Cyber Security Specialist

Cloud and Security Specialist

Fulltime, Permanent | Start Date: ASAP | Waterloo & Other Sites

Closing Date: March 3, 2025

About KidsAbility:

We are a not-for-profit, equal opportunity employer supporting over 17,000 children and youth to reach their social, physical, communication and behavioural goals each year. Providing early and exceptional family-centred services in the Waterloo and Guelph-Wellington regions, we believe that by living our values, our impact can be profound, and together, we can build brighter futures. We’re looking for the right people to join our team; supporting children, youth, and families to realize their potential, while realizing your own.

At KidsAbility, we offer:

• Ongoing training and development opportunities, empowering you to enhance your skills
• A supportive, collaborative, and inclusive work environment dedicated to family-centred care
• Organizational commitment to innovation and research; continually evolving our approaches so we may serve with purpose and value
• Initiatives to support your well-being including social events, opportunities to give back to your community and access to Employee and Family Assistance Program
• Comprehensive benefits and optional group RRSP program, short- and long-term disability income protection benefits, and generous vacation package and paid personal leave days

About the Opportunity:

The Cloud and Security Specialist is responsible for administering the organization’s cloud infrastructure and ensuring robust cybersecurity practices, focusing on Microsoft Azure workloads, Microsoft 365, data solutions (e.g., data warehouses, data lakes), and security operations. The role will lead cloud migration, cloud operations, and implements automation through tools like Power Apps, Power Automate, GitHub Copilot (or other AI-driven solutions), and scheduling apps. Specific areas of responsibility include, but are not limited to:

• Ensure the security, performance, and scalability of Azure cloud environments and data solutions, optimizing Azure resources, and utilizing tools like Azure Monitor, Log Analytics, and Databricks to ensure performance and cost-efficiency
• Manage and optimize data solutions using Azure Data Factory, Azure Data Lake, and Azure Synapse Analytics Services
• Implement and maintain CI/CD pipelines (e.g., Azure DevOps, GitHub Actions) for automated deployments and updates
• Lead the development and implementation of cybersecurity strategies, including security awareness training programs to educate staff on security best practices, phishing attacks, and data protection measures
• Manage cybersecurity tools, including Microsoft Sentinel, Defender, EDR, and SIEM solutions, collaborate with managed EDR/SOC providers to ensure continuous monitoring and threat detection, and implement security controls such as Zero Trust frameworks, network security (IDS/IPS), and identity management (MFA, SSO)
• Assist with creating security policies for KidsAbility and enforce security policies and procedures in alignment with organizational goals and industry standards
• Ensure effective disaster recovery strategies and regularly test restoration procedures
• Evaluate and integrate emerging AI-driven security tools, including Copilot (where applicable)
• Assist in the development of budgets for cloud infrastructure and security operations, providing input on cost estimates for Azure services, cybersecurity tools, licensing, and resource allocations to ensure alignment with organizational goals and financial constraints
• Ensure compliance with industry standards and regulations such as PHIPPA, NIST, and CIS (Center for Internet Security) frameworks
• Troubleshoot and resolve issues related to cloud services, network connectivity, and automation workflows and provide after-hours support for infrastructure related emergencies, regular and occasional weekend maintenance.

More About You:

To qualify, applicants must have Bachelor’s degree in Computer Science, Information Technology, or a related field, or equivalent professional experience, along with a minimum of three (3) years of hands-on experience with Azure cloud administration (including data lakes/warehouses), in addition to:

• Strong background and knowledge in cybersecurity, including experience managing outsourced EDR/SOC operations, Microsoft security frameworks, Zero Trust principles, cloud migration, identity management, and Microsoft Azure services, including Virtual Machines, Storage, Networking, Azure Databricks, and Azure Monitor
• Experience in automation, scripting and solution development; including Power Apps, Power Automate, Microsoft CoPilot (or similar AI-driven tools), PowerShell, CI/CD (Azure DevOps, GitHub Actions) and proficiency with Microsoft 365 environment
• Knowledge of virtual and physical infrastructure, network administration, and vulnerability management, and ability to manage and maintain infrastructure lifecycle, including inventory, maintenance of infrastructure components
• Proficiency in vulnerability management across platforms (Windows, Linux, Network devices etc.) along with working knowledge of firewalls, network and server security, SSL certificates and security best practices
• Certifications in Microsoft Certified: Azure Administrator Associate (AZ-104), Microsoft Certified: Azure Security Engineer Associate (AZ-500), and/or CompTIA Security+, CISSP, or equivalent cloud security certifications are considered an asset
• Working knowledge of Microsoft Windows Server 2016/2019 deployment and management including Active Directory, Group Policies, and scripting (Powershell, Python)
• Working knowledge of networking technologies: routers, switches, load balancers, web application/next-gen firewalls, LAN/WAN networks, WAN accelerators, MPLS, SD-WAN, Internet, VPN, and various network protocols (SIP, IPSec, DNS, DHCP, SMTP, SSH, S/FTP etc.)
• Experience in developing and implementing incident response playbooks, including handling ransomware and cybersecurity threats, along with backup, disaster recovery, and business continuity planning
• Strong understanding of cloud security best practices and risks (data breaches, malware, and social engineering) and regulatory compliance frameworks (e.g., PHIPPA, CIS, NIST, ISO 27001)
• Excellent collaboration skills for working with cross-functional teams, providing leadership in cloud security projects and the ability to prioritize and execute tasks in a high-pressure environment while providing or making sound decisions in emergencies
• Possess a valid driver’s license and have access to a reliable vehicle with public liability/property damage coverage.

We invite applications from those interested in this position to submit a detailed cover letter and resume to Human Resource’s Recruitment.

KidsAbility strives to create an accessible and inclusive application and selection process and is committed to working with and providing reasonable accommodations to job applicants who may require provisions to participate in the selection process.

Should any applicant require accommodation please contact Human Resources in advance for assistance.

Equity, Diversity, and Inclusion are the core values of KidsAbility. We are a diverse workforce with wide perspectives and creative ideas that benefit our clients and the community. It is the policy of KidsAbility to ensure equal employment opportunity without discrimination or harassment.

We welcome applications from visible minority groups, women, Aboriginal people, persons with disabilities, religion, age, sex, sexual orientation, gender identity or expression, marital or domestic/civil partnership status, genetic information or any other ground protected by applicable law.

Please note that all prospective KidsAbility employees are subject to mandatory immunization requirements, including the full and ongoing COVID-19 vaccination, as a condition of obtaining and maintaining employment. We will make accommodations as directed by the Ministry of Children, Community and Social Services and the Chief Medical Officer of Health.