CGI Technologies and Solutions, Inc. Security Engineer and Operator in Phoenix, Arizona
Security Engineer and Operator
Find similar career opportunities
Security Engineer and Operator
Category: Cyber Security Consulting
City: Phoenix, Arizona, United States
Position ID: J0319-0865
Employment Type: Full Time
Meet our professionals
CGI: An employer of choice
CGI is seeking an experienced and highly motivated security professional to help CGI protect it and its client’s intellectual property within the US Commercial and Industry Solutions business unit. Your responsibilities include evaluating new technology, overseeing and building the selection, development and deployment of data and system protection security controls and working to improve the operational environment that support security operations of CGI’s US enterprise.
Applicant must have an understanding in the areas of information security and risk management such as cybersecurity threats, vulnerability assessments, threat intelligence, incident response and controls, security architecture, active defense, intrusion detection, cloud security, and other related technical responsibilities.
An understanding of threat modeling and mitigations to threats would be a strong benefit. They must be able to keep on top of emerging/evolving technology trends and impact on security/risk posture for application support to include big data, machine learning, analytics, mobile technologies, and virtualization.
Your future duties and responsibilities:
• Working through the Secure System Development lifecycle to assist in one or more functions to obtain an automated security platform that provides;
Identity Access Management
Certificate and key management
Incident and event monitoring events into automated workflows
Security analytic workflows
Working with developers and application security teams to enable content tagging/labeling for security protection methods
Establishing automated vulnerability assessment and vulnerability management capabilities
Data loss prevention (DLP) capabilities
Utilizing next generation firewall knowledge to build automated workflows
Utilizing logging and auditing functions with Entity User Behavior Analytics (EUBA), System Incident and Event Monitoring (SIEM) and orchestration efforts
Utilizing next generation malware detection and remediation
Utilize knowledge of the integration of encryption of data in transit, in-use and at rest into software solutions
Correlation of security analytics into meaningful information and reports
Management of API interfaces
Understanding of integrating logs into compliance software
• Assist with the development of remediation recommendations for identified findings that automation cannot currently provide
• Identify and clearly articulate (written and verbal) findings to senior management
Required qualifications to be successful in this role:
• Must be able to pass a CGI background check to start employment
• 5 years of Information Security experience and a Bachelor's Degree (additional experience can be substituted in lieu of education)
• Must have expert proficiency in 1 of the following areas;
• Must be an expert in network security, desktop and endpoint security or experience in a security operations center in data center or cloud environments
• Must be an expert common vulnerability scanner systems.
• Must be an expert in conducting threat hunting operations.
• Must be an expert in Log Monitoring, Log Management and Incident Response and EUBA and SIEM
• Must be an expert in cryptography to provide capabilities such as authentication, privacy, and integrity.
• Must be an expert with public and private cloud encryption and key management capabilities
• Familiarity with Azure, Google Cloud or AWS SaaS and PaaS compliance and risk management
• Proficient oral and written communications skills.
• Experience with security certification standards
• Must understand the scope of future duties list above and how to integrate security functions into SaaS offerings and improve the functions through a security viewpoint.
• Ability to travel as needed up to 25%
• Must be based in a US location in proximity to a CGI office
• Security relevant certifications: CISSP, Security+, CASP, CEH, OSCP, GPEN/GWAPT
• The application of Secure System Development Life Cycle, Dev Secure Ops or Agile methodologies
• Understanding of Threat Hunting techniques and management
• Understanding of Penetration Testing and Application Security
• Understanding of ITSM and IAM integration
• Understanding of API security techniques and management
• Familiarity with Hardware Security Module (HSM) and PKI solutions
• Familiarity with VPN architecture and secure network design a plus
• System hardening and development background
• Demonstrated security testing experience
• Vulnerability Assessments/Penetration Testing, Static/Dynamic Code Analysis & Code Reviews and Secure Development Lifecycles.
- Security Infrastructure Supprt
What you can expect from us:
Build your career with us.
It is an extraordinary time to be in business. As digital transformation continues to accelerate, CGI is at the center of this change—supporting our clients’ digital journeys and offering our professionals exciting career opportunities.
At CGI, our success comes from the talent and commitment of our professionals. As one team, we share the challenges and rewards that come from growing our company, which reinforces our culture of ownership. All of our professionals benefit from the value we collectively create.
Be part of building one of the largest independent technology and business services firms in the world.
Learn more about CGI at www.cgi.com .
No unsolicited agency referrals please.
CGI is an equal opportunity employer.
Qualified applicants will receive consideration for employment without regard to their race, ethnicity, ancestry, color, sex, religion, creed, age, national origin, citizenship status, disability, medical condition, military and veteran status, marital status, sexual orientation or perceived sexual orientation, gender, gender identity, and gender expression, familial status, political affiliation, genetic information, or any other legally protected status or characteristics.
CGI provides reasonable accommodations to qualified individuals with disabilities. If you need an accommodation to apply for a job in the U.S., please email the CGI U.S. Employment Compliance mailbox at USEmploymentCompliance@cgi.com . You will need to reference the requisition number of the position in which you are interested. Your message will be routed to the appropriate recruiter who will assist you. Please note, this email address is only to be used for those individuals who need an accommodation to apply for a job. Emails for any other reason or those that do not include a requisition number will not be returned .
We make it easy to translate military experience and skills! Click here at https://cgi-veterans.jobs/ to be directed to our site that is dedicated to veterans and transitioning service members.
All CGI offers of employment in the U.S. are contingent upon the ability to successfully complete a background investigation. Background investigation components can vary dependent upon specific assignment and/or level of US government security clearance held.
CGI will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with CGI’s legal duty to furnish information.