IT Security Engineer – IDS & CISSP

IT Security Engineer – IDS & CISSP

ProViso Consulting


• “Must have strong communication abilities. Person needs to be able to engage with key stakeholders in the company” – (Remote to Toronto)


• Respond to security-related incidents, conduct forensic investigations, and provide post-event analysis
• Perform vulnerability testing, penetration testing, risk analysis and security assessment
• Mitigate the security risk that lies with the end-users through staff security training and awareness Design
• Design and Implement backup plans and maintain backup data solutions
• Define, implement and maintain corporate security policies and procedures
• Identify and define system security requirements
• Architect computer security architecture and develop detailed cybersecurity designs for corporate network, systems and Cloud systems infrastructure
• Apply Security by Design methodologies to corporate technology to provide security services that support business requirements.
• Design and build redundancy and capacity to support 24/7/365 operations
• Disaster Recovery and OOB systems management
• Design information and operational support systems
• Identify current and emerging technology issues, including security trends, vulnerabilities and threats
• Source and implement new security solutions to protect the organization better
• Conduct proactive research to analyze security weaknesses and recommend appropriate strategies
• Liaise with vendors to implement security solutions Implementation
• Engineer, implement and monitor security measures for the protection of computer systems, networks and information
• Hand-on experience to install, configure, test, maintain and troubleshoot security systems and devices
• Hands-on experience in implementing Information & Cyber Security in systems, network, end-point and cloud infrastructure
• Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks
• Ensure that the company knows as much as possible, as quickly as possible about security incidents
• Respond to all system or network security breaches
• Ensure the highest levels of availability of security systems
• Maintain security, backup, and redundancy strategies
• Implement disaster recovery plan for corporate security systems
• Systems configuration backup, perform configuration change
• Distributed multi-cloud systems design and implementation
• Prepare and document standard operating procedures and protocols Monitoring and Utilization Analysis
• Testing and identifying network and system vulnerabilities
• Implement a monitoring system
• Provide system utilization reporting, trending analysis and capacity plan
• Oversee and manage multi-cloud security system operations and utilizations
• Support Level 2, 3 or 4 escalation for production Incidents
• Liaise with vendors and other IT personnel for problem resolution
• The ideal candidate must be highly self-directed, being able to onboard with limited guidance and direction.
• The expectation is that this role will have some aspect of work that will spill over beyond the traditional 9-5 workday

Must Have Skills/Experience:

• University degree and 6+ years of experience in Information Technology; professional certification in IT Security (such as CEH, ECSA, GSEC, CISSP) is required
• Knowledge of IDS/IPS, penetration and vulnerability testing, firewalls, secure coding practices, ethical hacking and threat modelling
• Strong experience with designing and implementing Next-Generation Firewall solutions is required
• Knowledge of Windows and Linux operating systems, virtualization technologies, SQL database platforms
• Demonstrated awareness of identity and access management principles, application security, encryption technologies, secure network architecture, third party auditing and cloud risk assessment methodologies
• Relevant experience with multi-tier internet-facing architectures and systems
• Good understanding of TCP/IP protocol and networking services (DNS, SMTP, HTTP/S)
• Strong organizational, operational and process capabilities
• Ability to recover data and analyse information from devices to solve the IT-related crime happening to client employees and the company in general
• Excellent communication skills
• Strong understanding of security principles, best practices architectures, tools and processes
• Demonstrated ability to Identify conditions that make attacks more likely and minimize the attack surface

Job Details





Latest Blogs

© 2020 ProViso Consulting - Toronto Recruitment and Staffing Agency

Send this to a friend