Senior Security Advisor enhancing security measures to align with corporate objectives at Desjardins. Leading development of strategic initiatives and overseeing best practices in security.
MA
Hybrid Lead Developer – Platform Governance & Security Specialist
Posted last month
About the role
- Lead Developer - Platform Governance & Security Specialist at Capgemini managing enterprise data security strategy and implementations for client organizations.
Responsibilities
- Work closely with client stakeholders to determine technical requirements for specific business objectives at hand and understand applicable security, regulatory and procedural controls & requirements
- Develop security requirements and specification for security policies
- Identifying appropriate security techniques such as Encryption (FPE, AES, Transparent) and Tokenization (SST, Vaultless, Vault based), etc. applicable from a PII data classification standpoint using Protegrity.
- Analysis of upstream/downstream application dependencies to ensure security protocols are appropriately configured and applied using the selected tool stack
- Knowledgeable with the data privacy regulations and compliances (GDPR, CCPA, HIPAA, SOC, NIST)
- Responsible for necessary design, configuration, and implementation of data security tools stacks like Protegrity, MicroFocus Voltage, Imperva, Immuta, Privacera, Thales.
- Responsible for collaborating with the project team members to provide regular updates required in for weekly status report, and weekly project log consisting of issues, risks, action items, and progress against planned activities for a given week.
- Install, configure, and implement Data Protection Platform across on-premises and cloud environments.
- Design and deploy Protegrity Vaultless Tokenization, Encryption, and Masking solutions to protect PII, PHI, PCI, and other sensitive data.
- Work with API security and Protegrity SDKs to enable data protection in microservices and cloud-native applications.
- Implement Protegrity Security Policies and configure User Access Controls, Key Management, and Data Discovery features.
- Troubleshoot security configurations and optimize Protegrity performance and scalability.
- Develop and maintain technical documentation related to Protegrity implementation.
- Train and mentor technical teams on data security policies and tools.
Requirements
- 8+ years of industry experience in implementing data security and compliance requirements
- 4+ years of hands-on experience designing and implementing data security policies, controls and governance
- 2+ years of experience working with cloud service providers (AWS, Azure, GCP) and corresponding cloud-native security services
- Data security/protection conceptual knowledge & experience in implementation of data security capabilities such as encryption, tokenization, data masking, RBAC, ABAC, auditing & monitoring in any of the industry leading tools such as, Protegrity, Thales Ciphertrust (Vormtric), OpenText Voltage, etc.
- Deep understanding of cloud service architecture with emphasis on security in the cloud
- Administration of the Data Security/Privacy/Governance tools, configuring policies, upgrading, and patching the platform, etc.
- Proficiency in data encryption techniques (AES, FPE, TDE, PKI) and tokenization frameworks using Protegrity is a must.
- Experience with key management solutions (KMS, HSMs, Vaults) for secure encryption key storage and lifecycle management.
- Hands-on experience with data security integration in cloud environments (AWS KMS, Azure Key Vault, Google Cloud KMS).
- Able to communicate clearly and concisely, both orally and in writing to business and technology stakeholders
- Bachelors' degree or equivalent in Computer Science, Information Systems, Cybersecurity, or related field.
Benefits
- Flexible work
- Healthcare including dental, vision, mental health, and well-being programs
- Financial well-being programs such as 401(k) and Employee Share Ownership Plan
- Paid time off and paid holidays
- Paid parental leave
- Family building benefits like adoption assistance, surrogacy, and cryopreservation
- Social well-being benefits like subsidized back-up child/elder care and tutoring
- Mentoring, coaching and learning programs
- Employee Resource Groups
- Disaster Relief
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Controls Professional assessing internal control frameworks at Barclays, improving control effectiveness and managing risks to ensure compliance with regulations.
Senior Information Security Engineer at Wells Fargo investigating insider threats and strengthening cybersecurity measures. Conducting advanced investigations and collaborating with cyber teams to mitigate risks.
Staff Product Manager overseeing enterprise security product strategy for Tenable. Collaborating with various teams to deliver customer - focused solutions and product features.
Program Security Representative providing multi - discipline security support for Special Access Programs. Ensuring compliance, developing policies, and conducting security assessments in a military context.
Information Systems Security Officer managing operational security posture for information systems at GDIT. Collaborating closely with ISSM and ISO, handling security aspects, and ensuring compliance with security standards.
Senior Cyber Security Project Manager at Airbus Protect managing medium complexity projects in Cyber Security Consulting. Focusing on project leadership and team management in diverse client settings.
Security Architect responsible for designing cloud security architectures for leading brands. Ensuring compliance and guiding incident response strategies in AWS environments.
Senior Security Consultant for ISMS Management at Bundesdruckerei GmbH in Berlin. Responsible for security analysis, management, and advisory roles on cybersecurity issues.
IT - Systemadministrator managing Video Surveillance and Alarm Systems at Mühlbauer. Supporting technical solutions for multimedia and conference systems with project involvement and ticket handling.