Security Engineer (HYBRID)
Security Engineer (HYBRID)
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
McCormick Canada continues its long track record of growth and is a respected leader in the spice seasoning flavouring and specialty food industry. Our consumer products division serves retail grocery customers and emerging channels with Club House Billy Bee and McCormick products while our Custom Flavour Solutions division serves food service distributors and other respected food manufacturers across Canada. McCormick Canada is part of the world leader in spice and seasonings McCormick & Company Inc.
The Power of People is one of our five pillars. It has been the foundation for McCormicks success for decades. There is something inspiring about working at McCormick. We have created an unusually dedicated workforce by fostering a culture of respect recognition inclusion and collaboration based on the highest ethical values. Without our employees our success is not possible. Our commitment to our customers our consumers and our employees is unsurpassed.
Position Overview:
The security engineer role is responsible for the day-to-day management and support of core security technologies that protect endpoints infrastructure cloud and user access. This role plays a key part in strengthening the organizations security posture by ensuring visibility response and configuration of tools like SIEM EDR endpoint security baseline and remote access platform.
Serving as a trusted expert across IT and security teams the security engineer handles technology lifecycle tasks support for incident response and policy enforcement while maintaining alignment with internal standards and compliance frameworks. The role is also involved in managing firewalls and VPN configurations improving tool coverage and supporting continuous service improvement.
This position provides a unique opportunity to work hands-on with leading security platforms and contribute directly to business resilience and secure operations.
Key Responsibilities:
Description
- Take ownership of SIEM and fine-tune alerting rules manage connectors and make sure data and logs are flowing as expected.
- Manage EDR for Endpoint and Cloud ensuring theyre properly configured integrated and monitored across all devices and environments.
- Help define apply and maintain security configuration baselines on endpoints using tools like Intune Group Policy and EDR policies.
- Keep track of where our security tools are deployed (and where theyre not) and work to improve tool coverage and consistency across the enterprise.
- Participate in the investigation of alerts from security platformsworking with SOC infrastructure or endpoint teams to support the resolution quickly.
- Provide day-to-day support and configuration management for employee remote access solutions ensuring secure and seamless access.
- Review manage and optimize endpoint firewall and proxy rules making sure we minimize risk while supporting business needs.
- Handle security technology lifecycle tasks like patching upgrades migrations and tool retirement planning.
- Monitor new vulnerabilities in our security technology stack and work with other teams to get them resolved.
- Collaborate with infrastructure team service providers DevOps and application teams to ensure secure deployment of solutions and environment hardening.
- Stay aligned with internal standards and compliance frameworks like CIS and NIST.
- Work with IT cloud and other infrastructure teams to integrate security controls into deployments and services.
- Maintain documentation like SOPs configuration guides and exception logs to support operational continuity.
- Provide on call and/or after-hours support occasionally as needed.
- Participate in tool evaluations new security projects and ongoing improvements to our tech stack.
- Share insights and updates with managementon tool performance incidents risks and opportunities for improvement.
Required Qualifications:
- Bachelors degree in information technology Computer Science or relevant field.
- Two or More of: GIAC Certified CCSK OCSP CISSP (Certified Information Systems Security Professional) Cloud Certified (AWS (Amazon Web Services) GCP Azure) CEH ITIL CCNS CISC CPFA RHCE Microsoft Certification Security or other related security certification
- 36 years of experience in endpoint/cloud security systems administration or security engineering Broad and in-depth knowledge of cyber security technologies
- Strong experience with Microsoft OS platforms Linux and cloud security technologies.
- Proficiency in secure baseline configuration and security architecture design
- Hands-on experience with core endpoint/cloud security tools and platforms
- Knowledge of control frameworks such as NIST CSF CIS ISO 27001
- Proficiency in scripting (e.g. PowerShell Python) and automation tools
- Proven ability to drive security processes remediation and standards within a complex business environment while maintaining continuity of business operations.
Other skills and competencies:
- Must be able to multi-task and set priorities
- Must have experience leading and working in a collaborative multi-disciplined globally diverse team environment.
- Effective communication skills and the ability to communicate appropriately at all levels of the organization; this includes written and verbal communications as well as visualizations
- Are hands-on and take ownership of tools and processes
- Positive approach to customer service with demonstrated ability to handle high pressure support needs in a calm respectful and efficient manner
- Conflict resolution skills.
- Attention to detail and follow through.
- Demonstrated ability to manage both technical and business relationships and liaise on the information needs of the business to IT and system constraints back to the business.
- Ability to maintain confidential and personal information.
- Demonstrated leader of continuous improvement ideas and implementations
- Ability to operate a multi-cultural and multi-lingual environment both with team members and internal customers (critical)
- Ability to discuss technical information with non-technical individuals across multiple cultures in multiple countries. (critical)
#LI-NP2
Throughout the selection process accommodations for applicants with disabilities are available upon request. Please notify H.R. if required.
Employment Type
Full-Time
