Cyber Security Engineer

About This Opportunity

We are recruiting a Cyber Security Engineer to join our Cyber Security team. As a key technical contributor on the Security Engineering team, you will drive the operational effectiveness and continuous improvement of security controls across enterprise, application, and cloud environments. 

In this role, you will focus on the implementation, management, and automation of the security tool stack to enforce security policies and standards across IT and OT systems. You will also play a vital part in integrating preventative security measures into daily development and infrastructure workflows.

Responsibilities

• Participate in the design, implementation, and maintenance of security tools and solutions across the entire environment, including IT, OT, and cloud platforms.
• Deployment, configuration, administration, and troubleshooting of Next-Generation Firewalls (NGFWs).
• Serve as a technical resource for Firewall configurations and other network security controls, assisting with complex troubleshooting and architectural design decisions.
• Engineer, deploy, and manage the security tool stack, including vulnerability management systems, Privileged Access Management (PAM), Key/Certificate Management (KMS), Data Loss Prevention (DLP), Email Security, and Endpoint Detection and Response (EDR).
• Develop, implement, and secure asset configurations ensuring alignment with security baselines and best practices.
• Mature DevSecOps processes by integrating automated security testing and compliance checks directly into CI/CD pipelines.
• Collaborate closely with DevOps, Infrastructure, and Cloud teams to automate security tasks and enforce consistent security policies through infrastructure-as-code.
• Analyze complex security requirements and translate them into practical, scalable engineering designs and implementation plans.
• Develop and maintain security automation scripts and tools using languages like Python or PowerShell to improve efficiency and response capabilities.
• Participate in security architecture reviews and provide technical input to development and engineering teams.
• Create and maintain comprehensive engineering documentation, including design specifications, operational runbooks, and security architecture diagrams.

Qualifications

• College diploma and/or degree in Cybersecurity, Computer Science, or a related technical field.
• A minimum of one foundational security certification is required, such as CISSP, CompTIA Security+ or a relevent GIAC Certification (e.g. GSEC, GCIA).
• Relevant Azure certification, AZ-500 (Azure Security Engineer) is preferred, Other Azure certifications (AZ-400, AZ-104, AZ-204) are an asset.
• Relevant Networking Certifications: Fortinet FCA (NSE 3) is desired. FCP (NSE 4/5) and FCSS (NSE6/7) are strong assets.
• 3–5 years of experience in a hands-on security engineering or advanced technical security role is required.
• Proven experience in the implementation and operational management of security technologies, including controls like PAM, Firewalls, CASB, Cloud Security, Key Management, or DLP is required.
• Experience with network security concepts, including TCP/IP, routing protocols, VPNs and IPS
• Experience with security challenges and controls in OT and ICS environments is an asset.
• Strong knowledge of industry security frameworks and benchmarks, such as NIST, ISO frameworks, SOC 2, and CIS Baselines.
• Proven, in-depth experience with the deployment, configuration, administration, and troubleshooting of Next-Generation Firewalls (NGFWs).
• Demonstrated ability to script or program using languages like Python, PowerShell for automation is an asset.
• Expertise or deep familiarity with the Cloud Security and Cloud technology stack and securing CI/CD pipelines is an asset.
• Strong problem-solving, analytical, and advanced technical communication skills are required.

#LI-JB1

#CBSAS