Information Security Engineer

Job Description

<p>Our client has an immediate opening for Information Security Engineer to join their team either in Vancouver or in Toronto.</p><p><br></p><p>Information Security Engineer is responsible for overseeing the implementation of security procedures and policy, safeguarding computer systems, networks and information, and promoting security best practices and awareness.</p><p><br></p><p><b>Major Responsibilities:</b></p><p><br></p><ul><li>Implement, maintain, and enhance security policies, standards, and controls.</li><li>Monitor, detect, and respond to security threats, vulnerabilities, and incidents.</li><li>Conduct risk assessments before system deployments and perform periodic security audits on live systems.</li><li>Manage security tools, including SIEM, intrusion detection and prevention systems (IDS/IPS), and data loss prevention (DLP) solutions.</li><li>Remediate and patch vulnerable systems to mitigate security risks.</li><li>Investigate security breaches and provide detailed reports and remediation strategies.</li><li>Promote security best practices and awareness across the organization.</li><li>Stay current with industry standards, emerging threats, and regulatory updates.</li><li>Ensure compliance with regulatory frameworks such as PCI, PII, CASL, and other security mandates.</li><li>Provide off-hours support and participate in shift rotations as required.</li><li>Perform other duties as assigned by senior management.</li></ul><p><br></p><p><b>Knowledge, Skills and Ability Requirements:</b></p><p><br></p><ul><li>Bachelor's Degree in Computer Science, Information Security, Cybersecurity, or a related field (or equivalent experience).</li><li>Minimum of 3 years of experience in information/network security.</li><li>Experience in designing secure networks, systems, and application architectures.</li><li>Proven expertise and practical experience working with a diverse range of infrastructure hardware.</li><li>Strong knowledge of MS Windows and Linux-based system programming and architecture.</li><li>Familiarity with risk management methodologies and best practices.</li><li>Hands-on experience with security management tools such as IPS, IDS, DLP, and SIEM.</li><li>Possession of security-related certifications (e.g., CISSP) is an asset.</li><li>Strong analytical and problem-solving skills with keen attention to detail.</li><li>Excellent interpersonal and communication skills with a service-oriented mindset.</li><li>Ability to work in a dynamic environment with flexibility and responsiveness to evolving security challenges.</li><li>Fluency in written and spoken <b>English</b></li><li>Able to communicate in <b>Mandarin</b> and/or <b>Cantonese</b>.</li></ul><p></p>