Reporting to the Director of IT Security Services, the Cloud Infrastructure Security Architect's mission is to develop and direct the security architecture methodology related to business, compliance, risk management, and compliance with Cogeco's security management framework. He designs and implements the security architecture model for cloud services and infrastructure as well as the roadmap. He provides directives and writes security standards, actively contributes to securing project deliverables and acts as an expert in solving technical challenges.
Among your main contributions architect profile.
Define, design and implement the practice of security architectures for cloud services and infrastructures
Set up architecture patterns to secure cloud services and infrastructure 'by design'
Work closely with security officers in subsidiaries and business units
Contribute to securing the company's business projects in a dynamic and constructive way
Identify weaknesses, potential vulnerabilities and risks in collaboration with the Risk and Governance Department of CCSD (Corporate Cyber Security Department)
Secure cloud services and infrastructure according to the risks identified and the security requirements mentioned in the security documents
Analyze and evaluate requests for exceptions to security requirements, propose mitigating measures if required
Design architectures offering strong resilience to technological threats
Ensure that contributions are made in accordance with Cogeco's security management framework, approved documentation standards and security standards (NIST CSF, NIST 800, CIS Benchmark, ITIL, FAIR)
Design SMART security solutions (Specific, Measurable, Achievable, Realistic, Temporarily defined)
Harmonize and standardize the security of cloud services and infrastructures across all business units
Identify and map the cloud services and infrastructures used by the systems and keep them up to date over time
Work in close collaboration with domain experts and operational security teams
Actively contribute to the development of security policies and standards
Contribute to the Safety Roadmap
Act as an expert in the resolution and analysis of security incidents involving cloud services and infrastructure
Manage escalations in accordance with the issue resolution process
Ensure compliance with planning and the quality of architecture deliverables
Identify potential challenges and propose solutions collaboratively
Collaborate with the Vice-President of Internal Audit on a regular basis
Collaborate in the design and improvement of contribution processes
Ensure customer satisfaction for each contribution
Ensure constant collaboration with operational security teams and that of the CCSD
Provide activity reporting on a weekly basis
Support management decisions and the strategic security plan
Do you have these skills?
Experience in architecture in Google CLoud Platform or Azur Cloud environments
Experience in I&O (virtualization)
Experience in the security of cloud services and infrastructures (IAAS, PAAS, SAAS)
Experience in security architecture (networks, system, access, Information)
Experience in securing information flows (Collect, Ingest, Store, Process, Analyze, Visualize)
Experience in isolation and micro segmentation (physical and virtual)
Experience in Serverless Architecture
Experience in managing authentication certificates
Experience in systems and process automation
Experience in securing data warehouses
Experience in managing secure data in transit
Experience in designing monitoring systems
Strong knowledge of the GCP Platform & Apps environment (Compute, Identity & Security, Networking, Big Data, Storage & Database, Machine Learning)
Strong knowledge of Identity and Access Management principles
Knowledge of the functional principles of Machine Learning (ML) and Artificial Intelligence (AI)
Strong knowledge of security standards (NIST CSF, NIST Series 800, FAIR, CIS Benchmark, ITIL)
Knowledge of applicable legal and regulatory environments (Protection of personal information, Regulation of listed companies (52-109), Protection of Telecoms infrastructures)
Good interpersonal skills, communication and organization
Strong analytical and planning capacity
Strong ability to understand business needs and potential security and compliance issues
Strong ability to establish good working relationships with others and work as a team.
Ability to exercise judgment and discretion with confidential information
Experience in coordinating multiple projects
Experience in tender management (RFI / RFP / RFQ)
Excellent ability to write security operation documents and processes (FR / EN)
Strong ability to multitask and efficiently in a fast and demanding environment
Ability to manage complex technical and / or interpersonal problems
Ability to be creative in resolving issues
Good oral and written communication skills
Bilingual French / English
Does this profile look like yours? We want you on our team!
Recognized Bachelor, Diploma or Certificate in Computer Security
CCSP, CISSP, TOGAF, ITIL certification is a plus
10 years of IT experience including 5 years in IT security
5 years of experience in security architecture
Cloud infrastructure security experience (Azur or Google) an asset
5 years of experience in the use and implementation of at least 4 of the following tools: SIEM, IDP / IPS, Windows, Unix, CISCO
Why join Cogeco?
Cogeco is a major player in the telecommunications market and offers all of its employees a stimulating, dynamic and diverse work environment based on respect and collaboration. We believe in continuing education and provide our employees with professional development and internal growth opportunities.
At Cogeco, diversity is an essential asset to our organizational performance. We are committed to providing equal opportunities to all individuals, regardless of cultural and individual differences. We do everything in our power to compose teams that reflect the diverse profiles and origins of our clients because we firmly believe that this contributes to our signature of excellence.
Among your main contributions architect profile.
Define, design and implement the practice of security architectures for cloud services and infrastructures
Set up architecture patterns to secure cloud services and infrastructure 'by design'
Work closely with security officers in subsidiaries and business units
Contribute to securing the company's business projects in a dynamic and constructive way
Identify weaknesses, potential vulnerabilities and risks in collaboration with the Risk and Governance Department of CCSD (Corporate Cyber Security Department)
Secure cloud services and infrastructure according to the risks identified and the security requirements mentioned in the security documents
Analyze and evaluate requests for exceptions to security requirements, propose mitigating measures if required
Design architectures offering strong resilience to technological threats
Ensure that contributions are made in accordance with Cogeco's security management framework, approved documentation standards and security standards (NIST CSF, NIST 800, CIS Benchmark, ITIL, FAIR)
Design SMART security solutions (Specific, Measurable, Achievable, Realistic, Temporarily defined)
Harmonize and standardize the security of cloud services and infrastructures across all business units
Identify and map the cloud services and infrastructures used by the systems and keep them up to date over time
Work in close collaboration with domain experts and operational security teams
Actively contribute to the development of security policies and standards
Contribute to the Safety Roadmap
Act as an expert in the resolution and analysis of security incidents involving cloud services and infrastructure
Manage escalations in accordance with the issue resolution process
Ensure compliance with planning and the quality of architecture deliverables
Identify potential challenges and propose solutions collaboratively
Collaborate with the Vice-President of Internal Audit on a regular basis
Collaborate in the design and improvement of contribution processes
Ensure customer satisfaction for each contribution
Ensure constant collaboration with operational security teams and that of the CCSD
Provide activity reporting on a weekly basis
Support management decisions and the strategic security plan
Do you have these skills?
Experience in architecture in Google CLoud Platform or Azur Cloud environments
Experience in I&O (virtualization)
Experience in the security of cloud services and infrastructures (IAAS, PAAS, SAAS)
Experience in security architecture (networks, system, access, Information)
Experience in securing information flows (Collect, Ingest, Store, Process, Analyze, Visualize)
Experience in isolation and micro segmentation (physical and virtual)
Experience in Serverless Architecture
Experience in managing authentication certificates
Experience in systems and process automation
Experience in securing data warehouses
Experience in managing secure data in transit
Experience in designing monitoring systems
Strong knowledge of the GCP Platform & Apps environment (Compute, Identity & Security, Networking, Big Data, Storage & Database, Machine Learning)
Strong knowledge of Identity and Access Management principles
Knowledge of the functional principles of Machine Learning (ML) and Artificial Intelligence (AI)
Strong knowledge of security standards (NIST CSF, NIST Series 800, FAIR, CIS Benchmark, ITIL)
Knowledge of applicable legal and regulatory environments (Protection of personal information, Regulation of listed companies (52-109), Protection of Telecoms infrastructures)
Good interpersonal skills, communication and organization
Strong analytical and planning capacity
Strong ability to understand business needs and potential security and compliance issues
Strong ability to establish good working relationships with others and work as a team.
Ability to exercise judgment and discretion with confidential information
Experience in coordinating multiple projects
Experience in tender management (RFI / RFP / RFQ)
Excellent ability to write security operation documents and processes (FR / EN)
Strong ability to multitask and efficiently in a fast and demanding environment
Ability to manage complex technical and / or interpersonal problems
Ability to be creative in resolving issues
Good oral and written communication skills
Bilingual French / English
Does this profile look like yours? We want you on our team!
Recognized Bachelor, Diploma or Certificate in Computer Security
CCSP, CISSP, TOGAF, ITIL certification is a plus
10 years of IT experience including 5 years in IT security
5 years of experience in security architecture
Cloud infrastructure security experience (Azur or Google) an asset
5 years of experience in the use and implementation of at least 4 of the following tools: SIEM, IDP / IPS, Windows, Unix, CISCO
Why join Cogeco?
Cogeco is a major player in the telecommunications market and offers all of its employees a stimulating, dynamic and diverse work environment based on respect and collaboration. We believe in continuing education and provide our employees with professional development and internal growth opportunities.
At Cogeco, diversity is an essential asset to our organizational performance. We are committed to providing equal opportunities to all individuals, regardless of cultural and individual differences. We do everything in our power to compose teams that reflect the diverse profiles and origins of our clients because we firmly believe that this contributes to our signature of excellence.
No comments:
Post a Comment