Share this Job

Title:  Linux Security Engineer

Location: 

Waterloo, ON, CA, N2V 1C6 CA

About Descartes: 

Descartes Unites the People and Technology that Move the World
The need for efficient, secure, and agile supply chains and logistics operations has become ever more critical and complex.  By combining innovative technology, powerful trade intelligence and the reach of our network, Descartes helps get goods, information, transportation assets, and people where they’re needed, when they’re needed. 


We’re one of the most broadly deployed logistics and supply chain technology companies in the world. More than 22,000 customers around the globe use our cloud-based solutions to transform the way they move inventory and information to enhance productivity, better serve customers, thrive competitively, keep pace with evolving regulations, and respond to rapidly changing market conditions. Descartes is publicly traded (Nasdaq:DSGX, TSX:DSG) with headquarters in Waterloo, Ontario, Canada, and offices and partners around the world. With record financial performance for more than 16 years, we lead the industry in innovation investment. Every day, logistics service providers, manufacturers, retailers, distributors, and other logistics-intensive businesses of all sizes rely on our scale, stability, and comprehensive solution footprint to move what’s most important to them. Learn more at www.descartes.com.


We’re growing fast and invite you to join our amazing team. 
 

 

We are currently seeking a Linux and Security Engineer to join our Global Linux Team. As a member of the team, you will be responsible for designing and implementing changes and projects required to maintain the highest security standards on our infrastructure.  This includes assessment of current situation, define improvement and actions plans, punctual execution of your tasks, meeting deadlines, provisioning of documentation, cross-training other team members, and managing a knowledge base. You will be reporting to the IT Manager and required to work closely with ISEC and R&D team members.

 

Responsibilities include:
•    Perform ongoing gap analyses on newly released or revised security regulations, standards, guidance, and industry best practices to identify and prioritize remediation activities and work with internal stakeholders to ensure corrective actions are implemented
•    Interact with Infosec on a daily basis to go over new security requirements, assess risks and priority
•    Maintain and improve security of the infrastructure to be compliant with the latest Information security standards.
•    Apply your strong interest in security and understanding of security best practices to assist engineering teams to proactively remediate vulnerabilities.
•    Develop and deliver metrics and reporting of the information security status and progress.
•    Create and maintain relationships with various teams to facilitate implementation and maintenance of information security controls across the enterprise.
•    Responsible for internal and customer-facing applications in a 24/7 environment.
•    Monitoring Linux systems for availability and performance.
•    Conduct and clearly document practical risk assessments and make recommendations for new and/or changes to existing controls to mitigate identified risks.
•    Assist in reviewing responses to outbound Vendor Risk Assessments and tracking of identified deficiencies.
•    Align new acquisitions and system deployments with Standard Operating Procedures and integrate IT Systems.
•    Implement and maintain specific projects, or security best practices to on premise and cloud infrastructure

 

Requirements:
•    Experience with security baselines, security hardening and minimization of attack surface area.
•    Experience in compliance process (PCI, SOC2, HIPA), strong understanding of procedures and requirements.
•    Experience in web/OS’s security patching.
•    Experience in delivering vulnerability fixes to production environments.
•    Experience in identity management.
•    Experience with internal security audits, external penetration tests and internal scans.
•    Understanding of modern endpoint protection such as EDR, Machine learning
•    Familiar with principles of modern Log Management including SIEM
•    Strong skills in network, OS’s (RedHat/Rocky) and application security.
•    Experience with configuration management tool such as Ansible.
•    Experience in Public Cloud environments (AWS,Google and Azure).
•    Advanced experience with at least one scripting or programming language (Bash, Perl, Python, etc.)
•    Strong knowledge with pipelines (Gitlab, Azure DevOps etc.).
•    Strong knowledge with Kubernetes and Rancher.
•    Strong knowledge of Apache and Nginx server configuration and management. 
•    Strong knowledge with LDAP, SSL, SMTP, DNS, SFTP/FTPS, Zabbix, GITLAB, NTP
•    Experience with incident, change and problem management procedures in an ITIL driven environment.

 

Soft Skills
•    Excellent communication skills.
•    Ability to adapt to new environments, and the ability to identify, propose and implement changes and improvements
•    Strong problem-solving skills
•    Ability to work in a deadline driven, fast-paced environment
•    Ability to effectively handle multiple concurrent projects and/or tasks.
•    Collaborative team player, excited and willing to do what it takes to get the job done


Qualifications and Certification in any of the following is strongly desired:
•    We are seeking an assertive, adaptable individual with excellent analytical skills, and who will thrive as both a team player and as an individual contributor.
•    Red Hat Certified (RHCSA) or (RHCE) 
•    Red Had Ansible Automation Certification. 
•    Kubernetes certified. 
•    Azure/AWS certified.

•    Any information security certifications are an asset, including but not limited to CISM, CISSP, CCSP, CISA, CRISC, CEH, Security+

 

Required Education/Year of Experience:
•    College diploma or university degree in computer science or equivalent.
•    5 years of hands-on, verifiable Linux experience.

 

Location: This is a remote opportunity open to applicants authorized to work in Canada.

 

 

Join Us
As we scale, we’re looking for new doers, collaborators and innovators to join Descartes in uniting the people and technology that move the world as the Global Leader in Logistics and Supply Chain Technology. We’re entrepreneurial, hardworking, geeky-in-a-good way problem solvers. Guided by our values, we nurture a TEAM focused culture that invests in people and creates opportunities for advancement across a broad spectrum of career paths. We prioritize work-life balance and foster an environment with the space to take ownership, to be heard, and to carve a path for your individual accomplishments to help drive our success. At Descartes, everyone has a voice and the best argument wins, regardless of who makes it. We offer competitive compensation, great benefits, remote and flexible work hours, and the opportunity to join a company on an awesome mission with a great existing team and trajectory.


Descartes also has a deep sense of environmental responsibility. Learn more about how we helped our customers save over 552,000 metric tons of CO2 in 2020 by reducing fuel and paper consumption: https://www.descartes.com/who-we-are/social-responsibility-sustainability/environmental-impact.  Join a team that’s committed to working with customers to conserve resources and enhance sustainability.

If you feel you have 70% of the qualifications we are looking for, and Descartes sounds like the team and the mission you want to be part of, apply now. We can't promise it will be a fit, but we do promise to consider your experience.

 

Due to COVID-19, we've implemented a virtual hiring process and continue to interview candidates by phone or video (Microsoft TEAMS) and are on-boarding new hires remotely. We value the safety of each member of our community because we know we're all in this together.

 

We are an Equal Employment employer. We do not discriminate in hiring on the basis of sex, gender identity, sexual orientation, race, color, religious creed, national origin, physical or mental disability, protected status, or any other characteristic protected by federal, provincial, or local law. For more information about our commitment to equal employment opportunity, please review our Code of Business Conduct and Ethics at Descartes.com. Descartes is committed to working with and providing reasonable accommodations to job applicants with disabilities. Applicants in North America with a disability who require a reasonable accommodation for any part of the application or hiring process can email us at hrna@descartes.com. Provide your name and contact information along with the accommodation needed to assist you with the application process. Your request will be responded to as soon as possible. Reasonable accommodations will be determined on a case-by-case basis.


Job Segment: Information Security, Linux, Open Source, Compliance, Computer Science, Technology, Legal