Expert Email Protection - Jobs in Calgary, AB

Job Description

The role of the Expert, Security Operation Center is to provide technical leadership for the Security Operations Center team in protecting the integrity and confidentiality of CN information assets while enabling business functionality in all systems and environments, by supporting applicable security solutions. As a subject matter expert, the individual oversees development and collaborates with various relevant teams. The individual provides technical assessments and recommendations to surfacing issues and for new projects.As part of a Security Operations Center team and according with CN’s workforce strategy, the Expert will interact and help shape permanent employees and a variable number of consultants depending on on-going projects and initiatives. Some of the projects the Expert will work on will be unchartered territory, and will need to be built from the ground up – it takes vision and an innovative mind-set to make that happen. The Expert needs to be enthusiastic, driven, conscientious, and accountable and a natural leader as well, with the ability to foster these values within the department.Main ResponsibilitiesOperation support

• Lead the team by providing technical guidance and methodology with regards to the security practice.
• Interface and guide product managers, project managers (PMs) and architecture in order to align corporate priorities within the team.
• With a constant attention to OPEX/CAPEX costs, ensure solutions are in line with business expectations and CN’s vision
• Contribute to process improvement and elaboration.
• Contribute to RFPs & RCA’s
• Participate collecting, assessing, and cataloging threat indicators

Practice Evolution

• Enable the Continuous Service Improvement lifecycle which includes:
• Reporting and Report Generation for various internal audiences
• Conduct regular interactions with Governance
• Enable the Security Management Lifecycle
• Oversee process improvements, and drive implementation of new capabilities to enhance defense and response of CN systems and networks
• High quality standards must be developed and applied to in order to reduce impact on operations, reduce TCO (Total Cost of Ownership).
• Provide information security risk analysis and strategic recommendations for the ongoing improvement of the security posture of corporate networks, systems and services.
• Develop comprehensive security write-ups and presentations, which describe security issues, analysis, and remediation techniques to company leadership
• Act as liaison between different departments providing guidance
• Provide targeted training and workshops to various teams on a regular basis

Delivery

• Oversee development of new security operations literature for use across CN information security functions by SOC team members.
• Maintain knowledge of the threat landscape
• Implement a proven testing methodology using industry-leading tactics and techniques.
• Adapt information security approaches to target real-world enterprise challenges

Working Conditions

• This role may require occasional business travel in accordance with CN policy for meetings

RequirementExperience

• 7-10 years Security industry experience including a minimum of 5 years of experience demonstrating technical leadership qualities and/or overseeing deliverables
• Demonstrated experience building and managing systems and programs.
• Demonstrated experience working with senior management on highly sensitive projects that require the utmost discretion and maintaining strict confidentiality on all data, records, and tasks as required.
• Demonstrated ability to lead the development of specific proactive procedures for the detection of security breaches across a large enterprise network
• Detailed knowledge of security assessment methodology and risk management process.

Education/Certification/Designation

• Master’s Degree in Computer Science or related field OR equivalent work experience
• Certifications:
• GCFA (Advanced Incident Response, Threat Hunting and Digital Forensics)
• GCED (GIAC Certified Enterprise Defender)
• CISSP (Certified Information Systems Security Professional)
• GCIH (GIAC Certified Incident Handler)
• CISM (Certified Information Systems Manager)
• GEVA (GIAC Enterprise Vulnerability Assessor)
• CRISC (Certified in Risk and Information Systems Control)

General Skills and Competencies

• Engages and inspires passion – motivates people
• Ability to coach people
• Tactful and exercises good judgment
• Operational and results focus
• Professional customer orientation
• Solid problem-solving skills
• Process driven and able to turn strategy into tactical actionable tasks.
• Creativity and strong analytic skills
• Ability to analyze problems quickly and accurately and adopt effective courses of action
• Project delivery skills (solid understanding of Project Management or equivalent experience)
• Strong interpersonal skills to interact positively and productively with teams across organizational lines, including administrative/executive staff
• Strong communication skills with demonstrated ability to communicate with technical and non-technical staff.
• Proven ability to work in a complex, fast-paced, and rapidly changing operations environment

Technical Skills/Knowledge

• Identify and track new Tactics, Techniques, and Procedures (TTPs) associated with known threat actors to enhance our cyber threat intelligence database and develop countermeasures in response to threat actors.
• Ability to detect and investigate intrusion attempts and perform in-depth reverse engineering analysis of exploits.
• Strong understanding of email delivery architecture, email gateway, networking, Email Signing SSL Certificates, SMTP, DNS, Dmarc / Dkim / SPF technologies
• Proven ability in managing email security platforms in large, distributed email delivery environments;
• Experience working with email threat prevention platforms in complex systems;
• Expert knowledge of sandbox technologies and platforms;
• In depth knowledge of Exchange (on Premises and cloud)
• High Availability Architecture of email delivery systems
• Knowledge of various scripting languages (Python, Perl, JavaScript, etc.).

About CNAs a leading North American transportation and logistics company, CN is a true backbone of the economy. With a team of approximately 25,000 railroaders, our focus is on moving both our company and the economy forward. We transport US$200 billion worth of goods annually for a wide range of business sectors from resource to manufactured products to consumer goods, across a 20,000-mile network spanning Canada and mid-America. CN is the only Canadian company listed in the Transportation and Transportation Infrastructure sector of the Dow Jones Sustainability World Index (DJSI). Launched in 1999, the DJSI World represents the gold standard for corporate sustainability. At CN, we work as ONE TEAM, focused on safety, sustainability and our customers, providing operational and supply chain excellence to deliver results.CN is an employment equity employer and we encourage all qualified candidates to apply. We thank all applicants for their interest, however, only candidates under consideration will be contacted. Please monitor your email on a regular basis, as communication is primarily made through email.