• EN

Cryptography Consultant

We are Systematix and we are looking for aCryptography Consultantto fill a 6-month+ contract position with one of our National Media Clients in their Toronto orMontreal offices.

ABOUT THE PROJECT

Our client is looking for a Cryptography Consultant to help identify corporate PKI requirements and provide recommendations and deploy solutions for SSL Certificate Management. The utilization of proper ciphers and identifying the risks associated with older ciphers (and their subsequent upgrade path) is also part of the mandate.

ABOUT THE RESPONSIBILITIES

Perform TLS/SSL Health Checks:

• Potential TLS/SSL certificate security risks:

  • Expired/revoked certificates

  • Untrusted roots

  • Missing/incomplete trust chain

  • Weak keys and hashing algorithms

• TLS/SSL server vulnerabilities: Keep abreast of newly discovered SSL vulnerabilities and to manage, remediate, implement a process or monitor the new vulnerabilities going forward.

• Design, Plan, Test and Deploy a Centralized Certificate Management System to auto update all yearly certificates across the enterprise. Work and transfer of knowledge toStaff to be included in this process.

• Investigate, Plan and Test secure encryption transfer technologies (secure upload sites) and attachment encryptions (e.g. PGP).

• Investigate and Design Applicable PKI Use Cases for the Enterprise:

  • Interview with project stakeholders to identify PKI requirements

  • Identifying & consolidating PKI use cases by priority

  • Identifying efficient and effective PKI lifecycle workflows

  • Supporting the design, build, and deployment of enterprise PKI systems.

  • Ensuring PKI systems comply with the relevant data privacy and protection frameworks and adhere to industry best practices.

  • Assessing and remediating the design and implementation of PKIs to mitigate risk.

  • Integrating items such as TLS inspection, IoT devices, and mobile device management (MDM) solutions.

  • Managing the configuration of PKI systems and testing PKI systems before production deployment.

  • Creating and maintaining system documentation.

  • Defining and improving PKI best practices.

  • Keeping up with industry trends and threats, particularly around PKI technologies.

  • Review & design of architecture including IoT, MDM, etc.

  • Written & delivered architecture design document

  • Testing of certificate lifecycles

  • Assistance to configure and test applications with digital certificates

  • Knowledge transfer Informal knowledge transfer to PKI administrators

  • Custom training for PKI administrators and users where applicable

  • Post-engagement summary report, operations guides, helpdesk guides, and user guides

ABOUT THE REQUIREMENTS

• Extensive experience in the Cryptography field.

• Excellent analytical, evaluative, and problem-solving abilities

• Must have the ability to work independently and multi-task effectively

• This individual will have excellent written and oral communication skills, as well as interpersonal skills including the ability to articulate to both technical and non-technical audiences. The ideal candidate will be exceptionally self-motivated and directed.

  Linguistic requirement: Functional English mandatory. French is an asset.

• The ideal candidate will have 5 years of experience working within the technical arena with 3 plus years of information security work experience regarding cryptography.

• Experience with compliance programs as well as their technical and security requirements

• A university degree in the field of computer science, IT or Information Security

• Experience in security standards such as ISO 27001, 27002, 27005; NIST, COBIT, ITIL

• Technical certifications within the area Security are a strong plus (CISSP, CRISC, CBCP, CISA, CISM or equivalent)

• Requires knowledge and essential functions in the following areas:

  • Encryption technologies and concepts.

  • Knowledge of PKIcConcepts and infrastructure.

  • Knowledge of centralized certificate management and certificate auto update technologies.

  • Knowledge of secure and encrypted transfer technologies and attachment encryptions (PGP).

  • Enterprise Encryption Services protecting Data at Rest, Data in flight, and Transaction Data.

  • Ability to work with senior members to evaluate upgrades and new products & technologies for the

    enterprise encryption solutions.

  • Be a encryption security evangelist by driving Encryption Security Architecture and Design

  • Ability to define initial encryption requirements including analysis of threats and risks and alignment with best practices.

• Engineering, IT, and Architecture standards.

Implement changes to the PKI infrastructure in accordance with standard procedures and change control policies and procedures

• Proactively identify and recommend process improvement to reduce risk and improve operational efficiency and present complex security subjects to internal work groups and projects

• Document design, installation, and Operations & Maintenance guides

• Support end-to-end PKI infrastructure. Deploy, maintain, and troubleshoot encryption for PKI.

• Support Certificate Management requests as per pre-defined set of procedures and within agreed Service

• Monitor and troubleshoot PKI infrastructure services for problem and failures, providing support andresolutions.

• Maintain security and technical certifications

• Work with multiple security protocols including AMCE, KMIP, SSL/TLS, SSH, CMP, while utilizing excellent cryptography fundamentals, Digital Certificates, CRL/OCSP, PKI and PKCS standards

• Support Venafi, ACME, CTL, and various certificate automation solutions.

• Work with the FIPS 140-2 level 2+ certified Hardware Security Modules, Key Management systems such as RSA Data Protection Management, Thales/Gemalto KeySecure, and Vormetric DSM.

• Work with multiple database protection functionalities including Native and Transparent Data Encryption as well as operating systems and file systems such as RHEL, Windows, NFS, GPFS, HDFS

ABOUT THE ROLE

This is a 6-month full-time contract (Mon-Fri, 8 hours a day) engagement. HYBRID.Preference will be given tocandidatesresidingwithin a reasonable distance fromMontreal orToronto.1-2 times onsite per week is preferred. If not, the consultant must still be able to work on site occasionally, when requested.There will be 1renewal optionof 6 months.

APPLY NOW

If you are interested in finding out more, please contact us or submit your resume tojobs@systematix.com.Or, if you know someone who meets these qualifications, please forward this assignment opportunity to them.

ABOUT SYSTEMATIX

Systematix is one of Canada’s largest privately-owned National Consulting and Resourcing firms. With offices across North America we provide the highest caliber consulting solutions to a diverse client base that includes all levels of Government and private industry sectors.

Systematix is committed to creating a diverse, inclusive environment and is proud to be anequal opportunity employer.

At Systematix, we bring people and projects together!

Email Security Engineer

Systematix is currently looking for an Email Security Engineer to develop, maintain and support a growing number of ongoing solution strategies for one of the leaders in Life Sciences technologies..

ABOUT THE PROJECT

Our client is one of the world’s leading Life Sciences companies, with offices around the globe. Working as Email Security Engineer, you will be involved in defining and implementing standards, automation and innovative solutions that support the success of the collaborative, science and technology driven businesses. As the Email Specialist you will identify, recommend and implement innovative solutions and best practices to continuously improve, expand and protect our Messaging Service supporting more than 100,000 mailboxes worldwide. Maintaining a good relationship with the global IT teams is key to your success. In your role you will need to be able to communicate with people at all levels in the organization and work with several of our suppliers and partners.

ABOUT THE RESPONSIBILITIES

• Provide technical engineering services for the support of integrated email security systems and solutions
• Responsible for guiding the design and implementation of email secure solutions and services across business and IT support areas
• Lead special projects or investigations into specific email security technology or solution issues and shepherd research and piloting of new email security technologies
• Serve as a point of contact for engineering efforts and has overall responsibility for the correctness and integrity of the security system infrastructure
• Support efforts to identify email security and engineering problems and provide solutions
• Validate policy, configuration and identify new threats.
• Develop documentation for internal team use and for information sharing to other stakeholders

ABOUT THE QUALIFICATIONS

Bachelor’s degree in Computer Science is preferred

5+ hands-on experience supporting large infrastructures and projects

• Extensive knowledge of email security technologies and configurations
• Experience with performing assessments of email infrastructure
• Experience with Email Gateway and Email Infrastructure
• Experience with DMARC, SPF and DKIM security protocols

Significant expertise in the following technologies: Exchange Online, Messaging Hygiene & Security such as Proofpoint, Load Balancing, scripting with PowerShell and Microsoft Windows Server

Expertise and hands-on experience with deployment, migration, and support of messaging services

Excellent analytical skills.

Strong written and verbal communication skills are essential

ABOUT THE ROLEThis is a remote 6-month contract to be performed in the Eastern Time zone with a very strong intent to extend the contract.

APPLY NOW
If you are interested in finding out more, please contact us or submit your resume. Or, if you know someone who meets these qualifications, please forward this assignment.

ABOUT SYSTEMATIX

Systematix is one of North America's largest privately owned National Consulting and Resourcing firms. We provide the highest caliber consulting solutions to a diverse client base that includes all levels of Government and all Private Industry sectors.

IT Security Engineer

Systematix is currently looking for an IT Security Engineer to help with the support and management of global protection systems for one of the world’s leaders in Life Sciences technologies.

ABOUT THE PROJECT

As this global Life Sciences company continues to grow, acquire new organizations and build robust back-end sytems, they require a Security Engineer to take responsibility for the management of services for Palo Alto’s SOAR product. Your focus will be on continuous evaluation of security posture, identifying areas of improvement and working with teams to evolve IT security at all layers across the organization.

ABOUT THE RESPONSIBILITIES

• Performing hands-on tier-3 support for security technologies.
• Respond to timely security event notifications from the security operations center
• Providing Information Security related guidance and recommendations to internal stakeholders
• Working closely with various internal stakeholders to review, recommend and engineer security technologies in line with corporate information security program.
• Collaborating with Corporate and Operating Company Information Security teams to drive Information Security projects.
• Participating in vulnerability assessments and penetration testing activities.
• Developing detailed designs for implementation of key security infrastructure upgrades and platform recommendations.
• Ensuring adherence to best practices in accordance with information security best practices, industry standards, and corporate policies and procedures.
• Developing and maintaining appropriate Information Security technical documentation as well as providing reviews and updates of existing policies and procedures.
• Identifying opportunities and recommend solutions for improving service, efficiency and effectiveness.
• Performing Information Security analysis and provide metrics and reporting as required.
• Ensuring compliance with all audit requirements including change control procedures and data security.

ABOUT THE QUALIFICATIONS

• 6+ years of demonstrated experience as an information security engineer.
• Strong experience with Palo Alto Cortex XSOAR
• Excellent knowledge of python scripting, API clients, workflow and automation
• Experience working in a security operations center; investigating, responding and/or triaging security events.
• Working knowledge of various privacy, risk, security standards and practices.
• A proven track record of identifying and deploying common secfurity tools and products
• Strong interest and knowledge of security technologies and trends
• Strong written and verbal communication skills.
• Ability to manage and prioritize multiple tasks and projects.
• Experience working in collaborative, team-oriented environments with commitment to results and a proven track record of accomplishments.
• Cisco, Microsoft, AWS and other vendor certifications is an aset.
• Bachelor’s degree in Computer Science or Information Systems, or the equivalent combination of education and training.
• CEH, GCIH/GCIA/GPEN, CISSP or other equivalent security certification is a very strong asset

ABOUT THE ROLE

This is a 6-month contract role, to be performed remotely in the eastern time zone.

APPLY NOW
If you are interested in finding out more please contact us or submit your resume to jobs@systematix.com. Or, if you know someone who meets these qualifications, please forward this assignment.

ABOUT SYSTEMATIX

Systematix is one of North America's largest privately owned National Consulting and Resourcing firms. We provide the highest caliber consulting solutions to a diverse client base that includes all levels of Government and all Private Industry sectors.