Security Engineer (Ethical Hacker)

A client is seeking a Security Engineer who will manage security infrastructure, analyze systems for improvements, develop and implement security enhancements, and maintain ISO27001 and SOC2 implementations. They will also build and configure SIEM infrastructure, administer security policies, and create/maintain documentation.

Please read the position description carefully. DO NOT apply if you are not able to meet the required qualifications listed below

• Manage access control and network security and means for isolating environments within cloud infrastructure
• Act on security and privacy breaches, and malware threats
• Adapt and improve tools and processes
• Address external queries on Apryses security posture in a consistent manor
• Address security issues as they are raised from external or internal sources
• Administer and manage information assurance and cyber security for multiple systems
• Critically analyze test results to deliver solutions to problem areas
• Administer security policies to control access to systems
• Administer, monitor, and maintain security infrastructure (Patch, upgrade, and monitor)
• Build and configure SIEM infrastructure, analyze results, and act on them accordingly
• Analyze systems to find security improvements
• Create, review, and maintain documentation
• Manage and improve Apryses ISO27001 and SOC2 implementations
• Develop, implement, test, and maintain security enhancements

• 6-10 years experience in InfoSec
• Minimum of 4 years defining and shaping a compliance program
• Nice to have: Experience with MS365 E5 Policies and running SOC2, NIST or ISO27001
• Experience working with multiple departments to build cohesion

• Ethical Hacking experience
• Bachelor's degree in computer science-related field
• Programming skills in a mix of Java, Javascript, SQL, Powershell, PHP, Python, etc.

Visa and work permit support will be provided for candidates outside of Canada.