Overview The CYBER SECURITY Specialist is responsible for managing processes and technologies to defend and protect BRP’s systems and information assets against cyber‑attack and adversaries. This critical role requires a detailed understanding of cyber security and in-depth knowledge of Endpoint, Networking, Cloud technologies and Identity; especially in the context of CSPM (cloud security posture management) of logging pipelines, observability, and detection engineering know‑how to protect such assets in preparation for increasing complexity and emerging threats. Responsibilities Detection mechanisms that provide comprehensive coverage of cloud security threats and build custom assets‑based detections to tackle new threats. Drive and lead deployment, ongoing orchestration and operationalization of cyber‑security services and products to implement new Threat Detection Controls within the framework of a threat‑informed defense strategy for cloud assets, mainly focusing on Azure and GCP. Lead the design and execution of enterprise security operations processes, procedures, and playbooks related to CSPM, CWPP, and containers. Manage and monitor cloud resource entitlements to reduce access risks, cyber tooling output, and cloud configurations to ensure compliance with security best practices (AWS, Azure, Google Cloud). Oversee detection engineering security operation projects, process improvement, and technology investment in the cloud. Conduct research in security observability, vulnerability assessment, cloud and container security to develop new strategies and deliver solutions to protect against threats. Manage technical aspects of BRP’s cyber technology stack to ensure all necessary detective protections are provided. Respond to monitoring alerts according to defined playbooks and procedures. Implement least‑privilege access policies and ensure compliance with IAM standards; detect and remediate identity anomalies in cloud environments. Implement automated tools to maintain a robust security posture. Qualifications Excellent Azure Security, Microsoft CSPM, and GCP skillset with hands‑on experience. AWS experience is an asset. Hands‑on experience with CSPM, CWP, CIEM, and CNAPP tools. Certifications such as AWS Certified Security – Specialty, Azure Security Engineer, or Google Professional Cloud Security Engineer; any GIAC certification is acceptable. Experience with PKI. Experience with modern authentication technologies such as OAuth2, OpenID Connect, and SAML 2.0. Experience with infrastructure‑as‑code tools, such as HashiCorp Terraform. Experience with CI/CD pipelines and automation. Good understanding of Identity (IAM/PAM) in the context of cloud security as well as on‑prem assets (AD, Entra ID). Bachelor’s degree in information technology, security, or a similar computer‑related field, and 5+ years of information security experience. Experience deploying and orchestrating cloud security services/tools. In‑depth familiarity with workflow tools and ability to develop and improve tools/processes. Solid knowledge of incident response methodologies, best practices, and routines. Skilled at identifying various types of events and incidents and applying the right response framework for each (e.g., information mishandling, security vulnerability, system exploit, malware infection). Medium to advanced understanding of IOCs, Cyber Kill Chain, MITRE ATT&CK and preventive and detective technical controls. #J-18808-Ljbffr