1.844.822.0541

info@nexusgroup.ca

Nexus Systems Group

by

Location Address: Hybrid – Toronto – 2/3 days per week onsite (Tues + Thurs, subject to change)
Contract Duration: 6 months
Possibility of extension
Number of Positions: 1
Schedule Hours: 9am-5pm Monday-Friday; standard 37.5 hrs/week
Reason: Backfill

This project is to design and implement PCI DSS controls on Google Compute Engine (GCE) and Google Cloud VMWare Engine (GCVE) platforms. It is at initial phases, and this project will run for about 12 months.

Candidate Value Proposition:
The successful candidate will have the opportunity to gain exposure to GCE and GCVE, google products, which are desired skillset in the market and not as common in banking, good opportunity for extension, exposure to senior stakeholders, for a top 5 Canadian Bank.

Typical Day in Role:
• Represent security in design and architecture discussions and provide security controls
• Work with PCI-DSS team to understand the requirements and map it against GCE and GCVE security controls. Where needed, architect and solution new security controls.
• Create design & architecture materials and present those to architecture review board
• Continuously evolve GCP security controls based on industry best practices and emerging security threats
• Will work closely with multiple cross enterprise teams to gather requirements and the adoption of new security products.
• Co-ordinate efforts from business and technology teams.
• Communicate regularly with various business channels on the progress made for various projects
• Maintain configuration and support documentation
• Manage assigned projects and program components to deliver services in accordance with established objectives
• Solutioning and designing; and work with PCI-DSS – 2 main accountabilities

Candidate Requirements/Must Have Skills:
1. 8+ years’ experience in IT Security
2. 4+ years’ GCP security controls experience (services and products) – with demonstrated experience in GCE; OR 2+ years’ experience WITH GCP certification
3. 4+ years’ experience in security controls architecting and solutioning
4. 4+ years’ experience with documenting design architecture and security requirements

Security certifications – one of these required: CISSP (1st preference), Google Professional Cloud Security Engineer (2nd preference), CCSP, CCSK

Nice-To-Have Skills:
1. Experience with PCI-DSS, controls design and implementation
2. Experience with deployment and managing IaaS, PaaS & SaaS solutions
3. GCVE experience
4. 4+ years’ experience in the financial industry
5. Knowledge of /exposure to infrastructure as code (IaC)

Soft Skills Required:
• Communication: excellent written and verbal communication and interpersonal skills
• Fast learner with strong analytical skills and improvement mindset
• Must be able to operate independently within tight time frames
• High energy, demonstrated ability to work under pressure, deals well with ambiguities and uncertainties, and drives results.