Senior Security Platform Engineer – Java – Python – Hashicorp

Senior Security Platform Engineer – Java – Python – Hashicorp

Requirements

• An Information Technology University degree/college diploma in related discipline(s) or equivalent work experience
• Minimum 5-7 years Information security and engineering experience with enterprise level security technologies in the one or more areas of: Perimeter, Endpoints, Crypto, Cloud, Email Security, Security Visibility, and Automation and Orchestration
• Minimum 3-year experience in successfully leading global information security projects

Responsibilities

• Deploy and manage one or more security platforms and tools including Perimeter (WAF), Endpoints (Netskope, CrowdStrike, Semperis), Crypto (Hashicorp, Venafi, ISG), Cloud (CNAPP), Email Security and Anti-malware, and Security Visibility (IDS / IPS, SIEM)
• Execute Hashicorp Vault tasks including installing Vault on OpenShift, Vault authentication methods, policies, API, PKI provider, Raft or database storage, CLI, UI
• Analyze information systems utilizing various cybersecurity techniques and lead security initiatives and enterprise level projects implementing security solutions and performing POC/POV for modern technologies
• Responsible to deploy, support and maintain new and existing security technologies that are deployed within Sun Life and owned and supported by the team
• Implement risk driven security controls and provide SME (Subject Matter Expertise) during Audit
• Investigate and respond to security incidents, adhering to defined SLA’s. Participate in teams 24×7 on-call support and be required to join major incident management calls to provide support and consultation
• Manage the capacity and resiliency of security systems protecting Sun Life’s internal and client data
• A change catalyst for Digital transformation, using JIRA, Confluence, estimating stories, setting definition of done, completing, and tracking story updates and assignments
• Document, update, and maintain cyber security playbooks, policies and knowledge base articles used to support the established Incident Management and CSIRT processes. Develop RACI and educate the teams who will be performing BAU (Business as usual) the day-to-day work.

Preferred Qualifications

• Preferred: Certification(s) in data network engineering and/or security: CCNP/CCNP-Security, CCSP, CISSP, GIAC-GCIA, GIAC-GCED, CompTIA, or equivalent security certification
• Experience with open-source projects and managing 3rd party security service providers in delivering security services
• Experience designing secure networks and endpoint systems. Knowledge of networking technologies, firewalls, web application firewalls and intrusion detection and prevention systems.
• Experience in deploying enterprise level technology via managed projects using Scrum and Kanban methodologies.
• Knowledge of disaster recovery, technologies, and methods.