Security Engineer

Security Engineer

Location : Montreal (day 1 onboarding onsite in-office presence required 3x / week)

12 Months Contract Position

Currently hiring for 2 positions

Looking for 3-5 yrs of exp with deploying applications to Kubernetes

Experience in Kubernetes and CI / CD Pipelines must have.

Knowledge in Scripting language like Python, PowerShell

Prefer basic concept of IAM but not required

Nice to have Prolog.

2 rounds of interview.

Open policy, styra rego language

Security back ground candidate

We are seeking a security engineer to build the firm s next generation Policy Based Access Control (PBAC) solution. This role will reside within the firm s Cyber organization within the Identity & Access Management team. As part of IAM team, you will partner with internal infrastructure teams integrating on-premise / cloud / SaaS solutions with this firmwide PBAC solution.

Responsibilities :

Collaborate with internal engineering teams to design PBAC (policy based access control) solution for infrastructure platforms and services.

Develop, test and deploy PBAC integration for both in-house developed and vendor products following policy-as-code and GitOps methodology.

Create detailed design documentation and present / articulate design decisions to internal governance forums.

Required Skills :

Bachelor s Degree in Computer Science / Engineering, Information security or similar.

3 -5 years of work experience in IAM domain including hands-on with CI / CD pipelines and deploying applications to Kubernetes (Openshift / AKS).

Experience with a declarative language like Prolog, Rego for policy-as-code implementations and scripting language like Python, PowerShell.

Experience developing and implementing solutions using secure authentication protocols such as OIDC / SAML and mTLS.

Understanding of IAM cloud platforms such as those offered by Azure, AWS, GCP.

Ability to manage multiple tasks and deliverables simultaneously in an organized and result oriented manner

Desired Skills (Nice to haves) :

Industry certifications (i.e. CISSP, CISM).

Cloud security certifications like Microsoft Certified Identity and Access Administrator Associate and / or AWS Certified Security - Specialty.

Savvy troubleshooting skills on a variety of different technologies (SQL, Linux OS utilities, PowerShell).

Experience with implementation of PBAC solutions for application authorization.

Experience with Sailpoint Identity Now or IdentityIQ IGA solutions.

Excellent technical documentation skills.