Information Security Specialist ensuring optimal protection of data and systems at University of Toronto. Implementing security platforms and best practices for data integrity and threat mitigation.
About the role
- Salesforce Security Engineer and System Security Officer responsible for security compliance in Federal Government programs. Collaborating with teams to integrate security throughout the DevSecOps pipeline.
Responsibilities
- Provide subject matter expertise throughout the system development lifecycle and interface with multiple stakeholders through multiple touchpoints weekly.
- Manage coordination and response to agency security-related inquiries, compliance with agency policies, implementation of security controls, and maintenance of security documentation and artifacts.
- Lead Security Impact Analyses (SIAs), integrate automated security validation into CI/CD pipelines, and ensure tools are configured and tuned for maximum effectiveness.
- Champion the integration of automated security testing into the CI/CD pipeline to align with continuous delivery practices. Integrate security controls into CI/CD pipelines (GitHub Actions, Jenkins, Copado, Terraform, Kubernetes).
- Mentor product and engineering teams on secure development practices and continuous security; translate and tailor NIST 800-53 Rev 5 and CMS security controls into actionable tasks for DevSecOps teams.
Requirements
- A Bachelor’s degree in Computer Science, Information Systems, Engineering, Business, or other related scientific or technical discipline.
- Deep, practical knowledge of Salesforce security architecture, including Profiles vs Permission Sets, Permission Set Groups, Sharing Rules, Role Hierarchies, Record-Level Security, and Delegated Administration
- Minimum of 8 years experience implementing security controls and monitoring compliance for systems, in accordance with federal system security and privacy regulations.
- Strong understanding of continuous automated security practices applied to data and application engineering teams.
- Hands-on configuration and operation of security tools (Snyk, AppOmni, Tenable, Invicti, Splunk, AWS SecurityHub), including integration into CI/CD pipelines.
- Strong technical knowledge of Salesforce security best practices (roles, profiles, permission sets, OAuth/MFA, AppOmni).
Benefits
- Health insurance
- 401(k) matching
- Professional development opportunities
- Paid time off
- Flexible work arrangements
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Loss Prevention Agent responsible for security and loss prevention in logistics facilities. Ensuring safety and protection of property, clients, employees, and guests within the workspace.
Analyst Relations Manager shaping market understanding of Upwind's innovative cloud and AI security platform. Leading relationships with industry analysts to enhance visibility, credibility, and category leadership.
Sr Network Security Engineer designing security architectures and leading security initiatives for RBC. Collaborating across teams to deliver multi - layered security solutions and mentoring team members in engineering best practices.
Senior Threat Modeller enhancing cybersecurity threat modeling for RBC. Collaborating with diverse teams to improve and implement secure by design principles across the enterprise.
Senior Security Engineer supporting security engineering and SIEM administration at Ardent. Focused on improving threat detection and response within vSOC environments in Washington, D.C.
SY
Mainframe Support Engineer ensuring stability and performance of enterprise mainframe systems. Troubleshooting complex issues and collaborating with development, operations, and security teams for optimal system management.
IAM / IGA Security Engineer designing and implementing identity governance solutions. Collaborating with Security, IT, HR, and business stakeholders to ensure secure access governance.
Senior Consultant helping the Ministry of Defence with large - scale ICT projects and innovations in technology and security. Lead developments in networks and applications in cooperation with Defence Architects.
Software Security Engineer at Spectro Cloud focusing on securing Kubernetes - based platforms for AI infrastructure. Responsible for implementing security controls and managing incident responses across the platform.