IT Security Engineer

POSITION TYPE FULL-TIME, 35 HOURS/WEEKReporting to the Director of Infrastructure Services, the IT Security Engineer is responsible for the planning, development, design, execution, and support of the operation and integration of cyber security tools and processes to protect the Manitoba Institute of Trades & Technology from cyber threats. They would play a lead role in the cyber security design of business and information technology related initiatives, cyber security risk management, and incident response. The position is also responsible for leading the design of innovative security solutions for the organization and evaluating and reporting compliance with various regulatory or contractual requirements.The IT Security Engineer is responsible for project and operational related duties that is inclusive of, but is not limited to, MITT information technology infrastructure, cloud services, and other associated technologies, processes and personnel that are managed or operated by MITT.Responsibilities include but are not limited to:Planning and Preparation

• Evaluating requirements and designing the integration for cybersecurity identified solutions spanning multiple domains.
• Implementing, configuring, and tuning security technologies for the enterprise security program in support of business and IT programs/projects for both on premise and cloud solutions such as: Firewalls, WAF, IDS/IPS, secure web gateways/web proxy, Managed Detection and Response solutions (MDR), and others.
• Leading in the design of security controls of information systems and facilitating implementation with internal resource or vendors.
• Evaluating technology for compliance with organizational standards and existing architecture.
• Creating, updating, and maintaining procedures, standards, and guidelines for secure design, implementation, and operation of information systems and services.
• Participating as a senior technical resource on project teams.

• Defining and managing on-premise firewall policies (CheckPoint).
• Defining and managing Web Application firewalls (CheckPoint).
• Ensuring best practices are followed whenever possible.

• Defining and managing endpoint / email policies (CheckPoint).
• Triaging quarantined e-mail release requests.
• Configuring and maintaining e-mail policies.
• Ensuring best practices are followed whenever possible.
• Configuring, supporting and maintaining multi-factor authentication for staff and students.

• Checking and performing network backup services (backups and restores, updates) when necessary, on Linux and Windows servers.
• Maintaining backup storage infrastructure.

• Creating, maintaining and executing Incident Response plans, when necessary, with assistance of other IT Staff.
• Responding and patching any Service Bulletins related to Cyber Security.
• Creating after-action reports, adjusting policies and procedures.
• Performing event and incident triage, threat hunting, and incident response (to include basic malware analysis and forensic investigations).
• Developing, maintaining, and evolving IT and Cyber Security risk assessment and management practices for use in security evaluations, cloud risk assessments and third-party risk management for existing operations and new initiatives.
• Performing IT and Cyber Security risk assessments on technology systems and business solutions and creating reports for senior management.

• Performing reviews and updating to college infrastructure and devices.
• Responding to staff in a timely and documented manner to ensure the security of staff and student workstations.
• Monitoring servers and network equipment, when necessary, for correct operation.
• Creating and maintaining documentation on systems and processes.

• Assisting Director, IT Infrastructure in the configuration of infrastructure hardware (switches, access points, servers, etc.) ensuring Cyber Security concerns are informed and addressed.
• Assisting with orientation and training of staff
• Assisting with operation and configuration of email phishing training.
• Assisting staff, when possible, in the use of cyber security tools, and in the appropriate use of technology in their assigned tasks and roles.
• Providing support and direction to contractors needing access to IT systems.
• Operating as a second level responder, providing expertise and support to the first level responder as necessary and handling escalated cybersecurity requests.
• Operating, maintaining, and evolving tools and processes that support the cyber security program that includes, but not limited to PKI/Cryptography, secure network and system architecture
• Assisting, training, and mentoring other ITS team members in the use of security tools, application of security standards, the preparation of security reports and the resolution of security issues.
• As a senior resource, act as the escalation point to aid in troubleshooting security events and issues and execute complex or advanced service requests.
• Actively monitoring and researching cyber security threats, always being up to date with a direct or indirect threat landscape that could impact business operations, or technology infrastructure.
• Providing functional supervision, coaching and mentorship to teams and subject matter experts, as required.

• Adhering to MITT’s policies, procedures and behavior standards.
• Serving on MITT committees.
• Interacting with non-MITT parties in a manner that adheres to college policies and establishes functional working relationships.

• Completion of a recognized degree in a related IT discipline, or an equivalent combination of education, certification, and experience.
• A minimum of 8 years of progressive information technology experience with a minimum of 3 years direct experience in Cyber Security.
• Have and maintain a valid Manitoba Class 5 Drivers License and access to a reliable vehicle.
• Demonstrated experience across multiple cyber security technologies including, but not limited to, Firewalls/VPNs, Cloud Technologies, MDREDR, M365, Vulnerability Management, Network or Web Application Penetration Testing, etc.
• Significant written and verbal communication skills.
• Committed to continuous education to maintain professional certifications and keep current with evolving cyber security technologies, trends, and threats.
• Office environment (combination of in-office and remote work).
• Will experience periodic requirements for extended hours and/or flexibility in work schedule.

• CertificationExperience with CheckPoint Products an asset.
• Current related certification(s) from a recognized industry/corporate trainer such as Cisco or HPEAruba an asset.
• Certification as Certified Information Security Manager (CISM), Certified Information Security Auditor (CISA), Certified Cloud Security Professional (CCSP) is considered an asset.
• Experience in scripting languages such as PowerShell, Shell, etc. is considered an asset.