Security Specialist

About Beem Credit Union 

Beem is a new credit union with 80 years of history. Rising to the rapidly evolving challenges of the financial services industry and inspired by cooperative values, our founding credit unions recognized that we can do more together. Beem means light. It means energy. It means a brighter financial future. United as Beem, we are combining our strengths to better serve our members. As of January 1, 2025, Beem will be one of BC’s largest provincially regulated credit unions, supporting the financial wellness of 193,000 members from 66 branches across the province with $17 billion in assets under administration. Learn more about our journey at www.beemcreditunion.ca.

What this role is all about:

As a Security Specialist, you will secure Azure cloud environments by implementing and managing comprehensive Azure security services, including Azure Security Center, Azure Sentinel, and Azure Key Vault. Design and manage Development, Security, and Operations (DevSecOps) practices to automate security testing and compliance checks throughout the Software Development Lifecycle (SDLC). Conduct security assessments of Azure deployments, Infrastructure as Code (IaC), container orchestration, and serverless computing configurations against industry best practices. Automate security tasks using PowerShell, Azure Command-Line Interface (CLI), and Azure DevOps, and integrate security scanning tools into Continuous Integration/Continuous Deployment (CI/CD) pipelines. Proactively hunt for cloud-based threats using Security Information and Event Management (SIEM) platforms and develop threat hunting use cases leveraging threat intelligence. Optimize Security Operations Center (SOC) operations for cloud security monitoring and incident response and enhance security controls through audits and vulnerability management programs. Lead incident response activities for cloud-related incidents and collaborate with IT teams to integrate security best practices into the cloud SDLC, fostering a security-first culture.

This role is open to remote working arrangements within British Columbia.

What you’ll do:

Cloud Security (Azure)

• Secure Azure cloud environments by implementing and managing Azure security services, including Azure Security Center, Azure Sentinel, Azure Key Vault, Azure Network Security Groups (NSGs), Azure AD Identity Protection, Azure Defender, and Azure Policy. Design, implement, and manage DevSecOps practices to automate security testing, vulnerability management, and compliance checks throughout the software development lifecycle (SDLC) in Azure.
• Conduct security assessments of Azure deployments, Infrastructure as Code (IaC) (e.g., Terraform), container orchestration (e.g., ARO), and serverless computing (e.g., Azure Functions) configurations against security best practices (e.g., CIS Azure Benchmark, NIST 800-53, CSA Cloud Controls Matrix).
• Automate security tasks in Azure using PowerShell, Azure CLI, Azure DevOps, or other scripting/automation languages.
• Implement and manage security scanning tools (SAST, DAST, IAST, SCA) and integrate them into CI/CD pipelines within Azure DevOps or similar platforms.
• Manage and enforce security policies as code using tools and techniques like Azure Policy, Open Policy Agent (OPA), or similar.
• Implement and manage cloud security posture management (CSPM) and cloud workload protection (CWP) tools.
• Develop and implement secure cloud deployment patterns and best practices.

Threat Hunting

• Proactively hunt for cloud-based threats and malicious activity using SIEM platforms (e.g., Azure Sentinel), EDR solutions, and cloud-native security tools.
• Develop and implement threat hunting use cases, queries, and correlation rules specific to cloud environments, leveraging threat intelligence and the MITRE ATT&CK framework.
• Analyze cloud logs (e.g., Azure Activity Logs, Azure Diagnostic Logs), network traffic, and other data sources to detect anomalies and indicators of compromise (IOCs).

SOC Optimization

• Contribute to the optimization of SOC operations with a focus on cloud security monitoring and incident response.
• Develop and refine SIEM correlation rules, alerts, and dashboards tailored for cloud environments to improve threat detection and reduce false positives.
• Implement and manage incident response playbooks and workflows within the SOC, specifically for cloud-related incidents.
• Evaluate and recommend new cloud security technologies and automation to enhance SOC capabilities.

Improving Security Controls

• Evaluate, recommend, and implement enhancements to cloud-native security controls and processes.
• Develop and maintain security policies, standards, and procedures specific to cloud environments and DevSecOps practices, based on industry best practices and regulatory requirements.
• Conduct cloud security audits and assessments to identify control gaps and ensure compliance with cloud security frameworks.
• Implement and manage cloud vulnerability management programs, including scanning, prioritization, and remediation.

Incident Response

• Lead or participate in security incident response activities for cloud-related incidents, including incident triage, containment, eradication, and recovery.
• Conduct forensic analysis of compromised cloud resources to determine the scope and impact of incidents.
• Document incident details, timelines, and actions taken in incident reports.
• Develop and implement post-incident remediation plans and lessons learned to improve cloud security resilience.

Collaboration

• Collaborate with IT teams (e.g., cloud Infrastructure, software development) to integrate security best practices into all phases of the cloud system development life cycle (SDLC) and promote a security-first culture in the cloud.
• Communicate technical cloud security concepts and risks to both technical and non-technical audiences.

A little about your qualifications:

• Bachelor's degree in computer science, Information Security, or a related field.
• Minimum 6-8 years of experience in information security engineering or operations, with a strong focus on cloud security.
• Relevant security certifications (e.g., CISSP, CEH, Azure Security Engineer Associate, Azure DevOps Engineer Expert, Certified Cloud Security Professional (CCSP)).
• Proficiency in scripting and automation (e.g., Python, PowerShell, Bash).
• Knowledge of security frameworks and standards (e.g., NIST, ISO 27001, SOC 2, CSA Cloud Controls Matrix).
• Experience with Infrastructure as Code (IaC) security and cloud-native security tools.
• Proven experience in threat hunting within cloud environments using SIEM (e.g., Splunk, Azure Sentinel), EDR, and cloud-native security tools.
• Solid understanding of SOC operations and incident response, with specific emphasis on cloud security.
• In-depth knowledge of Azure cloud security and DevSecOps practices, including security automation and integration within CI/CD pipelines.
• Extensive experience with Azure security services and tools, including Azure Security Center, Azure Sentinel, Azure DevOps, and Infrastructure as Code (IaC).
• Strong ability to analyze and improve cloud-native security controls and process

What you’ll gain:

• Competitive base salary; reviewed annually. The salary range for this position is $95,500 to $119,000 and starting salary will be based on related education, accreditations, training, and experience.
• An incentive bonus plan.
• Extended health care, dental coverage, and disability coverage
• Favorable vacation benefits - paid time off to recharge!
• RRSP with Employer contributions, and the option to contribute yourself.
• Special banking perks - including mortgage and lending products.

At Beem we are BOLD and Always Welcoming and our values are at the forefront of everything we do!

• Build Together: You are a team player who thrives on collaboration, sparks ideas, and fosters inclusivity.
• Own It: You are ready to take charge, drive change, and deliver outstanding results.
• Lead with Agility: You are a dynamic, adaptable thinker who thrives on challenge and innovation.
• Driven by Curiosity: You are eager to explore, learn, and shape the future.

Ready to join?

Visit us at www.beemcreditunion.ca to learn more about what it’s like to work for Beem Credit Union! We sincerely thank all applicants for their interest; however, only shortlisted candidates will be contacted for an interview.

We at Beem Credit Union are committed to ensuring inclusive employment practices and an accessible business environment for our employees. We do not discriminate based on any protected attribute covered by the Human Rights Code and encourage all qualified candidates to apply. We are committed to a fair and equitable hiring process for all candidates. All applications are reviewed by a member of our team.