Cloud Security Engineer

Job Description

The Cloud Security Engineer will be responsible for designing, implementing, maintaining and operating all Cloud Security tools.

In addition, this role will be taking the lead for many initiatives working with our technology and business teams by providing recommendations on best practices for Cloud Security and ensuring that the appropriate security controls are applied to meet expectations from both regulatory and legal requirements, while contributing to and aligning to our overall Cloud Security Strategy.

Main activities :

• Deploy, maintain and provide advisory related to Cloud Security tooling such as CSPM, CNAPP, EASM, Kubernetes Security Scanning
• Design solutions and provide technical input with our Cloud Infrastructure teams to ensure that our environment is configured securely and aligning to industry best practices.
• Provide advisory services to our technology / business teams related to both infrastructure and cloud security.
• Respond to any escalations / incidents in our cloud environments.
• Develop and maintain any documentation related to cloud security processes and procedures while mentoring our engineers by providing guidance and leadership on them.
• Stay up to date with the most current trends and technology around cloud security and share any knowledge and measurements (KPIs, KRIs, etc) to leadership for continuous improvement
• Lead and drive the success of Cloud Security initiatives which would result in enhancing our security posture, improving our security platforms and further growing our cloud security strategy
• Create Policy as Code, Infrastructure as Code and HELM charts that ensure our infrastructure is built with security built-in.
• Ability to automate and work with scripting languages, such as Python, Powershell and bash

Skills :

• A college diploma or university degree is required. Higher accreditation (e.g. Bachelor of Computer Science) is preferred.
• At least 3-5 years of information security experience with 2yr+ in Cloud Security
• Strong understanding of Cloud Security concepts, best practices and solutions.
• Understanding of Application Security concepts, best practices is an asset.
• Experience working with Infrastructure as Code, Policy as Code and HELM charts.
• Experience setting up Cloud Security tooling and integration is required.
• In-depth Experience of cloud environments (Azure, AWS) is required.
• The following certifications are an asset : CISSP, CCSP, CCSK and other cloud-provider related certifications
• Experiencing with working in highly complex technical environments
• Understanding and experience with PCI, NIST, MCSB, HIPPA, ISO 27k is required
• Experience working in banking or financial services environment is an asset.
Il y a 22 heures