Senior Cloud Security Engineer to design and implement cloud security functionality on Google and Azure environments- 37737

Senior Cloud Security Engineer to design and implement cloud security functionality on Google and Azure environments- 37737

Location Address: Toronto - Hybrid work arrangement - 2 days/week (Thursdays + other day is flexible depending on team arrangements such a meetings etc) - possible to increase in September

Contract Duration: 6 months (High Chance of Extension)

Schedule Hours: 9am-5pm Monday-Friday; standard 37.5 hrs/week

Story Behind the Need

• Business group: Cloud Security Engineering - We design, build and oversee Security procedures and tools for the Bank’s Cloud Infrastructure.
• Project: CNAPP - Role is critical to design & implement Cloud Native Security Tooling in Google and Azure environments. Long-term project, 1-2 years - looking for contractor to stay on as long as possible and open to converting to FTE after 12+ months

Typical Day in Role:

• Role is critical to design & implement Cloud Security functionality in Google and Azure environments

• Collaborate and design with DevOps teams to integrate Cloud Security tools within their pipelines

• Design, set up and document Cloud Security solutions across Google and Azure environments

• Understand the Bank’s Cloud infrastructure and implement Cloud Security Tooling

work with a diverse and high performing team of Cloud Security Engineers, Cloud Engineers, CI/CD Pipeline Engineers and Security Architects in highly engaging and high-profile projects.

Candidate Requirements/Must Have Skills:

1) 10+ years’ experience in relevant IT roles with 7+ years of hands-on technical experience in cloud, software or other related engineering roles including significant experience in a leadership or advisory role

2) 2+ years of hands-on technical working experience in large infrastructure Public Cloud environments, such as Azure or GCP with a focus on security.

3) 2+ years of hands-on technical experience in one or more of these: Google Security Command Center, Windows Defender for Cloud, or Azure Entra PM, Wiz, AquaSec

4) 2+ years of hands-on technical working experience with container-based technologies (Docker, Kubernetes, etc.)

5) 2+ years’ experience in a Security role (Security engineer, security architect, etc.)

Nice-To-Have Skills:

1) Hands-on technical working experience in Development tools (i.e. MS Visual Studio, IntelliJ IDEA, Bitbucket, Git, Jira, Confluence).

2) Hands-on technical working experience in Linux OS & tools (i.e. OpenSSH, OpenSSL, Nmap, Wireshark).

3) Hands-on technical working experience in computer languages (i.e. YAML, JSON, Python, Shell scripting)

4) Technical experience in SSO, TLS & ciphers, Key Vaults, LDAP, IAM, In-Transit and At Rest Data Encryption. This request is also covered by sufficient security experience or certifications.

Education:

Bachelors in technical field (engineering, mathematics, computer science)

Security certifications - CISSP, CCSP etc. - an asset

Google Certified Security Engineer designation is an asset

Best VS. Average Candidate:

Ideal candidate would have prior cloud security engineering experience, knowledge of security principles, software engineering principles, working cloud experience in Azure or GCP (GCP preferred), analytical thinking and reasoning skills and/or working experience with Wiz or AquaSec tools. Security is central to this role.

Candidate Review & Selection

2 rounds

1st - MS Teams Video, with senior tech lead and HM - 30 minutes

2nd - in person, with senior tech lead and HM and possibly with Director - 44 King - 30-60 minutes - possible technical test shared live in the interview to see their thought process (on paper)