Job Description
Location: Ottawa, CanadaThales people architect identity management and data protection solutions at the heart of digital security. Business and governments rely on us to bring trust to the billons of digital interactions they have with people. Our technologies and services help banks exchange funds, people cross borders, energy become smarter and much more. More than 30,000 organizations already rely on us to verify the identities of people and things, grant access to digital services, analyze vast quantities of information and encrypt data to make the connected world more secure.Thales Cloud Protection and Licensing (CPL) is securing the world’s cryptographic infrastructure – the keys, the algorithms, and the business logic. We are safeguarding some of the biggest names in technology, and are securing over 80% of the world's banking transactions. We are looking for talented Security professionals who can help us secure our next generation of security products.
The Cloud Security Operations Engineer located in Ottawa , is responsible for prevention, detection, and remediation of Cyber Security Incidents by configuring all cloud security controls (including policy and IAM), real time monitoring/detection/analysis of potential security incidents in our cloud environments. This includes designing, implementing, deploying and tuning all security tooling to detect, analyze and respond to cyber threats as well as prioritizing all security findings and implementing mitigations as preventative measures.
In addition, the Cloud Security Operations Engineer interfaces with development & platform teams to consult on all aspects of cloud security.
Key Responsibilities:
Work with developers and engineers to consult on all aspects of cloud security;
Develop monitoring, alerting, and remediation to ensure the security of cloud platforms;
Configure, tune and audit all security controls across multiple cloud vendors;
Cyber Security Operations (monitoring, detection, incident response, forensics) ;
Participate in both internal/external security audits as required;
Participate in an on-call rotation to respond to pending issues or problems arising during non-business hours and provide support and response;
Effective oral and written communications skills
Required Skills and Experience:
6+ years of technical experience or a Bachelor’s degree in Computer Science with an additional 4 or more years of technical experience
A minimum of 3 years’ experience working with public cloud environments such as AWS, Azure, or Google Cloud
A minimum of 3 years’ experience securing infrastructure for data center or cloud environments
Hands on experience with Cloud Security/Cyber Security concepts, practices and procedures
Demonstrated knowledge of IAM, role based access controls, network security, and cloud infrastructure security
Prior experience with Infrastructure as Code technologies (e.g. Terraform, CloudFormation) and GitOps. Capable of configuring IAM permissions, authentication, and automation through Policy as Code
Prior experience researching, deploying and tuning all security controls for cloud environments such as AWS, GCP and/or Azure
Experience with cloud native log management, monitoring and SIEM tools. The ideal candidate should be able to aggregate, correlate, and report on logs and metrics, use them for detecting anomalous or risky behavior, and triggering automated actions or alerts
Experience implementing certificate and key management systems to enable encryption on cloud platforms. An understanding of security and authentication protocols including TLS, SSH, OAuth, SAML, and Kerberos;
Familiarity with various network controls including proxies and reverse proxies, network and application load balancers, stateful and deep packet inspection;
Prior experience with Linux and Windows administration and OS hardening;
Demonstrated knowledge of common exploits, such as XSS, SQL Injection, DOS, man-in-the-middle, and buffer overflows, as well as how to detect and protect against these classes of attacks.
Preferred Skills and Experience:
One or more of the following certifications (or similar):
CompTIA Security +
CPTE - Certified Penetration Testing Engineer or CEH - Certified Ethical Hacker
GCIH - (GIAC Certified Incident Handler)
ECIH - (EC-Council Certified Incident Handler)
Experience on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC) team
Experience performing vulnerability assessments and threat modeling
Experience with application and script development;
Demonstrable DevSecOps experience
#LI-WM1
#LI-hybrid
#LI-site
Thales is an equal opportunity employer which values diversity and inclusivity in the workplace. Thales is committed to providing accommodations in all parts of the interview process. Applicants selected for an interview who require accommodation are asked to advise accordingly upon the invitation for an interview. We will work with you to meet your needs. All accommodation information provided will be treated as confidential and used only for the purpose of providing an accessible candidate experience.
Apply
Go Back