To apply for this job you must first either login or register

SecOps Engineer (Application Security)

Toronto,Ontario -Permanent

Job Description

Our client is consistently recognized by Deloitte as one of the fastest growing technology companies within North America and they are gearing up for their biggest year yet. This client provides an exciting, challenging, and stable workplace. They are looking for people who share their passion for outstanding performance, and who want to be part of a close-knit, energetic team. It is all about tomorrow, working with tomorrow's technologies to solve tomorrow's problems.

The SecOps Engineer will be responsible for performing technical activities related to the security of the development, implementation and monitoring of our applications, throughout the entire Software Development Lifecycle

Members of the Security Operations team leverage deep systems knowledge to attain expert-level knowledge of the platform and its features. To succeed in the team you should possess a proven ability to detect complex platform security issues and provide remediation options. Lastly you must be a strong communicator of complex technical concepts, an effective multi-tasker of time sensitive projects and a leader who can recognize problems and deliver solutions with little guidance.

Responsibilities Include:
- Perform software security source code reviews
- Reviewing threat intelligence reports and feeds, makes recommendations for profile or toolset changes based on reviews.
- Hunting for new threats and performs data analytics to surface activity not seen within the environment.
- Perform root cause analysis to uncover malicious activity.
- Serve as an escalation point for security events.
- Ensure controls specific to Application Security are performed and documented, including internal controls, SOX and PCI controls.
- Performs daily, weekly, monthly and quarterly control activities required for internal compliance, SOX or PCI.
- Provides feedback to development teams for modification of tools and improvements.
- Facilitates remediation of threats by working with other IT teams or end users.

Must Have Skills:

- Ability to apply knowledge of multidisciplinary business principles and practices to achieve successful outcomes in cross-functional projects and activities.
- Understanding of ethical hacking.
- Understanding of compliance and regulatory requirements such as SOX and PCI.
- Ability to respond and remediate incidents.
- Understanding of our technical environment (Java, Web 2.0 tech, Microservices, Docker, Kubernetes, etc)
- Ability to work across our various channels (web, mobile, etc.,)
- Strong problem solving skills
- Strong desire for continuous growth and learning
- You are not intimidated by ambiguity
- You enjoy the challenge of helping create a new practice/team from the ground up

Nice to Have Skills:

Nice to have:

Knowledge of scripting languages such as Bash, Python, Perl;
Skills / experience in Web Application security;
Familiarity with security standards such as PCI DSS, ISO 27001, etc.;
Experience working with identity and access control management solutions;
General interest in in various areas of information security.

Starting: ASAP
Dress Code: Business Sharp
To apply for this job you must first either login or register