Cloud Security Specialist

Montréal - Quebec (QC),


Job Description:

OneSpan is looking for an experienced Cloud Security Specialist to join its Security Competence Center in Montreal. As a Cloud Security Specialist, you will help ensure our cloud infrastructure and applications are secure, designed and implemented to the highest standards.

Job Duties and Responsibilities:
  • Monitor, analyse and respond to security events and incidents from SIEM, firewalls, IDS/IPS, anti-virus, SAST/DAST/IAST security scanners, and other security tools.
  • Research, evaluate, design, test, recommend, and implement new network security tools such as IDS/IPS, SIEM, and anti-DDoS tools.
  • Report common and repeat problems to management and propose process and technical improvements.
  • Work with cloud engineering teams to ensure cloud infrastructure and software meets security best practices.
  • Evaluate the implementation of security tools via internal audits to verify compliance with the security policies.
  • Promote a culture of security throughout the company, and educate other departments (e.g. engineering, operations) on security procedures and security risks.
  • Bachelor or Master in Computer Science / Information Systems
/ Information Security or other related field
  • Minimum 3-5 years relevant experience in a cloud-based environment
  • Strong practical experience with security technology for cloud environments (e.g. AWS, Azure), such as:
  • Firewall configuration
  • Intrusion detection and prevention (IDS / IPS) tools
  • Anti-malware tools
  • Security patching tools (e.g. Pulp)
  • Security Incident and Event Management (SIEM) tools (e.g. ELF/ELK stack)
  • Web application firewalls and Next-Generation Firewalls
  • Virtual private network (VPN) technology
  • Penetration testing tools (e.g. Nessus)
  • Code analysis and vulnerability scanning tools
  • Active Directory and LDAP technology
  • Hardware Security Modules (HSMs)
  • Experience with network essentials, with understanding of concepts such as OSI model and networking protocols such as TCP/IP, DNS, HTTP, TLS
  • Knowledge of system security vulnerabilities and remediation techniques, and familiarity with common attack patterns and exploitation techniques
  • Experience with common shell, command and configuration languages (e.g. bash, YAML, JSON)
  • Can speak English fluently. French is an asset
  • Similar Jobs in Quebec