Senior DevOps Security Engineer

 

Permanent Full Time 

-

 

 

We are looking for a Senior DevOps Security Engineer to join our Information Security Technology team! 

  

Security Technology works closely with Global and Canadian Information Security Offices, and other Infrastructure and Application Technology teams to design, deploy and maintain security services. Our security services defend our global enterprise, including business units, customers and shareholders from external and internal security threats. Our team consists of highly motivated, innovative, and tech-savvy engineers that design, deploy and maintain security technologies using agile delivery methods and automation. 

 

What you will do: 

 

The Senior DevOps Security Engineer is responsible for engineering of new security technologies and operational excellence of existing security technologies.  They will require a mindset focused on business value and continuous service improvement.  

The following describes the key expectations and responsibilities for this role: 

 General: 

• Demonstrate solid security fundamentals while working hands-on with security technologies 
  
• Follow ITIL best practices including incident, problem, and change management
  
• Complete deliverables and deliver high quality solutions in an efficient & effective manner
  
• Proactively assess security risks and expedite gap closure to help promote a risk aware culture 

 

Engineering: 

• Provide input to security technology roadmaps that set the vision for security services / controls
  
• As needed, research, evaluate and validate practicality of new technologies via rapid prototyping 
  
• Design solutions that are “fit for purpose” (security function) and “fit for use” (enterprise grade)
  
• Ensure technical specs support solution architecture and are endorsed by technology vendor(s)
  
• Deploy solution components and participate in appropriate functional and non-functional testing 
  
• Work with internal and external stakeholder teams to implement / validate solution integration
  
• Provide technical consulting on capabilities and limitations of the security technologies  

 

Operations: 

• Participate in 24x7 on-call rotation and achieve technology incident resolution service levels
  
• Ensure the health and compliance of in-scope security controls
  
• Drive automation of manual tasks and improved proactive monitoring & alerting
  
• Implement security policies/blocks and perform continuous tuning to ensure control effectiveness
  
• Assist with key performance indicator reporting to reinforce business value of security controls
  
• Remediate infrastructure at risk of exploitation and participate in security incidents as needed
  
• Contribute to annual business continuity / disaster recovery planning and execution 

 

Other: 

• Actively set personal smart goals and understands how their performance impacts the team 
  
• Participate in meetings and training with a willingness to share knowledge and learn from others 
  
• Demonstrate commitment to respectful workplace and workplace diversity initiatives 
  
• Foster the department’s culture with a focus on teamwork and stewardship with business units
  
• Support continual improvements of IS methods, tools and techniques  

  

What you will bring: 

• A degree or equivalent education in a related discipline such as Computer Science, Business Computing, Engineering, or Commerce
  
• Minimum of 5 years experience maintaining, designing, implementing end to end application, infrastructure, or security solutions in a large organization following ITIL best practices
  
• Broad knowledge and best practices for infrastructure and security technologies including but not limited to workstations, servers, network, endpoint protection, and secure web gateway
  
• Attention to detail, effective planning, solid analytical and problem-solving skills, self-organized and a demonstrated self-starter with the ability to influence others with a strong focus on customer service
  
• Leadership, communication, negotiation, and interpersonal skills with demonstrated experience working in a team environment
  
• Demonstrated desire to continuous learning, implementing change and contributing to the organization and with a proven history of making appropriate decisions and recommendations
  
• Reliability status security clearance (this is a personnel security status that is required before an employee can gain access to Protected B information, assets or work sites as outlined by the Government of Canada website) 

 

The following will set you apart: 

 

• Experience with Cloud Security Posture Management tooling (CSPM/CNAPP/CWPP), integrations, and operations.  
  
• Experience designing and implementing security solutions in AWS, Azure and GCP cloud service providers.
  
• Experience with Gitlab, CI/CD pipelines, secure coding, security of SSDLC through Shift Left principles.
  
• Experience in systems and service automation and development using Python, Terraform, PowerShell, Ansible etc. and management of Infrastructure as Code (IaC) or Policy as Code (PaC).
  
• In-depth technical knowledge in network routing, firewall policy, Anti-Distributed Denial of Services (Anti-DDoS), Web Application Firewalls (WAF), Intrusion
• Prevention Systems (IPS) and Kubernetes/Docker application containerization.
  
• Understanding of Secure Access Service Edge (SASE), Zero Trust and Defense in Depth engineering and architecture. 
  
• Understanding of enterprise IT security risk assessments and related frameworks (e.g., SOC2, ISO, NIST CSF, NIST 800-XX) and industry best practices
  Information security certifications such as CISSP, SANS or equivalent. 

-

If you are selected to move forward in our recruitment process, your recruiter will be able to discuss additional details of our total rewards program with you.

 

Career opportunities will be open a minimum of 5 business days from the date of posting, closing dates will vary depending on the search activity. All applications received will be reviewed on a rolling basis.

 

Be your best at Canada Life- Apply today!

 

Being a part of Canada Life means you have a voice. This is a place where your unique background, perspectives and talents are valued, and shape our future success.

 

You can be your best here. You’re part of a diverse and inclusive workplace where your career and well-being are championed. You’ll have the opportunity to excel in your way, finding new and better ways to deliver exceptional customer and advisor experiences.

 

Together, as part of a great team, you’ll deliver on our shared purpose to improve the well-being of Canadians. It’s our driving force. Become part of a strong and successful company that’s trusted by millions of Canadians to do the right thing.

 

Canada Life serves the financial security needs of more than 13 million people across Canada, with additional operations in Europe and the United States. As members of the Power Financial Corporation group of companies, we’re one of Canada’s leading insurers with interests in life insurance, health insurance, investment and retirement savings. We offer a broad portfolio of financial and benefit plan solutions for individuals, families, businesses and organizations. 

 

We are committed to providing an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. We are dedicated to building a workforce that reflects the diversity of the communities in which we live, and to creating an environment where every employee has the opportunity to reach their potential. 

 

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Canada Life policies. To request a reasonable accommodation in the application process, contact talentacquisitioncanada@canadalife.com.

 

Canada Life would like to thank all applicants, however only those who qualify for an interview will be contacted.

 

#LI-Hybrid