Description
The Information Security team is committed to delivering innovative cybersecurity solutions and services to the enterprise.
Our global team is growing!!
We are looking for a Sr. Security Engineer to join us, with a focus on supporting our needs and capabilities across Private Key Infrastructure (PKI) and Privileged Access Management (PAM).
This role will lead all aspects of administration,operationsand continuous advancement of Kraft Heinz enterprise cryptographic and access management capabilities.
You will work closely with the PKI and PAM program owners, IT and Business Partners, and other organizational partners to deliver on required program capabilities, program compliance requirements and program maturity targets.
Key responsibilities :
Perform day to day monitoring, management and maintenance of organization's PKI and PAM platforms, ensuring maximum platform capability, performance and health.
Maintain standards, playbooks and communications for management and maintenance of program capabilities and processes
Maintain technical documentation around architecture, configuration, management maintenance of core platforms, supporting tooling and other applicable technologies.
Lead, superviseand continuously optimizedelivery and user experience of certificate lifecycle management processes, including request, approval, issuance,validation and revocation,to ensure continuous alignment with requirements andcompliance with standards and processes.
Support the design,build and deployment of enterprise PKI systems and ensure PKI systems align with and enforce industry leading practices and NIST standards.
Manage, supervise and continuouslyoptimize delivery and user experience of privileged account lifecycle management processes, including provisioning, vaulting, rotation, changes, deprovisioning, and access reviews.
Leadcyclical and ad-hoc training and awareness programs around PKI and PAM capabilities and practices.
Collaborate with multi-functional teams to ensure flawless execution of security processes.
Design, plan and implement the integration of platforms with other security systems and applications.
Implement applicable policies, procedures, and standards to internal teams and collaborators.
Successfully communicate with internal engineering and operations teams to design, plan, implement, validate and memorialize changes to platform configuration, integrations and processes.
Partner with internal and external teams and product vendors to lead resolution ofissues with certificates and certificate lifecycle, privileged accessand access lifecycle, platform, platform integrations, and other issues as they arise.
Monitor, measure and communicate key program capabilities and metrics
Provide support for program audits to ensure alignment of practices to processes, and compliance of processes to requirements
Continuously evaluate and improve the capability of platforms to stay ahead of emerging threats.
Evaluate new tools, technologies and techniques to enhance the efficacy and efficiency of programs and capabilities.
Stay updated with, and communicate to program owners and key partners, changes and advancements to industry trends,standards, and regulatory requirements
Qualifications for this role include :
Advanced experience in cybersecurity, with at least three years of hands-on experience and expertise with encryption and identity and access management
Strong level of understanding of EnterprisePKI platforms and processes, including certificateenrollment protocols, automation, lifecycle, troubleshooting and resolution.
Strong level understanding of Enterprise PAM platforms and processes, including provisioning, vaulting, granular rights management, de-provisioningand verification processes, injection and secure access.
Strong level of understanding of enterprise directory services and group policies.
Strong level of understanding of authentication flows and mechanisms, including strong multi-factor authentication.
Experience withscripting in Python, shell and powershell.
Familiarity with security frameworks and standards (e.g., NIST CSF, ISO 27001).
Strong analytical and problem-solving skills.
Excellent communication and interpersonal skills.
Location(s)
Toronto - Queen's Quay - Headquarters
Senior Identity and Access (IAM) Specialist, Cloud Infrastructure Entitlement Management (CIEM) Cloud Identity Security
Builds relationships and liaises with stakeholders to understand problems and opportunities and recommends solutions leveraging Cloud Infrastructure Enablement Management (CIEM) tools for optimal management of identities and privileges in cloud environments. Identity and Access Management (IAM), Clo...
Sr. Business Analyst (Brokerage & Wealth Management)
Our client offers a comprehensive suite of products and services that manage the back office and front office operations of brokerage firms, banks, and mutual fund dealers operating in the Canadian securities industry. Extensive knowledge of Wealth Management Back Office and Business Management appl...
Analyst/Sr Analyst, Operational & Process Excellence - Project Management Office
An opportunity to partner with product teams such as Consumer Cards (Lending, Charge, Proprietary and Co-Brand products), Global Corporate Payments and Global Merchant Services for end-to-end project management and execution. Here, youll learn and grow as we help you create a career journey thats un...
Lead, Capacity Access and Flow (Indigenous Emergency Management)
Understands and complies with the Occupational Health and Safety Act, Regulations, and the organization’s health and safety practices, policies, and procedures. Working with members in the System Strategy, Planning, Design and Implementation Teams (NE and NW) and Health Equity team members, will sup...
Senior Consultant, Cyber Identity and Access Management
Work with management to assess, design and implement sustainable workforce and customer IAM solutions, operating processes and people models to address key and evolving risks in the fields of identity governance (IGA), Privileged Access Management (PAM) and Access Management. Our IAM offering advise...
Key and Certificate Management (Kcm) Support Engineer, Deloitte Global Technology
Basic knowledge of cryptographic related standards and network compliance requirements, security concepts, encryption keys, key life cycle requirements and symmetric and asymmetric encryption methodologies and algorithms applicable to the services industry. Management and control of KCM automation p...
Research & Design Engineer – System Security
Research and analyze advanced system security and trusted computing technologies for diverse computing platforms. Design and develop prototypes to validate security solutions and integrate them into various computing environments. Contribute to industry analysis, strategic planning, and standards de...
Sr. Techno-Functional PeopleSoft Consultant to configure, analyze and document business requirements for HCM Modules (Peoplesoft Workforce Admin, Benefits, T&L, Absence Management) for our education client
Expertise and hand on experience in configuring the Peoplesoft Workforce Administration, Benefits, Time and Labour, Absence Management modules to meet organizational needs. Generate reports and dashboards to provide insights into time and labor data using reporting tools like PS queries and SQLs. Te...
Security Engineer
As a Security Engineer, you will contribute to the implementation and maintenance of our security solutions including but not limited to, Cloud Security Posture Management and Zero Trust Network Access to help the organization to move towards a Zero Trust Architecture. As an experienced security pro...
Director, Information Security Management, Enterprise Technologies & Services (ETS)
At least 10 years of working experience in the information security areas including cloud security, network security, AAA, RBAC, encryption, security scanning, hardening, privilege ID management etc. The team performs security assessments for new technologies and new projects, in addition to perform...