Principal Information Security Expert - Burnaby, Canada - Fortinet

Fortinet

Verified Company

Burnaby, Canada

2 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

Join the Fortinet MIS Security team in a Principal Information Security Expert role where you will be responsible for the secure operation and incident response

Job Responsibility:

Provide guidance on building and/or maturing information security programs and the implementation of tools and technologies used for enterprise security.
Architect, design, implement, maintain and operate information system security controls and countermeasures; supervise and train operators in the administration of these systems; document the operation, use, and expected outputs of these systems.
Analyze existing security systems and make recommendations for changes or improvements.
Oversee the cyber security incident response procedure, including investigation of, countermeasure to, and recovery from cyber security attacks, unauthorized access, and policy breaches; engage, interact and coordinate with other internal teams.
Develop secure operation processes and playbooks.
Oversee vulnerability management procedure and provide remediation recommendation.
Define security baselines for systems and harden the systems accordingly.
Coach and assist administrators, and users to ensure that appropriate controls are implemented and operating effectively in accordance with policies.
Ensure compliance to required standards, procedures, guidelines and processes.

Required Skills:

5+ years of experience in Information Technology or Information Security role.
SOC/NOC experience desired. Working knowledge of information security control technologies including access control, cryptography, vulnerability management, SIEM/log management, ID/IPS, and penetration test.
Handson experience on FortiSIEM, FortiSOAR, and FortiAnalyzer is desirable.
Knowledge of Internet threat landscape and attacker motivations (phishing, malware, APT, DoS, etc.)
Previous experience of at least one scripting language (e.g. Python, Groovy, Perl, Ruby, Shell scripting, etc.).
Knowledge and experience working with various information security frameworks (ISO/IEC 27001, NIST 80053, COBIT, etc) and regulatory frameworks (SOX, PCI-DSS 3.2, HIPAA, GDPR, etc.)
Expertise in operating system knowledge/support related to security vulnerabilities.
Working knowledge of network protocols, DNS, and networking devices routers, VPNs, proxies, firewalls.
Excellent verbal, written and interpersonal communication skills as well as attention to detail.

Educational & Certification Requirements:

Bachelor's degree in Computer Science, Information Security or related field;
A certification in one or more of the following desirable: Fortinet NSE8 and above, CISSP, CCNP, CCIE, RHCE, CEH, OSCP.

GD

LI-KL1