SecOps Engineer

We currently have an opening for a SecOps Engineer position in Toronto Ontario Canada. Below youll find the detailed job description. This role offers fulltime employment with the flexibility of 100% remote work. However candidates must be situated within Canadian borders.

Monitor evaluate and maintain systems and procedures to safeguard infrastructure databases and Webbased security.
Identify integrate monitor and improve infosec controls by understanding business processes. Assist in defining security requirements and review of system to determine if they have been designed to comply with established security standards. Help in developing new standards as necessary.
Conduct vulnerability assessments and monitor systems for potential security concerns. Design and configure infrastructure systems to help mitigate findings and improve security posture.
Assist with security architecture reviews and conduct threat modeling exercise as new products and features are rolled out
Research security trends new methods and techniques used in unauthorized access of data in order to preemptively eliminate the possibility of system breach.
Respond to alerts from information security tools and triage and analyze potential security issues
Troubleshoot security system and related issues.
Collaborate and maintain relationships with various engineering teams across the organization to communicate and remediate security issues in a timely manner
Educate engineering teams on security best practices and promote security by design
Ensure compliance with regulations and privacy laws.

Skills Required:
Minimum 5 years of experience working in security or related industry
Proficient in one or more programming languages such as React Python Ruby etc.
Minimum 2 years of experience in secure coding/development
Effective communication skills and experience collaborating with engineering teams
Have a deep understanding of common Infrastructure security vulnerabilities
Demonstrated expertise in the Infrastructure security domain
Understanding of Infrastructure security in the context of SDLC and CICD
Experience working in all parts of the Infrastructure lifecycle
Effective in communicating security vulnerabilities to key stakeholders
Cloud Security Certifications like AWS Certified Security Specialty is preferred.