Security Platform Engineer

Description:

Job description

• The successful candidate should have 3-4 years experience in information technology with a minimum of 3 years experience in the information security field. The candidate will join a growing security platform team working in agile environment. Candidates must have the technical ability to plan, deploy and manage a diverse range of security technologies which monitor and protect sensitive data and systems from infiltration and cyber-attacks.

Preferred skills

• Pragmatic understanding of security problems, as a mix of technology and process issues, with the ability to pursue solutions at both layers within the organization.
• Development skills: Python, Shell scripts, Java development, API development, Maven, NodeJS, Open Liberty, NGINX, Angular development for UI, Git/Git Flow
• Infrastructure/DevOps skills: Linux, OpenShift/Kubernetes, Docker, Ingress, Helm, Ansible, Terraform, CDD, Network load balancer, PKI and SSL certificates, Vulnerability remediation, Splunk, APM/ASM Monitoring, Telegraf, AWS, Azure, SSO, Microsoft Entra ID OIDC, Database (Postgresql), CyberArk, Service Now, JIRA
• Product skills: Hashicorp Vault, ISG AgileSec Analytics, Venafi
• Experience with Security Information and Event Management platforms including log types.
• Experience designing secure networks and endpoint systems.
• Experience planning, researching, and developing security policies, standards, and procedures.
• Experience in a system administration role supporting multiple platforms and applications.
• Experience with Windows and Linux based operating systems.
• Experience in deploying enterprise level technology via managed projects.
• Knowledge of networking technologies, firewalls, web application firewalls and intrusion prevention systems.
• Knowledge of cloud technologies.
• Knowledge of disaster recovery, technologies, and methods.
• Strong communicator spoken and written with the ability to communicate technical issues to peers and management.

Qualifications

• An Information Technology University degree/college diploma in related discipline(s) or equivalent work experience, and/or 5 years experience in Information Technology
• 2-3+ years in security IT industry experience
• Professional designation in IT security (such as CISM, CISSP, CISA, GIAC, AWS or CompTIA) preferred.

Responsibilities

• Execute Hashicorp Vault tasks including installing Vault on OpenShift, Vault authentication methods, policies, API, PKI provider, Raft or database storage, CLI, UI.
• The security platform engineer will be responsible for supporting and managing existing security technologies that are currently deployed globally across Sun Life.
• The successful candidate will work on security initiatives and enterprise level projects performing proof of technology/concept asks, implementing new security controls and capabilities into existing technologies and be responsible to deploy, support and maintain new security technologies and platforms.
• The security platform engineer will be part of a 24x7 on-call support team and be required to join major incident management calls to provide support and consultation for technologies supported by the team.
• Continuously improve upon operational and security platform process activities.
• Smoothly transition and operationalize each project as the implementation phase ends. This includes developing roles & responsibilities (RACI) documents and educating the teams who will be performing BAU (Business as usual) the day-to-day work.
• Document, update and maintain cyber security playbooks, policies and knowledge base articles used to support the established Incident Management and CSIRT processes.