Security Engineer - Infrastructure - Kepler Communications Toronto, Ontario Bookmark Share Print 223 0 0

Listing Description

Kepler is on a Mission to bring the internet to space. Incorporated in 2015, Kepler’s guiding star is to enable the space economy through the creation of a communication network in Low Earth Orbit (LEO) that will provide connectivity services to other space missions, be they on orbit in LEO, MEO, GEO, or beyond. With an expanding base of early customers and our first 19 satellites in orbit, Kepler is continuing to grow and expand its most important asset – the Team! Based out of our HQ in Toronto and with an office in the UK and a newly formed office in the US we are building towards a truly global company delivering a product for the whole world.

As Security Engineer of Infrastructure, you will work very closely with Chief Information Security Officer to provide security expertise and management on Kepler’s various applications, programs, and projects. This role reports into the CISO and will be responsible for ensuring that management has the information required to understand infrastructure security status and determine how different security decisions impact the bottom line.

This role is based in Toronto, with approximately 40% of time spent on-site and 60% as remote work option.

Responsibilities:

Conduct analysis and provide security design requirements for existing or new systems and infrastructure, data, software, and physical facilities.

Conduct studies that evaluate, recommend, and implement security solutions to enhance core security capabilities in the areas of security infrastructure, access management, networking, databases, servers.

Analyze proposed solutions architecture, technology, design, and IT development processes to identify potential threats and vulnerabilities and recommend options that enhance the security of solutions and business process.

Recommend and/or implement changes as it relates to Infrastructure Security technologies (firewalls, intrusion detection/prevention systems, endpoint protection etc.).

Develop, review, update and maintain hardening standards documentation based on security best practices (CIS, NIST, etc.).

Vulnerability and Secure Configuration Management, including:

Implementing and performing secure baseline and infrastructure vulnerability scanning.

Review, analyze vulnerability scan results and support remediation activities and/or coordinate with stakeholders on remediation activities.

Participate in project teams’ discussions providing consultation on the security best practices, policies/standards adoption, etc.

Evaluate internal and external environment for threats, changes, related to Information Security and perform the role as Information Security subject matter expert (SME) to ensure appropriate risk mitigation.

Intermediate knowledge of security operations, incident analysis, incident handling, system patching, log analysis, intrusion detection, or firewall administration.

Work with stakeholders to help identify and mitigate security risk across the business if different from risks managed at the project level.

Provide advice and support for Information Security managed systems and vendors.

Act as technical contributor during security incidents by supporting investigation activities and recommending/performing remediation tasks.

Support Kepler’s security awareness program.

Requirements:

8+ years of progressive experience as an Information Security Professional with a BA/BSc (or higher) in Information Security or a related technical field.

Completion of one or more certifications such as but not limited to CISSP, CISA, CISM, CEH, CCSP, GIAC, ITIL, etc.

Experience in securing operating systems, networks, systems, and database architectures.

Experience with industry leading Security Information and Event Management (SIEM) tools.

Experience working with Endpoint security products.

Knowledge of security standards and regulations such as NIST CSF, ISO 27001/2, FISMA, etc.

Knowledge of typical behaviors of malware and malware authors.

Solid understanding of monitoring and intrusion detection HW/SW required.

Knowledge and experience in Linux/Unix/Windows/DB technologies.

Experience performing the successful deployment, integration, and initial configuration of all new security solutions enhancements to existing security solutions in accordance with industry standards and best practices.

Excellent communication and interpersonal skills with the ability to clearly identify and articulate issues.

Ability to work towards aggressive deadlines in a timely manner.

Proven problem solver with sound judgment who accepts ownership and accountability.

Strong organizational skills with the ability to multitask in a fast-paced environment and manage multiple deadlines and priorities.

Bonus Points:

Experience with NIST CSF, FISMA and NIST controls 800-53.

Experience with AWS and/or Azure.

Experience with global data protection and privacy laws.

#LI-HYBRID

Kepler Communications Inc. is committed to fostering an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. We welcome applications from: women, Aboriginal persons, persons with disabilities, ethnic minorities, visible minorities, people who identify as LGBT and others who may contribute to diversification in our workplace.

As part of our commitment to accessibility for all persons with disabilities, Kepler will, upon the request of the applicant, provide accommodation during the recruitment process to ensure equal access to applicants with disabilities. Please contact our People & Culture team, through our Career Page to make your accommodation needs known and we will consult with you to ensure suitable accommodation is provided.

Listing Details

Citizenship: Not Provided
Incentives: Not Provided

Education: Not Provided
Travel: Not Provided
Telework: Not Provided

Listing Description

Listing Details

About Us

Useful Links

Our Contacts