of infrastructure security principles and practices.

Hands-on experience with logging and monitoring tools for cloud environments.

Excellent communication skills with the ability to interact effectively with stakeholders.

Knowledge of technical security control environments and compliance frameworks including CSA CCM, ISO27001, ISO 27017 and NIST

Demonstrated Knowledge of cloud architecture, cloud operations, cloud-based identity access and management, security, automation, and orchestration.

A clear understanding of security protocols and standards and experience with software and security architectures

Extensive experience with Cloud-native Security Solutions

Firm grasp of networking protocols and operations. Comfortable with low-level packet sniffing, working knowledge on Kali, Wireshark, Burpsuite, Metasploit, Nmap, fiddler, sqlmap, Nessus. Knowledge of network attacks, detections, and defenses

knowledge of theoretical and applied cryptography, key management, and a strong understanding of cryptography algorithms such as RSA, AES, SSL vs TLS, PKI, etc

Knowledge of Identity and Access Management concepts and technologies to secure production and corporate access, such as SSO, SAML Federated Identity, RBAC, authentication & authorization solutions

Experience with scripting (Python, Perl, Bash, PowerShell) and API integrations

Demonstrable internal and external relationship building skills and the ability to clearly articulate complex security concepts that influence decision making within a diverse corporate culture.

Ability to lead an in-depth client meeting/workshop across a broad range of topics including discovery, cloud compliance, and security.

Strong programming skills with experience in API and Webhook development using Python, , Ruby, PowerShell, and Shell Scripting languages.

Other Skills:

Strong interpersonal, communication and leadership Skills

A critical thinker with strong research, analytics, and problem-solving skills.

Self-motivated with a positive attitude and an ability to work independently and or in a team.

Ability to communicate across business units and the ability to interface with and communicate complex technical concepts to a broad range of internal and external stakeholders.

Time management skills with the ability to manage multiple streams and lead less experienced architects.

Compensation and Benefits:

Application Deadline:

Address:

Job Family Group:

We are seeking a highly skilled Senior Cloud Security Specialist with expertise in securing cloud platforms, particularly AWS and Azure. The ideal candidate will have hands-on experience in cloud security and a deep understanding of various aspects including Identity and Access Management, Data Protection, Infrastructure Security, Logging and Monitoring, Incident Response , and Compliance Frameworks such as CIS and NIST. The candidate should also possess excellent communication skills and the ability to collaborate effectively with stakeholders across different teams.

You are a leader with a strong technical background. You're have demonstrated strength at developing and implementing secure cloud architectures using a risk-based cybersecurity & data privacy strategy, defining security patterns, roadmap and operating model that leverages collaboration, facilitating industry-standard information security governance, advising senior leadership on cybersecurity & privacy risks and threats and investment strategies, and documenting appropriate policies and procedures to manage information security risks.

Your Responsibilities

• Secure cloud platforms (AWS and Azure) by implementing best practices and industry standards.
• Develop and implement Identity and Access Management strategies to ensure secure access control.
• Implement data protection measures to safeguard sensitive information within cloud environments.
• Strengthen infrastructure security through appropriate configurations and security controls.
• Establish logging and monitoring mechanisms to detect and respond to security incidents.
• Build detective controls to identify and mitigate potential security threats.
• Lead incident response efforts to address security breaches or vulnerabilities.
• Ensure compliance with relevant regulatory requirements and industry standards.
• Review cloud architecture designs and provide recommendations for security enhancements.
• Communicate security risks and best practices to technical and non-technical stakeholders.
• Possess programming skills to automate security processes and tasks.
• Demonstrate a strong understanding of network concepts and their application in cloud security.
• Knowledge of CI/CD pipelines and ability to secure CI/CD processes (DevSecOps ).
• Work on automation initiatives to streamline security operations and improve efficiency.
• Act as a subject matter expert (SME) in cloud security, providing guidance and support to the team.
• Assist in security alerts investigations and resolution.
• Demonstrate leadership qualities to mentor junior team members and drive security initiatives forward.

Required Core Skills:

• A university degree in Engineering, Computer Science, or Information Technology.
• 5-8 years of experience developing and fielding security architectures and/or engineering
• Security certification such as CISSP or CCSP or CCSK or any Cloud Certified Professional or Specialty certification (e.g., AWS Certified Security Specialty, Microsoft Certified Solutions Expert).
• Proficiency in Identity and Access Management (IAM) and data protection strategies.
• Strong understanding of infrastructure security principles and practices.
• Hands-on experience with logging and monitoring tools for cloud environments.
• Excellent communication skills with the ability to interact effectively with stakeholders.
• Knowledge of technical security control environments and compliance frameworks including CSA CCM, ISO27001, ISO 27017 and NIST
• Demonstrated Knowledge of cloud architecture, cloud operations, cloud-based identity access and management, security, automation, and orchestration.
• A clear understanding of security protocols and standards and experience with software and security architectures
• Extensive experience with Cloud-native Security Solutions
• Firm grasp of networking protocols and operations. Comfortable with low-level packet sniffing, working knowledge on Kali, Wireshark, Burpsuite, Metasploit, Nmap, fiddler, sqlmap, Nessus. Knowledge of network attacks, detections, and defenses
• knowledge of theoretical and applied cryptography, key management, and a strong understanding of cryptography algorithms such as RSA, AES, SSL vs TLS, PKI, etc
• Knowledge of Identity and Access Management concepts and technologies to secure production and corporate access, such as SSO, SAML Federated Identity, RBAC, authentication & authorization solutions
• Experience with scripting (Python, Perl, Bash, PowerShell) and API integrations
• Demonstrable internal and external relationship building skills and the ability to clearly articulate complex security concepts that influence decision making within a diverse corporate culture.
• Ability to lead an in-depth client meeting/workshop across a broad range of topics including discovery, cloud compliance, and security.
• Strong programming skills with experience in API and Webhook development using Python, , Ruby, PowerShell, and Shell Scripting languages.

Other Skills:

• Strong interpersonal, communication and leadership Skills
• A critical thinker with strong research, analytics, and problem-solving skills.
• Self-motivated with a positive attitude and an ability to work independently and or in a team.
• Ability to communicate across business units and the ability to interface with and communicate complex technical concepts to a broad range of internal and external stakeholders.
• Time management skills with the ability to manage multiple streams and lead less experienced architects.

Compensation and Benefits:

Pay Type:

The above represents BMO Financial Group's pay range and type.

Salaries will vary based on factors such as location, skills, experience, education, and qualifications for the role, and may include a commission structure. Salaries for part-time roles will be pro-rated based on number of hours regularly worked. For commission roles, the salary listed above represents BMO Financial Group's expected target for the first year in this position.

BMO Financial Group's total compensation package will vary based on the pay type of the position and may include performance-based incentives, discretionary bonuses, as well as other perks and rewards. BMO also offers health insurance, tuition reimbursement, accident and life insurance, and retirement savings plans. To view more details of our benefits, please visit:

We're here to help

At BMO we are driven by a shared Purpose: Boldly Grow the Good in business and life. It calls on us to create lasting, positive change for our customers, our communities and our people. By working together, innovating and pushing boundaries, we transform lives and businesses, and power economic growth around the world.

As a member of the BMO team you are valued, respected and heard, and you have more ways to grow and make an impact. We strive to help you make an impact from day one – for yourself and our customers. We'll support you with the tools and resources you need to reach new milestones, as you help our customers reach theirs. From in-depth training and coaching, to manager support and network-building opportunities, we'll help you gain valuable experience, and broaden your skillset.

To find out more visit us at .

BMO is committed to an inclusive, equitable and accessible workplace. By learning from each other's differences, we gain strength through our people and our perspectives. Accommodations are available on request for candidates taking part in all aspects of the selection process. To request accommodation, please contact your recruiter.

Note to Recruiters: BMO does not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to BMO, directly or indirectly, will be considered BMO property. BMO will not pay a fee for any placement resulting from the receipt of an unsolicited resume. A recruiting agency must first have a valid, written and fully executed agency agreement contract for service to submit resumes.

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.