Senior Security Platform Engineer-EDR – Proxy

Senior Security Platform Engineer-EDR – Proxy

Requirements

• An Information Technology University degree/college diploma in related discipline(s) or equivalent work experience
• Minimum 5-7 years Information security and engineering experience with enterprise level security technologies in the one or more areas of: Perimeter, Endpoints, Crypto, Cloud, Email Security, Security Visibility, and Automation and Orchestration
• Minimum 3-year experience in successfully leading global information security projects
• Experience with end-point detection and response, web content filtering technologies and active directory threat detection and response
• Experience in managing 3rd party security service providers in delivering security services
• Broad exposure to multiple security disciplines and in-depth exposure in Incident Response or Detection Engineering
• Knowledge of a broad range of security controls and risk management frameworks NIST & (ISO) 2700x standards
• Experience designing secure networks and endpoint systems
• Experience planning, researching, and developing security policies, standards, and procedures
• Experience in a system administration role supporting multiple platforms and applications
• Experience with Windows and Linux based operating systems
• Experience in deploying enterprise level technology via managed projects using Scrum and Kanban methodologies
• Knowledge of networking technologies, firewalls, web application firewalls and intrusion detection and prevention systems
• Knowledge of AWS cloud technologies
• Knowledge of disaster recovery, technologies, and methods

Responsibilities

• Deploy and manage Endpoint Security Solutions such as: CrowdStrike, Netskope, Semperis
• Smoothly transition and operationalize projects and products. This includes developing roles & responsibilities (RACI), completing product documentation and educating the teams who will be performing BAU (Business as usual) the day-to-day work
• Analyze information systems utilizing various cybersecurity techniques and lead security initiatives and enterprise level projects implementing security solutions and performing POC/POV for new technologies
• Support operations and maintenance of the Endpoint Security Solutions (CrowdStrike, Netskope, Semperis)
• Implement risk driven security controls and provide SME (Subject Matter Expertise) during Audit
• Able to work independently with high degree of ambiguity and deliver expected outcomes, be focused on the end deliverables, and build trust with internal clients and peers
• Responsible to deploy, support and maintain new and existing security technologies that are deployed within Sun Life and owned and supported by the team
• Investigate and respond to security incidents, adhering to defined SLA’s. Participate in teams 24×7 on-call support and be required to join major incident management calls to provide support and consultation
• Identify risks to the business and recommend strategies to address those risks
• Manage the capacity and resiliency of security systems protecting Sun Life’s internal and client data
• Collaborate and build trust with security peers, vendors, and other Sun Life teams to enhance security posture and best practices
• A change catalyst for Digital transformation, using JIRA, Confluence, estimating stories, setting definition of done, completing and tracking story updates and assignments
• Document, update and maintain cyber security playbooks, policies and knowledge base articles used to support the established Incident Management and CSIRT processes
• Continuously improve operational and security platform processes

Preferred Qualifications

• Preferred: Certification(s) in data network engineering and/or security: CCNP/CCNP-Security, CCSP, CISSP, GIAC-GCIA, GIAC-GCED, Comptia, or equivalent security certification