Cyber Security Advisor

Job Description

Job Description

Location: 2 days per week mandatory in the Montreal office

Assignment duration: 10 months 

 

Job description:

Need a cybersecurity expert who has knowledge in the cloud computing and application domains to participate in projects and produce security deliverables and risk assessments.

 

The candidate must have the following qualifications to be retained for an internal process:

• 10 years of experience in the field of cybersecurity
• Broad knowledge covering various areas:
• network security,
• application security
• monitoring
• Have participated in various security tests (audits, vulnerability, etc.)
• Have done risk assessments
• Have worked in large-scale environments in Quebec
• Experience in security with the following elements (detail the information, # of year, location, main tasks, etc.);
• Federated Authentication
• IAM (User Permission Management, Multi-Factor Authentication (MFA) and Privileged Access Management (PAM).
• Encryption
• Risk Management
• IP Protocol Proficiency
• Vulnerability Management
• Firewall
• Cloud Security: Strong understanding of securing cloud environments (AWS, Azure, OpenStack) using cloud native security tools (e.g. AWS GuardDuty, AWS Detective, Opensearch, MS Sentinel, MS

 Defender, others) and implementing best practices for cloud governance and monitoring:

• Logging and Monitoring
• Security Compliance: Familiarity with security frameworks and compliance standards (e.g. ISO 27001, NIST, GDPR, PCIDSS)
• CI/CD/CT Pipeline Security
• DevSecOps Integration: Strong knowledge of integrating security into practices DevOps, ensuring that security controls (e.g.
  
  SAST, DAST, IaC analysis) are automated in GitHub and GitLab CI/CD pipelines
• Language: French 5/5

 Asset:

• Holding a security domain certification is an asset (CISSP, CRISC, etc.);

DESCRIPTION DU POSTE

Besoin d’un expert en cybersécurité qui a des connaissances dans le domaine de l’infonuagique et dans le domaine applicatif afin de participer aux projets et produire les livrables de sécurité ainsi que les évaluations de risques.

Le candidat doit posséder les qualifications suivantes pour être retenu pour un processus interne :

• 10 ans d’expérience dans le domaine de la cybersécurité
• Connaissances larges couvrant divers domaines:

      – sécurité réseau,

      – sécurité des applications

      – la surveillance

• Avoir participer aux différents tests de sécurité (audits, vulnérabilité, etc.)
• Avoir fait des évaluations de risques
• Avoir travailler dans des environnements d’envergure au Québec Expérience en sécurité avec les éléments suivants (détailler l’information, # d’année, lieu, principales tâches, etc.) ;

     – Authentification fédérée

     – GIA (gestion des autorisations des utilisateurs, l’authentification multi facteur (MFA) et la gestion des accès privilégiés (PAM).

     – Chiffrement

     – Gestion du risque

     – Maîtrise des protocoles IP

     – Gestion des vulnérabilités

     – Garde-barrière

• Sécurité du cloud: Solide compréhension de la sécurisation des environnements cloud (AWS, Azure, OpenStack) à l’aide d’outils de sécurité cloud natifs (par exemple, AWS GuardDuty, AWS Detective, Opensearch, MS Sentinel, MS Defender, autres) et mise en œuvre des meilleures pratiques pour la gouvernance et la surveillance du cloud:

• Journalisation et surveillance
• Conformité à la sécurité: Familiarité avec les cadres de sécurité et les normes de conformité (par exemple, ISO 27001, NIST, RGPD, PCIDSS)
• Sécurité des pipelines CI/CD/CT
• Intégration DevSecOps: Solide connaissance de l’intégration de la sécurité dans les pratiques DevOps, garantissant que les contrôles de sécurité (par exemple, SAST, DAST, analyse IaC) sont automatisés dans les pipelines CI/CD GitHub et GitLab

ATOUT :

Détenir une certification du domaine de sécurité constitue un atout (CISSP, CRISC, etc.)

Company Description

Opusing is a 100% Minority-owned and diversity-certified Digital Transformation and staffing firm that empowers startups, businesses, and corporations to leverage the power of Technology and Manpower to trigger unstoppable growth. The success of our clients is the only goal of our team, which is led by digital native professionals in creative thinking, programming paradigms, and commercial acumen.

We are a globally growing firm with our headquarters in Boston, USA. With a focus on addressing clients’ unique needs by significantly enhancing their businesses, we offer unmatched staff augmentation, HR outsourcing, and IT & non-IT staffing services globally.

We have been a forward-thinking and trustworthy technology & staffing partner for top-tier brands since 2007.

We have worked with fortune 2000 companies in North America -the United States, Canada, India, and the UK. We have been the primary go-to vendor for all our clients for Contract and Fulltime Professional services, Offshore Staffing & SOW-based project work.

Company Description

Opusing is a 100% Minority-owned and diversity-certified Digital Transformation and staffing firm that empowers startups, businesses, and corporations to leverage the power of Technology and Manpower to trigger unstoppable growth. The success of our clients is the only goal of our team, which is led by digital native professionals in creative thinking, programming paradigms, and commercial acumen.rnrnWe are a globally growing firm with our headquarters in Boston, USA.

With a focus on addressing clients’ unique needs by significantly enhancing their businesses, we offer unmatched staff augmentation, HR outsourcing, and IT & non-IT staffing services globally.rnrnWe have been a forward-thinking and trustworthy technology & staffing partner for top-tier brands since 2007. We have worked with fortune 2000 companies in North America -the United States, Canada, India, and the UK. We have been the primary go-to vendor for all our clients for Contract and Fulltime Professional services, Offshore Staffing & SOW-based project work.