Engineer, Cybersecurity Engineering

Purpose

The Cybersecurity Engineer develops, implements, and maintains the organization's corporate security posture. This includes implementing and maintaining security controls, conducting risk assessments, and assisting in responding to cybersecurity incidents. The Cybersecurity Engineer is a security subject matter expert providing support across the enterprise for the successful delivery of projects. Additionally, the Cybersecurity Engineer ensures that security technologies are properly tuned, implemented, maintained, and engineered to successfully defend the enterprise. The Cybersecurity Engineer will also be accountable for staying up to date on the latest security threats and trends, and for developing and implementing strategies to mitigate them.

#LI-Remote

Accountabilities

This position will have the following accountabilities primarily for cloud environments but may include some for non-cloud environments as well:

• Provide security requirements into the design and ensure appropriate implementation of security controls for a variety of technical environments.
• Conduct risk assessments, recommend, and implement controls to mitigate identified risks within the corporate environment.
• Monitor and continually engineer improvements to the organization's security posture and respond to cybersecurity incidents in collaboration with the Security Operations team, IT Infrastructure team, and the business.
• Stay up to date on the latest security threats and trends.
• Collaborate with other departments to ensure that cybersecurity considerations are integrated into business processes.
• Operate as the cybersecurity subject matter expert across enterprise projects supporting both the business and the technology department.

Education and Experience

• Bachelor’s Degree or Equivalent Experience
• Relevant security certifications an asset (i.e., CISSP, CCSP, etc.)
• Minimum 5 years of experience in cybersecurity role, with a minimum of 3 of that in a cloud security role
• Cloud Security Expertise:
  • Profound understanding of cloud architecture and the various security challenges associated with it.
  • Knowledge of cloud service models (IaaS, PaaS, SaaS) and cloud provider platforms (AWS, Azure, GCP).
  • Ability to design secure cloud infrastructures, manage identity and access, and protect data from threats.
• Systematic Risk Management:
  • Identifying, assessing, and mitigating risks is fundamental.
  • Understanding of cybersecurity risks and vulnerabilities and their application to evaluate cloud service security.
• Technical Skills:
  • Expert knowledge of a wide range of technical environments, including automation, active directory, databases, and networking
  • Knowledge of cybersecurity best practices and standards (e.g. ISO 27001, NIST Cybersecurity Framework)
  • Knowledge of security protocols and technologies (e.g. SSL, HTTPS, VPN)
  • Proficiency with major operating systems.
  • Strong understanding of different programming languages.
  • Understanding of cybersecurity frameworks.
• Analytical and Strategic Thinking:
  • Ability to analyze complex security issues and devise effective solutions.
  • Strategic planning to address evolving threats.
• Attention to Detail:
  • Precise execution of security measures and protocols.
• Communication Skills:
  • Excellent verbal and written communication skills, teamwork skills, and an engaging personality; a proven ability to effectively interface with a diverse range of roles at all levels
• Continual Learning:
  • Commitment to ongoing education and staying updated on industry developments.