Security Engineer

About the Position

***This vacancy is a remote role intended for Nova Scotia residents***

Technology is at the heart of driving Admiral’s business.

About Admiral Tech

With a history of innovation, UK financial services leader Admiral Group continues to expand our world-class Tech department in Canada.

From Cloud through to DevOps, our technology department comprises over 600 people and is an exciting and fast-paced environment. If you’re looking for a technically challenging and rewarding role with outstanding support and opportunities for progression, you’ve come to the right place.

More on Admiral Tech: https://www.admiraljobs.co.uk/admiral-tech

About Admiral Canada

One of the UK’s most recognizable insurance and financial service providers, Admiral offers insurance, loans, and various other products to over 9.1 million international customers.

In 2007, Admiral launched its Canadian office in Halifax with a small group of 20 staff. Today, we employ over 400 people throughout Nova Scotia who support our UK customers with home and motor insurance policies. 

In 2022, we introduced Admiral Tech to Canada, providing wrap-around global support to our business. With the industry's forward momentum and a vibrant, homegrown talent pool of up-and-coming professionals, we’ve quickly become a formidable tech option within Admiral Group. This role is an exceptional opportunity to influence the foundation of Admiral Tech in Canada.

Read more about Admiral Tech in Canada: https://joinadmiral.ca/life-at-admiral/post/62/Admiral-UK's-Information-Security-Growth-Anchored-by-NS-&-BC-Talent/

About the Job – Security Engineer

Our Security Engineers are responsible for implementing, configuring, and evolving our security technology portfolio.

The Security Engineering team forms part of the Information Security Operations team.  This is a proactive role, and the successful candidate will have strong analytical and troubleshooting skills and a desire to learn new technologies.

The role would suit someone who has worked with a diverse set of IT/security products and has demonstratable experience securing cloud technologies.

Main Duties

• The Information Security Engineers will:
• Support day to day maintenance of Security tooling.
• Take a threat led approach to generating mitigation and countermeasures.
• Maximising security value from existing investments.
• Understand the key risks the organisation faces, the key tactics techniques and procedures that likely threat actors will exploit and create control boundaries to intersect these domains.
• Work collaboratively with the wider Information Security team.  This includes working with: The Incident Response team, assisting with incidents and enhancing Incident Response tooling; Security Architecture to ensure that any existing constraints are overcome within forward looking plans; and with the Security Consultants to provide additional technical knowledge.
• Take part in post incident reviews and propose engineering resolutions to improve results in any future recurrence.
• Work collaboratively with the Development and Cloud Platform teams to enhance security in all aspects of the application development lifecycle.
• Work alongside Security Architects and Risk Consultants to define and improve the Cloud Security process and tooling.
• Champion best practice methods for web application hosting and protection, endpoint management and software defined protection.
• Monitor the capacity of security tooling and supporting infrastructure and project future capacity for security products.
• Recognise that telemetry for security products will increasingly be curated in the cloud and be prepared to develop API endpoints and connections to collect and collate this knowledge.
• Understand and develop security configurations for micro services, serverless computing and software as service security solutions.
• Work with third-party suppliers of the Security Products.
• Participate in the Information Security On-Call rota (optional).

Qualifications

Experience and Qualifications Required

Essential:

• Proven experience of supporting IT/Security infrastructure.
• Strong technical background is required with knowledge of managing, supporting, and creating policy for at least two of the following areas:
  • Internet Filtering
  • Email Filtering
  • EndPoint Detection and Response
  • Host Based Firewalling, HIDS/HIPS
  • Antimalware
• Cloud Security Tools (e.g. Google Cloud Command Security Center, Azure Security Centre)
• The ability to learn new technology approaches and make rapid decisions on the best way to use these technology advancements for the betterment of the overall security posture.
• Excellent communication skills. The ability to communicate effectively, constructively, confidently, and professionally is key to the success in the role as is the ability to work with IT and Information Security teams and the wider business.
• An thorough knowledge of Information Security principles and an understanding of the Cyber Kill Chain, MITRE ATT&CK and other information security defence and intelligence frameworks.
• Keen attention to detail and excellent analytical skills.
• Ability to actively manage workloads to meet business and department requirements.

Desirable:

• One or more technical Information Security Certifications such as:
  • CompTIA: Security+
  • GIAC Certification: GCWN, GSEC
• Degree in an Information Security / Computing discipline.
• Experience in ITIL concepts.
• Experience working within in an Agile framework.
• Experience with a least 1 of the main cloud vendors (Amazon Web Services, Azure, Google Cloud Platform)
• Experience of DevOps tooling (Git, CI/CD, Terraform, Ansible)
• Experience of Docker and Kubernetes.
• Familiarity with a programming or scripting language.
• Familiarity with regex / regular expressions.
• A working knowledge of financial services and the typical business processes involved together with the threat actors and their relevant tactics, techniques and procedures would be of significant advantage.

Salary, Benefits and Work-Life Balance

We believe in offering a competitive salary and remuneration package that reflects the experience and qualifications of the successful candidate. We welcome CVs from all candidates who meet the requirements, and we are happy to discuss the details of the compensation package. 

Admiral takes pride in being a diverse business that prioritises its people and customers. We offer great benefits to ensure our employees have an exceptional work-life balance, which is a key reason why we consistently rank as one of Canada's and the world's best workplaces. You will have an element of scheduling autonomy to strike an appropriate balance between personal flexibility and business needs. 

All colleagues at Admiral are entitled to 34 days of paid time off annually, which includes statutory holidays. As you continue your service with us, the amount of paid time off will increase, up to a maximum of 39 days, including statutory holidays. We believe in providing ample time for rest and rejuvenation.

You can view some of our other key benefits here: https://joinadmiral.ca/employee-benefits/

Our Commitment to You

Admiral is committed to fostering a diverse and inclusive workplace. We are proud to be an equal opportunities employer and do not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, ability, age, family status, or any other legally protected status. We believe that all qualified applicants should receive equal consideration for employment.

About the Company

Admiral Insurance
6940 Mumford Rd #200
Halifax, Nova Scotia B3L 0B7

Company Contact

Jennifer Porter
jennifer.porter@admiralgroup.co.uk
Preferred Contact: http://joinadmiral.ca/vacancies/395/PostSec/security_engineer/nova_scotia/

Documents to be Forwarded

• Resume