ProViso Consulting
Story Behind the Need:
• Business group: Cloud Security Engineering – We design, build and oversee Security procedures and tools for the Bank’s Cloud Infrastructure.
• Project: CNAPP – Role is critical to design & implement Cloud Native Security Tooling in Google and Azure environments.
Candidate Value Proposition:
• The successful candidate will have the opportunity to gain valuable insights and understanding of Cloud Security principles. They will have the opportunity to work with a diverse and high performing team of Cloud Security Engineers, Cloud Engineers, CI/CD Pipeline Engineers and Security Architects in highly engaging and high-profile projects.
Typical Day in Role:
• Role is critical to design & implement Cloud Security functionality in Google and Azure environments
• Collaborate and design with DevOps teams to integrate Cloud Security tools within their pipelines
• Design and document Cloud Security solutions across Google and Azure environments
• Understand the Bank’s Cloud infrastructure and implement Cloud Native Security Tooling
Candidate Requirements/Must Have Skills:
• 7+ years of hands-on technical experience in cloud, software or other related engineering roles including significant experience in a leadership or advisory role
• 2+ years of hands-on technical working experience in large infrastructure Public Cloud environments, such as Azure or GCP with a focus on security.
• 2+ years of hands-on technical experience in Google Security Command Center (preferred), Windows Defender for Cloud, or Azure Entra PM (one or more)
• 2+ years of hands-on technical working experience with container-based technologies (Docker, Kubernetes, etc.)
• 2+ years’ experience in a Security role (Security engineer, security architect, etc.)
Nice-To-Have Skills:
• Hands-on technical working experience in Development tools (i.e. MS Visual Studio, IntelliJ IDEA, Bitbucket, Git, Jira, Confluence).
• Hands-on technical working experience in Linux OS & tools (i.e. OpenSSH, OpenSSL, Nmap, Wireshark).
• Hands-on technical working experience in computer languages (i.e. YAML, JSON, Python, Shell scripting)
• Technical experience in SSO, TLS & ciphers, Key Vaults, LDAP, IAM, In-Transit and At Rest Data Encryption. This request is also covered by sufficient security experience or certifications.
Soft Skills Required:
• Good communication skills (verbal + written)
• Ability to mentor Junior Security Engineers
• Able to gather and analyze data from various sources to support decision making process.
• Ensures all processes are documented in accordance with established policies and procedures.
Education:
• Bachelors in technical field (engineering, mathematics, computer science)
• Security certifications – CISSP, CCSP etc. – an asset
• Google Certified Security Engineer designation is an asset
Best VS. Average Candidate:
• Ideal would have prior cloud security engineering experience, security principles, software engineering principles, working cloud experience in Azure or GCP (GCP preferred), analytical thinking and reasoning skills. Security is central to this role.
Candidate Review & Selection:
• 2 rounds:
o 1st – MS Teams Video – Technical Interview – with HM and another team member – 1 hour
o 2nd – in person – Culture Fit – with Director and HM – 30 minutes
• Hiring Manager’s availability to interview: ASAP
Additional Notes:
• Please validate candidate experience with Google Security Command Center, Windows Defender for Cloud, or Azure Entra PM if noted