Security Consultant

• Business group: Cloud Security Engineering – We design, build and oversee Security procedures and tools for the Bank’s Cloud Infrastructure.
• Project: CNAPP – Role is critical to design & implement Cloud Native Security Tooling in Google and Azure environments. Long-term project, 1-2 years – looking for contractor to stay on as long as possible and open to converting to FTE after 12+ months

• Role is critical to design & implement Cloud Security functionality in Google and Azure environments
• Collaborate and design with DevOps teams to integrate Cloud Security tools within their pipelines
• Design, set up and document Cloud Security solutions across Google and Azure environments
• Understand the Bank’s Cloud infrastructure and implement Cloud Security Tooling
• work with a diverse and high performing team of Cloud Security Engineers, Cloud Engineers, CI/CD Pipeline Engineers and Security Architects in highly engaging and high-profile projects.

• 10+ years’ experience in relevant IT roles with 7+ years of hands-on technical experience in cloud, software or other related engineering roles including significant experience in a leadership or advisory role
• 2+ years of hands-on technical working experience in large infrastructure Public Cloud environments, such as Azure or GCP with a focus on security.
• 2+ years of hands-on technical experience in one or more of these: Google Security Command Center, Windows Defender for Cloud, or Azure Entra PM, Wiz, AquaSec
• 2+ years of hands-on technical working experience with container-based technologies (Docker, Kubernetes, etc.)
• 2+ years’ experience in a Security role (Security engineer, security architect, etc.)

• Hands-on technical working experience in Development tools (i.e. MS Visual Studio, IntelliJ IDEA, Bitbucket, Git, Jira, Confluence).
• Hands-on technical working experience in Linux OS & tools (i.e. OpenSSH, OpenSSL, Nmap, Wireshark).
• Hands-on technical working experience in computer languages (i.e. YAML, JSON, Python, Shell scripting)
• Technical experience in SSO, TLS & ciphers, Key Vaults, LDAP, IAM, In-Transit and At Rest Data Encryption. This request is also covered by sufficient security experience or certifications.

• Bachelors in technical field (engineering, mathematics, computer science)
• Security certifications – CISSP, CCSP etc. – an asset
• Google Certified Security Engineer designation is an asset

Ideal candidate would have prior cloud security engineering experience, knowledge of security principles, software engineering principles, working cloud experience in Azure or GCP (GCP preferred), analytical thinking and reasoning skills and/or working experience with Wiz or AquaSec tools. Security is central to this role. #J-18808-Ljbffr