Senior Security Specialist - Remote / Telecommute

Apply Now

Company: Cynet Systems

Location: Toronto, ON M4E 3Y1

Description:

Job Description:

Deliverables:
  • ssist with designing product and service security controls.
  • Collaborate with engineering teams to perform threat modeling for the proposed architecture.
  • Research security vulnerabilities in current architecture and communicate mitigation strategies to impacted teams.
  • Engage with engineering teams to perform security reviews of the architecture, design, and code throughout the SDLC process.
  • Work with product architects to provide remediation and potential fixes for security issues found from pen tests, static (SAST) and dynamic (DAST) analysis and provide fix recommendations, ensure that findings are addressed.
  • Perform ongoing security posture assessments using commercial or native tools to identify and track remediation of cyber risk in cloud environments.
  • Contributing security-focused feedback to engineers during all phases of the development lifecycle.
  • Report to management and key stakeholders on the product security status.
Must Haves:
  • 5+ years's experience and knowledge with Cloud computing concepts. Microsoft Azure and Amazon AWS PaaS knowledge and experience is highly preferred.
  • 5+ years's experience and knowledge of application security architectures and the purpose of privacy and security controls (e.g. token based authentication and authorization such as OIDC, SAML and OAUTH).
  • 5+ years's experience building and automating security testing.
  • 5+ years's experience and knowledge and understanding of networking, network security and cryptographic algorithms.
  • 5+ years's experience with Threat Modeling.
  • Strong communication skills.
Desired Skills:
  • Bachelor's in computer science or equivalent work experience.
  • 5+ years in IT solutions security role.
  • Security code review experience.
  • Offensive security experience: red team, penetration testing.
  • Certified Azure Security Engineer is an asset.
  • CCSP and CISSP Certifications are an asset.
Criteria Details:
  • Knowledge and experience with cloud computing architecture and security.
  • Knowledge and experience in threat modeling and vulnerability assessment for architectures and applications - 20 points
  • Experience working in the healthcare industry, specifically in health care IT.
  • Knowledgeable of PHIPA and privacy legislation and how it applies to healthcare IT solutions.
  • Experience dealing in a complex multi private/public stakeholder environment.

Similar Jobs