Staff Cyber Security Sys Engineer (Brampton)

Job Title: Systems Engineer – Cyber Security Engineer
Job ID: 77045
Location: Brampton, Ontario

Overview:
As a Staff Systems Engineer – Security, you will be the technical authority for security engineering elements for the company’s Robotics and Space Operations products. You will ensure expert support is provided to various product/project teams to address the security target and comply with applicable policies, procedures, and standards. You will define the target security posture and/or the security requirements for projects and solutions during their definition and development. You will provide insight into vulnerability management and response within complex information systems, including analyzing target environments to identify potential security vulnerabilities, policy violations, and unexpected behavior.

What you will be doing:

• Function as the overall Technical Authority for all security engineering activities involved in the Robotics and Space Operations products/projects;
• Consult on the overall system architectures and operations concepts from a security perspective;
• Develop and maintain all security-related system artifacts (e.g., specifications, ICDs, profiles, test documents, etc.) from the customer level down to the major subsystem level;
• Derive security requirements, designs, solutions, and mechanisms in response to customer requirements or industry standards;
• Develop and lead all security acceptance and accreditation programs for systems;
• Support engineering program delivery through the development and generation of security-related artifacts such as engineering plans, engineering budgets, design reports, and operational concepts;
• Review design material provided by subcontractors to ensure compliance with requirements;
• Oversee the verification plans for security-related aspects of the product/system;
• Support cost estimates and presentations to both customers and senior management as necessary;
• Ensure Secure Software Development Lifecycle best practices are applied and measured;
• Participate in the Product Security Incident Response Team (PSIRT);
• Engage and interface across the company to ensure security alignment between programs, business areas, and corporate services;
• Direct and mentor other security personnel.

What you must have:

• 10-15 years of security systems engineering experience;
• Certified Information System Security Professional (CISSP);
• Experience in Cloud Computing, Network Defense principles and practices, Identity & Privileged Access Management, Information Security, Cross Domain Solutions, Vulnerability Management, and Threat Risk Assessment;
• Experience implementing and operating technologies in the Secure Software Development Lifecycle (SSDLC), including manual code reviews, SAST, DAST, IAST, RASP;
• Experience in Threat and Risk Assessment using HTRA1 methodology;
• Experience in the delivery and accreditation of systems/services against NIST SP800-53;
• Excellent verbal and written communication and customer interaction skills;
• Excellent interpersonal skills, problem-solving abilities, and project execution strengths;
• A University degree in Engineering, Computer Science, or related field from an accredited institution is required.