Senior Information Security Specialist

Senior Information Security Specialist (Cloud and application security)

Job Summary: The Senior Information Security Specialist will plan and carry out security measures to protect Company’s environments. The Senior Specialist will be responsible for identifying opportunities for improvement in security posture in collaboration with other security team members and other business units. The Senior Specialist will act as lead on security related projects and technologies and assuring the effective implementation and management of security tools as we continue to improve information security at Martinrea. The Senior Specialist will be responsible to provide daily support and on call rotation.

Required Education and Experience:

• BS Degree in Information Security, Cyber Security, Computer Science or equivalent

• 5+ years of working experience in support of a large scale, mission critical enterprise security infrastructure • Understanding of complex technical environments including traditional Datacenter, Public Cloud, Multi-cloud, and Hybrid including AWS and Azure. • Experience with tools such as Azure Security Center, Azure Sentinel, Guard Duty, and other cloud services.

• Extensive hands-on experience of MS 365 and Azure security, MFA, CyberArk, MDM • Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes (secure software development (Application Security), data protection, cryptography, key management, identity and access management (IAM), network security) within SaaS, IaaS, PaaS, and other cloud environments. • Well versed in Internet architectures, including web, application, and database components • Knowledge of SSO methodologies

• Experience with multiple programming languages (such as, Java, C++, Phyton, VB, PowerShell, HTML, PHP, Angular, Xamarin etc.)

• Excellent knowledge with current operating systems (Windows, UNIX, AIX, OS X and Linux), network and web related protocols (such as, TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)

• In dept knowledge of SMTP, SSL/TSL

• Knowledge of security industry standards and certification frameworks such as ISO27001, PCI, HIPPA etc.

• Must have one or more: Certified Cloud Security Professional CCSP, MS 365 Security Administrator MS-500 and Azure Security Engineer Associate SC-500, AWS Certified Security – Specialty exam (SCS-C01), CISSP

Essential Functions: • Leading the security design of public cloud infrastructure, including AWS and Azure. • Planning, testing, and implementing security solutions for the monitoring and protection of company assets in the cloud.