21 Jan
S M Software Solutions
Toronto
If you are interested kindly send the updated resume at [email protected] by Tuesday, January 21, 11:00 AM EST if that interests you and matches your profile.
Job Title: RQ08433 - Technology Architect - Senior
Client: Ministry of Public and Business Service Delivery (former MGCS)
Work Location: Toronto, Ontario, Hybrid
Estimated Start Date: 2025-04-01
Estimated End Date: 2026-03-31
#Business Days: 494.00
Extension: 246.00
Hours per day or Week: 7.25 hours per day
Security Level: CRJMC
Must Have
- Experience with Security Automation and orchestration.
- 5+ years of experience in within Security Automation and orchestration.
Description
Key Responsibilities:
- Architecture Design:
Develop and maintain secure architectures for applications and infrastructure, focusing on automation and scalability.
- Security Integration: Integrate security practices into the DevOps pipeline, ensuring continuous security checks and compliance.
- Policy Development: Create and enforce security policies, standards, and procedures tailored to DevSecOps environments.
- Collaboration: Work closely with development, operations, and security teams to ensure security is a shared responsibility
- Advisory Role: Act as an internal consultant, providing expert advice on security matters to various teams and stakeholders
Experience and Skill Set Requirements
Experience
- Programming Languages: Proficiency in languages such as Python, SPLUNK SPL and Kusto Query Language (KQL).
- Security Frameworks: Knowledge of security frameworks and standards like NIST, ISO 27001, and OWASP.
- Cryptography: Understanding of cryptographic principles and practices to ensure data integrity and confidentiality.
- Network Security: Familiarity with network protocols, firewalls, IDS/IPS, and VPNs.
- Cloud Security:
Experience with securing cloud environments (AWS, Azure, GCP) and understanding of cloud security best practices.
- Secure Coding Practices: Ability to write secure code to prevent vulnerabilities such as SQL injection and XSS.
- DevSecOps: Knowledge of integrating security practices into the DevOps pipeline to ensure continuous security throughout the development lifecycle,
- Threat Modeling: Skills in identifying and mitigating potential security threats during the design phase.
Strong Technical Knowledge of enterprise security platforms:
- Palo Alto Cortex XDR
- Microsoft Defender for Endpoint
- Microsoft Sentinel
- SPLUNK Cloud / Enterprise Security
- SPLUNK SOAR
- Service NOW Security Incident Response (SIR)
- Service NOW Vulnerability Response (VR)
Note:
This position is currently listed as "Hybrid"; however,
the consultant will be remote due to COVID-19 related Work from Home (WFH) direction. Once the I⁢ cluster staff are required to return to the office, the resource under this request will be required to work onsite as well.
- Hybrid: 3 days onsite / 2 days remote
Powered by JazzHR
QC0ghmPO8N
Impress this employer describing Your skills and abilities, fill out the form below and leave Your personal touch in the presentation letter.