Bring us your passion for digital or data analytics, and we’ll put you to work on exciting initiatives that answer the challenge: "How can we do that better?” Working with a dedicated team of energetic, forward-thinking innovators, you’ll stretch your imagination and sharpen your skills on the leading-edge projects that are keeping Sun Life Financial ahead of the curve. You want more than a job; you want a career - a career with a company that encourages learning and personal growth. You want to be “one of the best”.
Job Description:
What will you do?
- Deploy and manage one or more security platforms and tools including Perimeter (WAF), Endpoints (Netskope, CrowdStrike, Semperis), Crypto (Hashicorp, Venafi, ISG), Cloud (CNAPP), Email Security and Anti-malware, and Security Visibility (IDS / IPS, SIEM).
- Execute Hashicorp Vault tasks including installing Vault on OpenShift, Vault authentication methods, policies, API, PKI provider, Raft or database storage, CLI, UI.
- Analyze information systems utilizing various cybersecurity techniques and lead security initiatives and enterprise level projects implementing security solutions and performing POC/POV for modern technologies.
- Responsible to deploy, support and maintain new and existing security technologies that are deployed within Sun Life and owned and supported by the team.
- Implement risk driven security controls and provide SME (Subject Matter Expertise) during Audit.
- Investigate and respond to security incidents, adhering to defined SLA’s. Participate in teams 24x7 on-call support and be required to join major incident management calls to provide support and consultation.
- Manage the capacity and resiliency of security systems protecting Sun Life’s internal and client data.
- A change catalyst for Digital transformation, using JIRA, Confluence, estimating stories, setting definition of done, completing, and tracking story updates and assignments.
- Document, update, and maintain cyber security playbooks, policies and knowledge base articles used to support the established Incident Management and CSIRT processes. Develop RACI and educate the teams who will be performing BAU (Business as usual) the day-to-day work.
Skills & Attributes:
- Pragmatic understanding of security problems, as a mix of technology and process issues, with the ability to pursue solutions at both layers within the organization.
- Development skills: Python, Shell scripts, Java development, API development, Maven, NodeJS, Open Liberty, NGINX, Angular development for UI, Git/Git Flow
- Infrastructure/DevOps skills: Linux, OpenShift/Kubernetes, Docker, Ingress, Helm, Ansible, Terraform, CDD, Network load balancer, PKI and SSL certificates, Vulnerability remediation, Splunk, APM/ASM Monitoring, Telegraf, AWS, Azure, SSO, Microsoft Entra ID OIDC, Database (Postgresql), CyberArk, Service Now, JIRA
- Product skills: Hashicorp Vault, Install vault on OpenShift, Vault secret engine, Vault auth methods, Vault policies, Vault API, Vault PKI provider, Vault storage raft or database, Vault CLI, Vault UI
- Strong hands-on technical skills in both security risks and implementing solutions, automating tasks, and integrating systems
- Extensive knowledge of Information Security principles, protocols, practices, and industry standards
- Strong investigative mindset with acute attention to detail, sense of ownership, urgency, and drive.
What do you need to succeed?
- An Information Technology University degree/college diploma in related discipline(s) or equivalent work experience
- Minimum 5-7 years Information security and engineering experience with enterprise level security technologies in the one or more areas of: Perimeter, Endpoints, Crypto, Cloud, Email Security, Security Visibility, and Automation and Orchestration
- Minimum 3-year experience in successfully leading global information security projects.
- Preferred: Certification(s) in data network engineering and/or security: CCNP/CCNP-Security, CCSP, CISSP, GIAC-GCIA, GIAC-GCED, CompTIA, or equivalent security certification
- Experience with open-source projects and managing 3rd party security service providers in delivering security services.
- Experience designing secure networks and endpoint systems. Knowledge of networking technologies, firewalls, web application firewalls and intrusion detection and prevention systems.
- Experience in deploying enterprise level technology via managed projects using Scrum and Kanban methodologies.
- Knowledge of disaster recovery, technologies, and methods.
The Base Pay range is for the primary location for which the job is posted. It may vary depending on the work location of the successful candidate or other factors. In addition to Base Pay, eligible Sun Life employees participate in various incentive plans, payment under which is discretionary and subject to individual and company performance. Certain sales focused roles have sales incentive plans based on individual or group sales results.
Diversity and inclusion have always been at the core of our values at Sun Life. A diverse workforce with wide perspectives and creative ideas benefits our clients, the communities where we operate and all of us as colleagues. We welcome applications from qualified individuals from all backgrounds.
Persons with disabilities who need accommodation in the application process or those needing job postings in an alternative format may e-mail a request to thebrightside@sunlife.com.
At Sun Life we strive to create a flexible work environment where our employees are empowered to do their best work. Several flexible work options are available and can be discussed throughout the selection process depending on the role requirements and individual needs.
We thank all applicants for showing an interest in this position. Only those selected for an interview will be contacted.
Salary Range:
84,000/84 000 - 138,000/138 000
Job Category:
IT - Technology Services
Posting End Date:
31/12/2024