This job board retrieves part of its jobs from: Emploi Étudiant | Toronto Jobs | Work From Home

Tech jobs every day in Canada!

To post a job, login or create an account |  Post a Job

   Canadian Tech jobs   

Website updated every day with fresh jobs in the IT industry

previous arrow
next arrow

Apex Systems: Security Cloud Advisor

Apex Systems

This is a Contract position in Montreal, QC posted June 7, 2021.

Security Cloud Advisor Apex Systems is a global IT services provider and our staffing practice has an opening for a Security Cloud Advisor with cloud security, application design & architecture, and risk experience to place at our client, a Big Five Bank.Client:Big Five BankTerms:Permanent Job Description:This role supports enterprise cloud security team as an important contributor, with tactical skills and strategic vision.

You will lead and facilitate the design and implementation of repeatable cloud security design patterns, cloud security solutions and processes related to technology architecture.

In addition, you will define and document efficient and transparent security architecture principles, standards and guidelines regarding the proper use and deployment of business applications, data and technology within the Bank for cloud migration/use.

Additionally, you will work with business and development teams in recommending process or system design and enhancements in context of cloud security.Works with managers and senior individual contributors (within group) to provide security architecture recommendations & guidance as well as executive-level presentations at the enterprise level.Be able to draft repeatable security design patterns for cloud security areas accompanied by relevant threat modeling, based on industry best practices and security principlesBe able to independently research cloud security solutions as per the business requirements, industry trends and ever changing threat landscape, articulating the business use case for variety of stakeholders and providing supporting evidence through market researchWith little to no supervision, be able to conduct in-depth security analysis of the cloud migration projects ensuring compliance with enterprise policies & standards, regulatory requirements and industry guidelines and best practicesBe able to articulate the risks for the issues identified during assessments, provide relevant reportingHave hands-on security architecture and controls assessment experience with individual cloud technologies, products & services by major cloudservice providers (AWS,Azure, GCP, in order of preference)Be able to assess the project end to end, with cloud-context control lenses across all layers of TCP/IP stack and be able to provide secure solutions and alternatives for the issues identifiedBe able to work collaboratively with different stakeholders including technology and business partnersProvides security review and guidance for cloud projects driven by groups outside of Information security, specifically developing security requirements and developing secure designs.Authors cloud security standards and procedures.

Qualifications:Minimum of 2-3 years experience in Cloud Security ControlsMinimum of 4 years experience in Information SecurityInformation Security certification is preferred e.G.

CISSP, CISSLP, GIAC etc.Knowledge of computer or network systems hardware and software theory, practice, concepts and technology relevant to organizational vision Expert.Sufficient business knowledge to assess impact of applied technology on customer’s business processes.Experience in application security design & architecture, development frameworks, SOA, API security, server-less deployments,automation, SecDevOps, Containerization, Threat ModelingKnowledge of cloud security concepts, tools, products and solutions (CASB, CSPM etc.).

Hands-on experience desirable.Knowledge of specific service offerings from various cloud service providers and associated security considerations In depthKnowledge of Information security risk, and industry best practices with minimum of 2 years relevant experience Working.Knowledge of the technical areas such as data warehouses, mainframes, networks, applications, network protocols, networking infrastructure etc.

Working.Knowledge of Corporate Policies, Standards, and operating procedures relating to information security risk.Interview Times:Interviews will take place this week