Senior Security Platform Engineer Security (Akamai Security)

You are as unique as your background experience and point of view. Here youll be encouraged empowered and challenged to be your best self. Youll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day youll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do. Discover how you can make a difference in the lives of individuals families and communities around the world.

Job Description:

About the role:

The Senior Security Platform Engineer is responsible for effectively planning designing implementing and monitoring security technologies and projects that support Sun Lifes security policies and procedures. Your primary responsibilities will be Supporting in Scope Platform and Products and developing use case scenarios enhancing the security of Sun Lifes corporate and production systems. You will work closely with Enterprise Infrastructure IT operations Enterprise Architecture and application development teams to identify risks to the business and lead security solutions to protect customer and financial information.

What will you do

• Analyze information systems utilizing various cybersecurity techniques and lead security initiatives and enterprise level projects implementing security solutions and performing POC/POV for new technologies.
• Able to work independently with high degree of ambiguity and deliver expected outcomes be focused on the end deliverables and build trust with internal clients and peers.
• Responsible to deploy support and maintain new and existing security technologies that are deployed within Sun Life and owned and supported by the team.
• Implement risk driven security controls and provide SME (Subject Matter Expertise) during Audit.
• Investigate and respond to security incidents adhering to defined SLAs. Participate in teams 24x7 on-call support and be required to join major incident management calls to provide support and consultation.
• Identify risks to the business and recommend strategies to address those risks.
• Manage the capacity and resiliency of security systems protecting Sun Lifes internal and client data.
• Collaborate and build trust with security peers vendors and other Sun Life teams to enhance security posture and best practices.
• A change catalyst for Digital transformation using JIRA Confluence estimating stories setting definition of done completing and tracking story updates and assignments.
• Smoothly transition and operationalize projects and products. This includes developing roles & responsibilities (RACI) completing product documentation and educating the teams who will be performing BAU (Business as usual) the day-to-day work.
• Document update and maintain cyber security playbooks policies and knowledge base articles used to support the established Incident Management and CSIRT processes.
• Continuously improve operational and security platform processes.

What you need to succeed

• An Information Technology University degree/college diploma in related discipline(s) or equivalent work experience
• Minimum 5-7 years Information security and engineering experience with enterprise level security technologies in the one or more areas of: Perimeter Endpoints Crypto Cloud Email Security Security Visibility and Automation and Orchestration
• Minimum 3 year experience in successfully leading global information security projects.
• Preferred: Certification(s) in data network engineering and/or security: CCNP/CCNP-Security CCSP CISSP GIAC-GCIA GIAC-GCED Comptia or equivalent security certification
• Experience in managing 3rd party security service providers in delivering security services.
• Broad exposure to multiple security disciplines and in-depth exposure in Incident Response or Detection Engineering
• Knowledge of a broad range of security controls and risk management frameworks NIST & (ISO) 2700x standards
• Experience with end-point detection and response intrusion detection certificate management email security and web content filtering technologies.
• Experience designing secure networks and endpoint systems.
• Experience planning researching and developing security policies standards and procedures.
• Experience in a system administration role supporting multiple platforms and applications.
• Experience with Windows and Linux based operating systems.
• Experience in deploying enterprise level technology via managed projects using Scrum and Kanban methodologies.
• Knowledge of networking technologies firewalls web application firewalls and intrusion detection and prevention systems.
• Knowledge of AWS cloud technologies.
• Knowledge of disaster recovery technologies and methods.
• Strong oral and written communicator with the ability to communicate security technical issues to peers and management.

Required skills:

• Security Content Platform Leadership: Serve as the subject matter expert for Akamais security products including Web Application Firewall (WAF) Kona Site Defender Bot Manager and Prolexic DDoS protection.
• Architect and Optimize: Design and implement scalable and secure architectures for web applications using Akamais security solutions. Continuously tune and enhance Akamai configurations for optimal security and performance.
• Threat Detection & Response: Lead the monitoring identification and mitigation of real-time security threats including bot attacks DDoS campaigns and web-based exploits. Develop response playbooks and automated remediation workflows.
• Custom Rule Development: Oversee the development and fine-tuning of custom rules and policies for Akamai WAF tailoring security controls to evolving threats while maintaining application performance.
• Security Automation: Lead efforts to automate security processes and policy management using tools and scripting languages (e.g. Python Bash). Implement automation for the continuous deployment of security updates.
• Cross-Functional Collaboration: Act as a liaison between security DevOps application development and infrastructure teams to align Akamai security solutions with business requirements and performance objectives.
• Mentorship & Leadership: Provide technical mentorship and guidance to junior engineers and security team members sharing best practices and driving continuous improvement in security operations
• Incident Management & Forensics: Lead post-incident investigations ensuring root cause analysis is performed lessons are learned and appropriate remediation steps are taken.
• Reporting & Compliance: Ensure compliance with relevant regulations (e.g. PCI-DSS GDPR) through robust security configurations and reporting mechanisms. Prepare and deliver detailed security metrics and reports to senior leadership.
• Continuous Improvement: Stay updated on the latest web security threats Akamai product advancements and industry best practices. Continuously evaluate and recommend improvements to existing security architectures.
• Project Leadership: Lead key security projects including large-scale migrations upgrades and the introduction of new Akamai features or services. Ensure timely delivery and adherence to high standards of security.

Whats in it for you:

• Were honored to be recognized as a 2024 Best Workplaces in Ontario by Great Place to Work Canada.
• Were proud to be recognized as a company with a 2023 Most Trusted Executive team by Great Place to Work Canada.
• Wellness programs that support the three pillars of your health mental physical and financial
• The opportunity to move along a variety of career paths with amazing networking potential.
• As a hybrid organization you and your leader use business and Client needs to choose where you work at home or in the office.

# LI KC #LI-Hybrid #LI-remote

The Base Pay range is for the primary location for which the job is posted. It may vary depending on the work location of the successful candidate or other addition to Base Pay eligible Sun Life employees participate in various incentive plans payment under which is discretionary and subject to individual and company performance. Certain sales focused roles have sales incentive plans based on individual or group sales results.

Diversity and inclusion have always been at the core of our values at Sun Life. A diverse workforce with wide perspectives and creative ideas benefits our Clients the communities where we operate and all of us as colleagues. We welcome applications from qualified individuals from all backgrounds.

Persons with disabilities who need accommodation in the application process or those needing job postings in an alternative format may e-mail a request to .

We are proud to be a hybrid organization that offers our employees the choice and flexibility to work from both the office and virtually based on the needs of the business our Clients and you! Several work options are available and can be discussed throughout the selection process depending on the role requirements and individual needs.

We thank all applicants for showing an interest in this position. Only those selected for an interview will be contacted.

Salary Range: