Cloud Network & Cyber Security Engineer
- Full-time
Company Description
About Keypath:
At Keypath, you can be part of something bigger.
As a leading global EdTech company, we partner with world-leading universities to design and deliver the most career-relevant online education programs that help solve our global social and economic challenges.
We are a fast-growing, and fast-moving international team who value collaboration, innovation, and lifelong learning in our mission to unlock greatness in educators, their students, and our people.
We have offices in Melbourne, Sydney, Chicago, Toronto, London, and Kuala Lumpur and we connect, collaborate, and operate as a truly global company. We have experienced tremendous growth since we launched only seven years ago and now have over 700 employees (Keypathers!) across the globe with no intention to slow down.
We put our people first, which means you choose where you want to work from, including if you want to work from home.
Job Description
The Cloud Network and Cyber Security Engineer will report to and assist the VP of IT Infrastructure and Security and will be responsible for designing, implementing, and maintaining secure and scalable cloud and on-premise network architectures. As part of the Infrastructure and Security team, this role will help lead cyber security efforts, securing our sensitive data and critical assets from current and emerging threats, and be the primary technical contact for all information security tooling, security risk and incident mitigation efforts, and documentation in our APAC region. This role will also work closely with the Lead Cyber Security Engineer and cross-functional teams to ensure that our organization’s systems are compliant with industry best practices and regulatory standards.
The Cloud Network and Cyber Security Engineer will provide security and configuration expertise and will work with functional leaders on broad technical initiatives around design, implementation, rollout, and monitoring of cloud enterprise systems in support of Keypath’s global cyber security and cloud roadmap. The Cloud and Network Cyber Security Engineer will also provide mentoring of System Administrators in security-related topics.
ESSENTIAL DUTIES AND RESPONSIBILITIES
- Design and implement scalable and resilient cloud network architectures across multiple cloud platforms (e.g., Azure, AWS) to support our business operations.
- Ensure high availability, performance, and reliability of cloud-based networks by implementing redundancy, load balancing, and fault-tolerant configurations.
- Perform cyber defense incident triage, to include determining scope, urgency, and potential impact, identifying the specific vulnerability, and making recommendations that enable timely remediation. • Collect intrusion artifacts (e.g., source code, malware, Trojans) and use discovered data to enable mitigation of potential cyber defense incidents within the enterprise.
- Collaborate with cross-functional teams to gather requirements and design network solutions that meet business needs.
- Partner with leadership to educate staff in security best practices and requirements laid out in company security and technology policies and standards.
- Enforce policies, procedures, and security controls to ensure compliance with all applicable laws, regulations, and standards, such as SOC 2 and ISO 27001.
- Monitor and report on the effectiveness of the information security and compliance program, providing regular updates to senior management and relevant stakeholders.
- Participate in BC/DR and incident response tabletop exercises.
- In conjunction with 3rd party gap assessments, identify and recommend mitigation for security gaps in existing and proposed architectures.
- Other duties as assigned.
Qualifications
Education:
Bachelor’s degree in Computer Science, Information Systems, or a related field, or a minimum 5-years’ experience in a cyber security or cloud systems engineering role.
Experience:
- Hands-on experience with SIEM, encryption, endpoint protection, anti-virus, security monitoring agents, vulnerability scanning, penetration testing, and data loss prevention required.
- Hands-on experience in migration of on-premises infrastructure to cloud-hosted infrastructure.
- Proficient with Microsoft 365 including Outlook, Word, Excel, PowerPoint, Visio, Project, and Teams.
- Demonstrated ability to collaborate with Legal, IT Management, and functional leaders to drive decisions and move projects forward.
- Experience in leading teams and project management.
- Hands-on experience with a variety of cyber security tools (i.e., vulnerability scanning, pen testing).
- Experience with Microsoft 365 administration (i.e., Entra, Purview, Defender/Intune, etc).
- Basic understanding of ITIL (Information Technology Infrastructure Library) a plus.
- Experience in drafting and maintaining security policies and documenting Standard Operating Procedures (SOP).
Preferred Qualifications
Relevant certifications (e.g., Azure Solutions Architect, CCSP)
Technical skills:
- 5+ years’ experience in operational, maintenance, monitoring, and development of company cloud infrastructure and LAN/WLAN/WAN, including server hardware, operating systems and network administration tools.
- 5+ years’ experience networking, Windows, web servers, virtualization, cloud computing, capacity planning, security, and problem solving.
- 5+ years’ experience with Microsoft servers and desktop environments, including Windows Server and Active Directory/Azure Active Directory.
- 2+ years’ experience with networking hardware (i.e., firewalls, switches, IDS/IPS).
- Experience and knowledge in cyber security frameworks.
Special Requirements Specific to Job:
- Experience with enterprise network security architecture and design.
- Experience with security of data centre or cloud-hosted enterprise infrastructure and applications.
- Ability to be self-driven, with a passion for technology and cyber security.
- Strong decision-making and influencing capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.
- A team-focused mentality with the proven ability to work effectively with diverse stakeholders.
- Demonstrated leadership and management skills.
- Demonstrated knowledge and skills in program and project management and analysis, negotiation, and conflict resolution.
- Demonstrated strong effective communication ability in presentation and advanced writing skills including reflecting sensitivity to tone, audience and organizational politics.
- Ability to communicate highly technical matters effectively to non-technical audiences in public or private forums, across a spectrum of groups, from senior leadership to middle management and staff, demonstrating the ability to clearly define a problem/issue or incident, succinctly describe current status, analyze data and draft reports, presentations and other materials.
- Demonstrates the ability to use active listening skills, oral communication skills to speak effectively and demonstrates outstanding writing skills via e-mail, letters and in person to teams and customers.
- Demonstrated understanding of policies and procedures, best practices and management of incident response.
- Demonstrated understanding and experience developing and implementing organization-wide end-user security education and awareness programs.
- Demonstrated understanding of client relationship management, process mapping and improvement, project management and production support.
Additional Information
*Due to the high volume of applications, only shortlisted candidates will be contacted. Thank you for your understanding.