Security Engineer - Remote

What We're About

At CentralSquare, you'll get the opportunity to work in a collaborative environment within a company that builds complex web-based enterprise applications for our Public Servants across North America.

Looking to grow your career? That's great! We believe in growing and cultivating careers here. There is plenty of room for growth for motivated people.

Hard work should be rewarded. We are committed to providing competitive compensation with a great benefits package, including tuition reimbursement, parental leave, paid volunteer hours, and unlimited PTO. Our flexible work environment also enables you to take advantage of an excellent work-life balance whether you are in office or working remotely.

The Role

This role is responsible for cloud vulnerability remediations, patch management, certificate replacement ultimately ensuring a secure operating environment for existing company technology and applications. This position works closely with the Security department.

Job Duties

• Ensure all 2000+ servers are free of vulnerabilities and security patches are applied.
• Web Application Firewall (WAF), Proxy, and IPS/IDS management and tuning.
• Work closely Cloud administrators to validate secure configuration standards are applied to all cloud systems.
• Identify and assist with deployment of security controls required to ensure the confidentiality, integrity, and availability of company Cloud assets and infrastructure.
• Assist with Cloud vulnerability scans to ensure systems have the required security controls in place.
• Assist with the validation of test and development environments to limit drift from current production environment security standards.
• Work closely with Cloud Administrators and DevOps to identify and resolve system vulnerabilities and mitigate critical threats to the organization.
• Implement security technologies to protect company assets.
• Work with Cloud Admins and DevOps to create hardened system images.
• Research potential attempts to compromise the confidentiality, integrity, or availability of assets.
• Perform security architecture assessments of third-party vendor integrations and tools.
• Assist security department with event review of SIEM, syslog, and other logging systems, as part of threat hunting initiative.
• Articulate security policies, guidelines, and standards to customers and internal teams.

Qualifications

• Bachelor's or Master's Degree in Cybersecurity or Information Technology, or equivalent experience
• 2-5 years of professional security administration or IT experience
• Experience with cloud platforms (AWS preferred, Azure and GCP a plus)
• Proficient knowledge of security controls as they relate to IaaS, PaaS, and SaaS cloud models
• Proficient understanding of best-in-breed technologies used to maintain a secure cloud
• Experience implementing data-loss prevention technologies
• Proficient knowledge of common application attacks and mitigation strategies
• Proficient understanding of security standards
• Relevant security certifications

One more thing: Extended skill sets are welcome and encouraged so don't be afraid to send us your resume even if you are a bit uncertain.

Okay-last thing, promise: Share this with friends; we could have something that suits them too!