Akkodis
Akkodis is seeking a Cybersecurity Engineer for a contract position with a client in Toronto, ON (Hybrid).
Ideally looking for experience with SIEM , NIST , CISSP certifications, SSO, Threat Modeling , Risk Assessment preference would be someone with the required skills and experience, particularly in large organizations.
Title: Cybersecurity Engineer
Location: Brampton , ON (hybrid)
Job type: Full time
Mandatory experience and skills:
10-15 years of security systems engineering experience;
Certified Information System Security Professional (CISSP)
Experience in the following areas: Cloud Computing, Network Defense principles and practice, Identity & Privileged Access Management, Information Security, Cross Domain Solutions, Vulnerability Management and Threat Risk Assessment;
Experience implementing and operating technologies in the SSDLC, including manual code reviews, SAST, DAST, IAST, RASP;
Experience Threat and Risk Assessment using HTRA1 methodology.
Experience in the delivery and accreditation of systems/services against NIST SP800-53
Excellent verbal and written communications and customer interaction skills
Excellent interpersonal skills, problem solving abilities and project execution strengths.
Other experience and skills:
Understanding of government project delivery and execution processes from requirements through commissioning and support;
Experience with NIST SP-800 suite (e.g.-53, -171) ISO/IEC, DISA STIGs, CIS, SANS standards;
Experience in the delivery and accreditation of systems/services against recognized industry or government standard such NIST 800-171, SOC1, SOC2, ISO27001
Experience in developing security elements as inputs to System Engineering Management Plans;
Experience in designing, deploying and working with technologies such as Security Information and Event Management (SIEM), Intrusion Detection System (IDS), Intrusion prevention System (IPS), Endpoint Detection and Response (EDR), Identity & Privileged Management technologies
Establishing Business Continuity Plans and Disaster Recovery Programs;
Experience using Open Source Security Testing Methodology
Experience Threat Modeling using industry standards such as PASTA, DREAD,
Experience using an Application Security Verification Standard such as OWASP ASVS
Experience with OWASP References and SQL Vulnerabilities
Familiarity with requirements management software
Certifications such as:
Certified Cloud Security Professional (CCSP)
Certified Information Security Manager (CISM)
Offensive Security Certified Professional (OCSP)
Education:
A University degree in Engineering, Computer Science, or related field from an accredited institution is required.
Comments/Special Considerations:
Successful candidates must obtain and hold security clearance at the Reliability, and pass security assessment for the Controlled Goods Program (CGP).
