This job board retrieves part of its jobs from: Emploi Étudiant | Toronto Jobs | Work From Home

Tech jobs every day in Canada!

To post a job, login or create an account |  Post a Job

   Canadian Tech jobs   

Website updated every day with fresh jobs in the IT industry

Slide 1
Slide 2
Slide 3
previous arrow
next arrow

Cloud Security Analyst

Cority

This is a Contract position in New Westminster, ia posted October 5, 2021.

Cority is the global enterprise EHS software provider creating industry-leading technology to empower those who transform the way the world works.

For over 35 years, Cority has been powered by the spirit of innovation, deep domain expertise, and a commitment to integrity that enables higher levels of operational and sustainable performance with the most comprehensive, human-centered, and secure SaaS platform to help workers and businesses thrive in 100 countries around the world.The company enjoys the industry’s highest levels of client satisfaction and has received many awards for its strong employee culture and outstanding business performance.

To learn more, visit www.cority.com.

JOB SUMMARY: The Cloud Security Analyst provides expert knowledge of cloud security architecture and AWS security tool implementation.

Possesses a deep understanding of the potential security issues which may be encountered in cloud applications and services and provides technical guidance throughout the DevSecOps process.

Responsibilities include an ability to identify security gaps and potential risks in evolving cloud security designs, implementations, and modifications.

The candidate is expected to be a skilled Information Security professional and possess excellent communication, teamwork, and interpersonal skills.

This position reports to the Sr Director, Cloud and Security.

PRIMARY RESPONSIBILITIES: Monitor, assess, and maintain security controls within cloud environments Participate in reviews of vulnerability and security log reports, create mitigation actions, monitor for completion.

Proactively manage cloud security using security best practices and frameworks Participate in the design and implementation of security for all cloud environments Monitor, assess, and maintain security controls within cloud environments to safeguard data systems Leverage security tools within the cloud to proactively identify security threats, analyse root causes of security violations, and recommend corrective actions Work with DevOps and Development teams to remediate cloud infrastructure security findings Integrate cloud security technologies with existing tools sets such as SIEM, EDR, and IAM solutions.

Coordinate with Enterprise IT and DevOps teams to ensure existing and new cloud services align to stated policies, audit requirements and industry best practices.

Serve as a cloud-security subject matter expert to support cloud-risk analysis programs by performing, analysing, and documenting cloud-security surveys and risk-assessments.

Ensure that all cloud tool sets and their integrations are properly maintained to meet stated policies, audit requirements and industry best practices.

Stay abreast of emerging security threats, vulnerabilities and controls Identify and maintain KPIs and other metrics that show the effectiveness of the program.

Provide Security Incident Response support and participate in the development of business cases and presentations on cloud security technologies.

COMPETENCIES AND TECHNICAL SKILLS: Minimum 7 years of Information Security experience 5 years of implementing cloud security for cloud infrastructures such as Azure and AWS.

3 years of experience managing security within the Amazon Web Services (AWS) environment Experience with container technologies, including Docker or Kubernetes Experience with Infrastructure as Code for cloud platforms using scripting (Powershell or Python) and technologies like CloudFormation Current knowledge and thorough understanding of Information Security issues, threats and trends Demonstrated knowledge in the areas of risk assessment, strong understandings of secure communications, secure data storage, secure systems development, secure systems deployment and documentation Demonstrated understanding of the real-world application of security and risk frameworks including ISO/IEC 27001, SOC 2 Type 2, NIST and FedRAMP PROFESSIONAL QUALIFICATIONS/CERTIFICATION: Security certifications (CISSP, CCSP, CISA, or CISM) Cloud certifications (AWS, Azure) EDUCATION: Bachelor’s degree in IT, Engineering, Computer Science or equivalent experience required.