Information Security Engineer at Deel ensuring cybersecurity for global operations. Act as SME in implementing security tools and frameworks across remote endpoints and cloud assets.
Responsibilities
Act as the Subject Matter Expert (SME) for Endpoint Detection and Response (EDR) tools and processes, including optimizing configurations and policies, developing custom threat detection rules, and proactively improving Deel’s overall security posture for remote endpoints (macOS and Windows) and cloud assets (e.g., VMs).
Configure, manage, and tune the full suite of security policies within Secure Web Gateway (SWG), Cloud Access Security Broker (CASB), and Zero Trust Network Access (ZTNA). Assist remote colleagues with a seamless experience by troubleshooting end-user issues as needed.
Continuously improve SaaS security posture using SaaS Security Posture Management (SSPM) tools and related processes. Collaborate with diverse application owners to understand security controls and remediate configuration drift across our wide range of SaaS applications from baseline.
Develop rigorous review, approval, policy enforcement, and auditing processes for browser extensions and third-party OAuth applications for SaaS platforms such as Google Workspace, GitHub, Jira, etc., to meet security and privacy standards.
Design, implement, and audit security policies for enterprise browsers (e.g., Island, Chrome Enterprise), including controlling access to sensitive web applications, configuring data loss prevention (DLP), ZTNA, and ensuring a secure web browsing experience.
Manage DLP policies across endpoints, network, SaaS applications, and cloud assets, directly supporting the "Crawl-Walk-Run" program phases. Ensure DLP policies comply with diverse data sovereignty, privacy (GDPR, CCPA, etc.), and national regulatory requirements.
Run vulnerability management programs for endpoints and servers and ensure they are patched according to policy in collaboration with stakeholders.
Requirements
5+ years of experience in cybersecurity
Hands-on experience with security tools such as EDR, SWG, CASB, ZTNA, and DLP
Familiarity with cybersecurity frameworks and best practices such as MITRE, NIST, CIS, ISO 27001, and SOC
Experience collaborating with internal stakeholders to roll out enterprise security solutions
Ability to use cloud platforms such as AWS, GCP, and Azure to host security tooling. Experience using SIEM to query security telemetry is a plus.
Experience managing secure email gateways is a plus
Excellent English, both verbal and written
CISSP is a plus
Benefits
Stock grant opportunities depending on role, employment status, and location
Additional perks and benefits based on employment status and country
Flexible remote work, including optional WeWork access
Hiring a Threat Modeler / Security Architect with development background for hybrid full - time role in Canada, focusing on application security, threat modeling, and DevSecOps.
Network and Perimeter Security IT Specialist I at Enbridge overseeing enterprise security architecture and leading large - scale security initiatives. Collaborating across teams to ensure secure solutions and compliance.
Network & Perimeter Security Specialist II - Firewall at Enbridge enhancing security architectures. Providing technical leadership and driving enterprise standards for firewall and network security.
Lead critical cybersecurity transformation programmes at Hewlett Packard Enterprise, ensuring alignment with enterprise priorities and delivering complex initiatives. Collaborate with IT, cybersecurity, and business leaders.
Staff Engineer responsible for designing scalable security solutions and collaborating with engineering at Twilio. Empowering security partnerships across products and platforms while mitigating risks.
Head of Infrastructure & Security responsible for cloud infrastructure on GCP and security programs. Leading SaaS development and technical teams at Rebus and Longbow Advantage.
Information Security Lead responsible for managing security programs at Dentons Canada. Overseeing security architecture, operations, incident response, and data protection initiatives.
Cybersecurity expert overseeing information defense, threat detection, and incident response at Investissement Québec. Leading security operations and leveraging AI for effective asset protection.
Lead cybersecurity initiatives and develop strategy for public broadcaster CBC/Radio - Canada. Shape technology road map, collaborate on enterprise architecture, and ensure policy compliance.