IT Cyber Security Engineer
Corporate Office - Vancouver, British Columbia
Reporting to the Manager of Cyber Security Architecture, the Cyber Security Engineer is responsible for providing security engineering and governance support for on premise, hybrid and cloud environments within enterprise by engaging with the business to build and / or evaluate cloud based solutions to mitigate risk.
Define if the solution fits the Goldcorp cloud security definition and work with stakeholders to establish and carry out assessments for new and existing Cloud solutions;
Assist in the evaluation, research and development of IT cloud security risk assessments, security tools and implementation plans;
Track and report on the status of Cloud Solutions belonging to the organization. Follow up to address possible gaps and engage Infrastructure / Network / Site teams when support is needed;
Monitor for cloud updates and Cloud related risks in the organization;
Compile information and prepare reports based on both manual and automated sources, and align to applicable security strategies and established processes;
Work with Application Owners, Infrastructure, and Network Team to ensure mitigation of risks identified in cloud based solutions;
Assess information security risks of new projects and non-standard IT requests using risk assessment methodologies based on provided architecture;
Evaluate and support complex IAM and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement;
Responsible to install, integrate and maintain one or more Identity & Access Management products such as CyberArk Identity Manager and CyberArk Privileged Identity Management solution;
Communicate the IAM aspects of both the production support and maintenance at the technical and functional level to maintain or resolve a technical situation;
Assume responsibility for small / medium components of engagements;
Contribute to engagement planning and ensuring that deliverables meet work plan objectives;
Other duties as required
5+ years experience with any two (2) security frameworks including ISO, NIST SP 800-53, HIPAA, PCI, FISMA, FedRamp, HITRUST, or NIST CSF;
5+ years System administration and engineering experience;
2+ years’ experience with Palo Alto Networks, Cisco Networks;
2+ years’ experience with Microsoft Azure platform capabilities and best practices architectures;
Nice to have - experience with Amazon Web Services (AWS) platform capabilities and best practices architectures;
2+ years’ experience with SIEM, DLP, EDR, and CASB;
Extensive knowledge and skills in maintaining an access management / SSO system in a large, complex organization.
Production support experience in incident management, problem management and change management for CyberArk Identity Manager and / or CyberArk Privilege Identity Management related issues.
Experience in performance tuning and problem determination for CyberArk Identity Manager and / or CyberArk Privilege Identity Management;
Virtualization and cloud platforms : VMware;
Linux and Windows administration experience
Deep understanding of firewalls, NAT and packet filtering
General Networking skills required (Layer 2 & 3 switches, OSI Model, TCP / IP, SNMP, etc.)
Strong written and verbal communication skills;
Ability to travel up to 30%
Demonstrated ability to take initiative and achieve results in a fast-paced and changing environment;
Fluency in English is required, and Spanish is an asset;
Fast learner with the ability to work well with minimal supervision;
Able to work with highly confidential and sensitive information.
Goldcorp Inc. welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process.
How to Apply
Applications close on May 15, 2018. Please enter Job Number COR00001920 to submit your online application (www.goldcorp.
com / careers).Please ensure that you attach your resume as part of your online application. At this time, we are not accepting candidates referred by recruitment agencies.