Cyber Security Resource
About the role
**Cyber Security Resource (12 Month Contract)
Location: Remote
Staffing Placement Opportunity** Core Experience & Background
- 5–8+ years of progressive experience in information security, with a strong focus on cloud security architecture and operations.
- Proven experience securing public cloud platforms (Azure and/or AWS required; GCP an asset), including IaaS, PaaS, and SaaS workloads.
- Hands-on experience supporting regulated environments (e.g., financial services, insurance, healthcare), including protection of PII and sensitive business data.
- Demonstrated ability to operate at both strategic and hands-on levels, influencing architecture while remaining technically deep.
Cloud Security & Architecture
-
Deep understanding of cloud-native security controls, including:
-
Identity and Access Management (IAM), Conditional Access, Privileged Identity Management (PIM)
-
Network security (VNETs/VPCs, firewalls, private endpoints, service endpoints)
-
Data protection (encryption at rest/in transit, key management, HSMs, tokenization)
-
Secure workload design (container security, serverless security, VM hardening)
-
Experience designing and enforcing secure cloud landing zones and governance guardrails.
-
Strong knowledge of shared responsibility models across cloud service providers.
Security Operations & Monitoring
-
Experience implementing and operating cloud security monitoring and detection capabilities such as:
-
CSPM / CNAPP solutions
-
SIEM and SOAR platforms (e.g., Microsoft Sentinel)
-
Native cloud security tooling (e.g., Defender for Cloud, AWS Security Hub)
-
Ability to investigate, respond to, and remediate cloud security incidents.
-
Experience integrating cloud telemetry into enterprise SOC processes.
Risk Management & Compliance
-
Strong background conducting security risk assessments and security threat and risk assessments (STRAs) for cloud services and vendors.
-
Working knowledge of relevant security frameworks and standards:
-
NIST CSF / NIST 800?53
-
ISO 27001/27002
-
CIS Benchmarks and CIS Controls
-
Experience supporting compliance and audit activities (e.g., SOC 2, PCI DSS, SOX, privacy requirements).
DevSecOps & Automation
- Experience embedding security into CI/CD pipelines and infrastructure as code (IaC) (e.g., Terraform, ARM/Bicep).
- Familiarity with secure SDLC practices, code scanning, and cloud configuration validation.
- Ability to define and promote “security as code” and policy as code approaches.
Vendor & Stakeholder Engagement
-
Experience performing third party and SaaS security reviews, including architectural assessments.
-
Ability to partner effectively with:
-
Cloud engineering and platform teams
-
Application development teams
-
Infrastructure, operations, and vendor management
-
Strong written and verbal communication skills, with the ability to explain complex security risks to non technical stakeholders.
Leadership & Professional Skills
- Proven ability to lead
- Strong analytical, documentation, and decision making skills.
Certifications (Preferred)
-
One or more of the following:
-
CISSP, CISM, or CRISC
-
Cloud specific certifications (e.g., AZ?500, AWS Security Specialty)
-
Experience with PCI-DSS
Note; this is an opportunity with a Microserve client.
About Microserve
Microserve is an IT solutions company rooted in a philosophy of long-term partnerships and continuous innovation. Our outstanding team has delivered IT solutions to clients across BC and Alberta for over 35 years. Based in Burnaby BC, Microserve also holds branches in Victoria, Edmonton, and Calgary in addition to service networks across both provinces.
Since 1987 businesses have trusted Microserve for extensive experience and expertise in providing IT solutions across BC and Alberta, a commitment to excellence in all of our service offerings ensuring only the highest level of quality and client satisfaction, and a focus on relationships and dedication to supporting the long-term best interests of our clients. We are committed to excellence in everything that we do. This commitment to maintaining a high level of expertise in the constantly changing IT industry and to developing long-term relationships has allowed us to establish and maintain a strong market position as one of the largest independent IT solution providers in Western Canada.
We provide services in: Managed Services, IT Security Services, Modern Workplace, Data Centre, Backup & Disaster Recovery, Audio Visual Solutions, Cloud Services, IT Staffing, Projects & IT Consulting, IT Procurement, End User Computing, Managed Print Services
Cyber Security Resource
About the role
**Cyber Security Resource (12 Month Contract)
Location: Remote
Staffing Placement Opportunity** Core Experience & Background
- 5–8+ years of progressive experience in information security, with a strong focus on cloud security architecture and operations.
- Proven experience securing public cloud platforms (Azure and/or AWS required; GCP an asset), including IaaS, PaaS, and SaaS workloads.
- Hands-on experience supporting regulated environments (e.g., financial services, insurance, healthcare), including protection of PII and sensitive business data.
- Demonstrated ability to operate at both strategic and hands-on levels, influencing architecture while remaining technically deep.
Cloud Security & Architecture
-
Deep understanding of cloud-native security controls, including:
-
Identity and Access Management (IAM), Conditional Access, Privileged Identity Management (PIM)
-
Network security (VNETs/VPCs, firewalls, private endpoints, service endpoints)
-
Data protection (encryption at rest/in transit, key management, HSMs, tokenization)
-
Secure workload design (container security, serverless security, VM hardening)
-
Experience designing and enforcing secure cloud landing zones and governance guardrails.
-
Strong knowledge of shared responsibility models across cloud service providers.
Security Operations & Monitoring
-
Experience implementing and operating cloud security monitoring and detection capabilities such as:
-
CSPM / CNAPP solutions
-
SIEM and SOAR platforms (e.g., Microsoft Sentinel)
-
Native cloud security tooling (e.g., Defender for Cloud, AWS Security Hub)
-
Ability to investigate, respond to, and remediate cloud security incidents.
-
Experience integrating cloud telemetry into enterprise SOC processes.
Risk Management & Compliance
-
Strong background conducting security risk assessments and security threat and risk assessments (STRAs) for cloud services and vendors.
-
Working knowledge of relevant security frameworks and standards:
-
NIST CSF / NIST 800?53
-
ISO 27001/27002
-
CIS Benchmarks and CIS Controls
-
Experience supporting compliance and audit activities (e.g., SOC 2, PCI DSS, SOX, privacy requirements).
DevSecOps & Automation
- Experience embedding security into CI/CD pipelines and infrastructure as code (IaC) (e.g., Terraform, ARM/Bicep).
- Familiarity with secure SDLC practices, code scanning, and cloud configuration validation.
- Ability to define and promote “security as code” and policy as code approaches.
Vendor & Stakeholder Engagement
-
Experience performing third party and SaaS security reviews, including architectural assessments.
-
Ability to partner effectively with:
-
Cloud engineering and platform teams
-
Application development teams
-
Infrastructure, operations, and vendor management
-
Strong written and verbal communication skills, with the ability to explain complex security risks to non technical stakeholders.
Leadership & Professional Skills
- Proven ability to lead
- Strong analytical, documentation, and decision making skills.
Certifications (Preferred)
-
One or more of the following:
-
CISSP, CISM, or CRISC
-
Cloud specific certifications (e.g., AZ?500, AWS Security Specialty)
-
Experience with PCI-DSS
Note; this is an opportunity with a Microserve client.
About Microserve
Microserve is an IT solutions company rooted in a philosophy of long-term partnerships and continuous innovation. Our outstanding team has delivered IT solutions to clients across BC and Alberta for over 35 years. Based in Burnaby BC, Microserve also holds branches in Victoria, Edmonton, and Calgary in addition to service networks across both provinces.
Since 1987 businesses have trusted Microserve for extensive experience and expertise in providing IT solutions across BC and Alberta, a commitment to excellence in all of our service offerings ensuring only the highest level of quality and client satisfaction, and a focus on relationships and dedication to supporting the long-term best interests of our clients. We are committed to excellence in everything that we do. This commitment to maintaining a high level of expertise in the constantly changing IT industry and to developing long-term relationships has allowed us to establish and maintain a strong market position as one of the largest independent IT solution providers in Western Canada.
We provide services in: Managed Services, IT Security Services, Modern Workplace, Data Centre, Backup & Disaster Recovery, Audio Visual Solutions, Cloud Services, IT Staffing, Projects & IT Consulting, IT Procurement, End User Computing, Managed Print Services