IT Security (Cloud)

📍 Job Overview

• Job Title: IT Security (Cloud)
• Company: General Dynamics Mission Systems International
• Location: Ottawa, Ontario, Canada
• Job Type: Full-time
• Category: Cybersecurity & Infrastructure
• Date Posted: 2025-06-27
• Experience Level: 5-10 years
• Remote Status: On-site/Hybrid

🚀 Role Summary

• Design, implement, and manage robust security architectures for cloud infrastructure and applications in AWS, Azure, and M365.
• Collaborate with internal stakeholders to ensure cloud security strategies align with business goals and regulatory requirements.
• Leverage NIST security frameworks, including NIST 800-171, and Canadian Centre for Cyber Security cloud protection profiles to safeguard cloud environments.

📝 Enhancement Note: This role requires a strong understanding of cloud security principles and experience working with multiple cloud platforms. Familiarity with NIST security frameworks and Canadian cybersecurity regulations is crucial for success in this position.

💻 Primary Responsibilities

• Security Architecture Design: Lead the design, development, and implementation of secure on-premise and cloud architectures that align with the organization's security policies, regulatory requirements, and industry best practices.
• Risk Management and Compliance: Ensure security solutions comply with NIST security frameworks, including NIST 800-171, and work closely with compliance teams to assess and address risks. Develop and maintain security controls to meet the requirements of Canadian Centre for Cyber Security cloud protection profiles.
• Cloud Platform Security: Implement and manage security controls for cloud environments (AWS, Microsoft), including identity and access management (IAM), encryption, network security, monitoring, incident response, and vulnerability management.
• Cross-Functional Collaboration: Collaborate with internal stakeholders (security, engineering, DevOps, etc.) to ensure cloud security strategies align with business goals and mission objectives.
• Monitoring and Incident Response: Assist Security Operations for monitoring cloud environments for potential threats and vulnerabilities. Support incident response and investigation efforts related to cloud security breaches or compromises.
• Security Best Practices and Policies: Develop, review, and enforce cloud security policies, standards, and procedures, ensuring they reflect the latest industry practices and regulatory requirements.
• Security Audits and Assessments: Support regular security assessments, audits, and penetration tests to ensure continuous security improvements and compliance with relevant frameworks (NIST, CCCS, etc.).
• Training and Mentorship: Provide guidance and mentorship to junior team members and other departments on cloud security best practices and procedures.

🎓 Skills & Qualifications

Education: Bachelor's degree in Computer Science, Information Technology, or a related field. Relevant certifications such as CISSP, CCSP, AWS Certified Security Specialty, Microsoft Certified: Azure Security Engineer Associate, or similar are preferred.

Experience: Minimum of five (5) years of experience working in IT Security within the defense or government sector, with a focus on cloud security.

Required Skills:

• Proven experience in designing, implementing, and securing cloud solutions in AWS, Azure, and M365.
• In-depth knowledge of NIST security frameworks, including NIST 800-171, and experience with the Canadian Centre for Cyber Security cloud protection profiles.
• Strong understanding of network security, IAM, encryption, firewalls, and security automation in cloud platforms.
• Excellent written and verbal communication skills, with the ability to explain complex technical security issues to non-technical stakeholders.

Preferred Skills:

• Experience with cloud security automation tools and DevSecOps practices.
• Familiarity with threat intelligence platforms and security orchestration tools.
• Knowledge of additional security frameworks (ISO 27001, Centre for Internet Security (CIS), SOC2 etc.) and government compliance programs.

📝 Enhancement Note: While not explicitly stated, experience with containerization (e.g., Docker) and orchestration (e.g., Kubernetes) tools would be beneficial for managing cloud security in a dynamic environment.

📊 Web Portfolio & Project Requirements

Portfolio Essentials:

• Case studies demonstrating cloud security architecture design and implementation in AWS, Azure, or M365.
• Examples of risk assessments and security controls implemented to meet NIST 800-171 and Canadian Centre for Cyber Security cloud protection profiles requirements.
• Documentation showcasing security policies, standards, and procedures developed for cloud environments.

Technical Documentation:

• Code samples or scripts demonstrating security automation and incident response capabilities.
• Reports or presentations detailing security audits, penetration tests, and remediation efforts.
• Resumes and cover letters highlighting relevant experience, certifications, and skills.

💵 Compensation & Benefits

Salary Range: CAD 110,000 - CAD 150,000 per year (based on market research and experience level)

Benefits:

• Flexible Work Environment: On-site and Hybrid positions available, with options for compressed work weeks, flexible start times, and shut down periods.
• Professional Development: Regular progress reviews, educational assistance, professional designations and certification support, training, and more.
• Total Rewards: Health, dental, and other benefits, with early access to a pension plan and various perks acknowledging employee contributions.

Working Hours: 40 hours per week, with flexible scheduling options.

📝 Enhancement Note: The provided salary range is an estimate based on market research and the candidate's experience level. Actual compensation may vary based on the organization's internal policies and the candidate's negotiation skills.

🎯 Team & Company Context

🏢 Company Culture

Industry: Defense and government sectors, focusing on mission-critical systems and sensitive data protection.

Company Size: Medium to large-sized organization, providing opportunities for collaboration and growth within a structured environment.

Founded: 1954, with a rich history in defense and aerospace industries.

Team Structure:

• Cross-functional teams, including security, engineering, DevOps, and other departments.
• Collaborative environment, with a focus on knowledge sharing and mentorship.

Development Methodology:

• Agile development processes, with a focus on continuous integration and deployment.
• Regular security assessments, audits, and penetration tests to ensure continuous security improvements.

Company Website: General Dynamics Mission Systems International

📝 Enhancement Note: General Dynamics Mission Systems International places a strong emphasis on professional development and growth opportunities for its employees. This is reflected in their commitment to providing a flexible work environment, regular progress reviews, and educational assistance.

📈 Career & Growth Analysis

IT Security (Cloud) Career Level: This role is at the senior or mid-level career stage, with a focus on designing, implementing, and managing security architectures for cloud environments. The ideal candidate will have a strong understanding of cloud security principles and experience working with multiple cloud platforms.

Reporting Structure: This role reports directly to the IT Security Manager and collaborates with various internal stakeholders, including security, engineering, DevOps, and compliance teams.

Technical Impact: The IT Security (Cloud) is responsible for safeguarding cloud infrastructure and applications, ensuring they meet the organization's security policies, regulatory requirements, and industry best practices. Their work directly impacts the organization's ability to protect sensitive data and maintain the integrity of its systems.

Growth Opportunities:

• Technical Growth: Opportunities to expand expertise in cloud security, emerging technologies, and additional security frameworks.
• Leadership Growth: Potential to take on mentorship roles, lead projects, or move into management positions as the organization grows and evolves.
• Career Progression: With experience and demonstrated success, candidates may progress to roles such as Senior IT Security Specialist, IT Security Manager, or other related positions within the organization or the broader defense and government sectors.

📝 Enhancement Note: General Dynamics Mission Systems International offers various growth opportunities for IT Security (Cloud) professionals, including technical skill development, mentorship, and leadership roles. Candidates should be proactive in seeking out these opportunities and demonstrating their commitment to professional growth.

🌐 Work Environment

Office Type: Modern, collaborative office space with dedicated workstations, meeting rooms, and breakout areas.

Office Location(s): 1941 Robertson Rd, Nepean, ON K2H 5B7, Canada

Workspace Context:

• Collaborative Environment: Open-plan workspaces that encourage interaction and knowledge sharing among team members.
• Technical Infrastructure: Access to cutting-edge tools, software, and resources to support cloud security efforts.
• Cross-Functional Collaboration: Opportunities to work with various internal teams, including security, engineering, DevOps, and compliance.

Work Schedule: Flexible scheduling options, including compressed work weeks, flexible start times, and shut down periods.

📝 Enhancement Note: General Dynamics Mission Systems International fosters a collaborative and inclusive work environment, with a focus on knowledge sharing and professional development. Candidates can expect to work alongside experienced professionals and have access to the latest tools and resources to support their growth and success.

📄 Application & Technical Interview Process

Interview Process:

1. Phone/Video Screen: A brief conversation to assess communication skills and technical fit for the role.
2. Technical Assessment: A hands-on exercise or case study focusing on cloud security architecture design, risk management, and incident response.
3. Behavioral Interview: A discussion of past experiences, problem-solving skills, and cultural fit with the organization.
4. Final Interview: A meeting with key stakeholders to discuss the candidate's fit for the role and the organization's needs.

Portfolio Review Tips:

• Highlight cloud security architecture design projects, risk assessments, and security controls implemented to meet NIST 800-171 and Canadian Centre for Cyber Security cloud protection profiles requirements.
• Include examples of security policies, standards, and procedures developed for cloud environments.
• Prepare a live demo or presentation showcasing your technical skills and understanding of cloud security principles.

Technical Challenge Preparation:

• Brush up on cloud security principles, NIST security frameworks, and Canadian cybersecurity regulations.
• Practice designing, implementing, and managing security architectures for cloud environments using AWS, Azure, or M365.
• Prepare for incident response scenarios and risk assessment exercises.

ATS Keywords: [Cloud Security, IT Security, NIST 800-171, AWS, Azure, M365, Risk Management, Compliance, Network Security, IAM, Encryption, Incident Response, Vulnerability Management, Security Audits, Penetration Testing, Mentorship, DevSecOps, Threat Intelligence, Security Orchestration, Security Frameworks, ISO 27001, Centre for Internet Security (CIS), SOC2, Canadian Centre for Cyber Security]

📝 Enhancement Note: The interview process for the IT Security (Cloud) role at General Dynamics Mission Systems International is designed to assess the candidate's technical skills, problem-solving abilities, and cultural fit with the organization. Candidates should be prepared to discuss their experience with cloud security principles, NIST security frameworks, and Canadian cybersecurity regulations, as well as their approach to risk management, incident response, and security best practices.

🛠 Technology Stack & Web Infrastructure

Cloud Platforms:

• Amazon Web Services (AWS)
• Microsoft Azure
• Microsoft 365 (M365)

Security Tools & Frameworks:

• NIST security frameworks, including NIST 800-171
• Canadian Centre for Cyber Security cloud protection profiles
• Identity and Access Management (IAM) tools
• Encryption tools and best practices
• Network security tools and best practices
• Monitoring and incident response tools
• Vulnerability management tools
• Security automation and DevSecOps tools

Collaboration & Productivity Tools:

• Microsoft Office Suite
• Project management tools (e.g., Jira, Asana, Trello)
• Communication and collaboration platforms (e.g., Microsoft Teams, Slack)

📝 Enhancement Note: The technology stack for the IT Security (Cloud) role at General Dynamics Mission Systems International is focused on cloud security principles, NIST security frameworks, and Canadian cybersecurity regulations. Candidates should have experience working with multiple cloud platforms, security tools, and collaboration tools to be successful in this role.

👥 Team Culture & Values

IT Security Values:

• Proactive Security: Anticipate and mitigate potential security threats and vulnerabilities before they impact the organization.
• Defense in Depth: Implement multiple layers of security controls to protect cloud environments and sensitive data.
• Least Privilege: Enforce strict access controls and identity management principles to limit potential damage in case of a breach.
• Continuous Improvement: Regularly review and update security policies, standards, and procedures to reflect industry best practices and emerging threats.
• Collaboration: Work closely with internal stakeholders to ensure cloud security strategies align with business goals and regulatory requirements.

Collaboration Style:

• Cross-Functional Integration: Collaborate with security, engineering, DevOps, and compliance teams to ensure cloud security strategies align with business goals and mission objectives.
• Code Review Culture: Regularly review and assess security controls, policies, and procedures to ensure they meet the organization's standards and best practices.
• Knowledge Sharing: Foster a culture of learning and growth by sharing expertise, mentoring junior team members, and participating in industry events and conferences.

📝 Enhancement Note: General Dynamics Mission Systems International fosters a collaborative and inclusive team culture, with a focus on knowledge sharing, professional development, and continuous improvement. Candidates should be prepared to work closely with internal stakeholders and contribute to the organization's security goals and objectives.

⚡ Challenges & Growth Opportunities

Technical Challenges:

• Cloud Security Architecture Design: Design, implement, and manage secure cloud architectures that meet the organization's security policies, regulatory requirements, and industry best practices.
• Risk Management: Identify and mitigate potential risks to cloud environments and sensitive data, ensuring compliance with NIST security frameworks and Canadian Centre for Cyber Security cloud protection profiles.
• Incident Response: Develop and maintain incident response plans to minimize the impact of security breaches or compromises in cloud environments.
• Emerging Technologies: Stay up-to-date with emerging cloud security trends, tools, and best practices to ensure the organization remains at the forefront of cloud security.

Learning & Development Opportunities:

• Technical Skill Development: Expand expertise in cloud security, emerging technologies, and additional security frameworks through training, certifications, and hands-on experience.
• Mentorship: Provide guidance and support to junior team members and other departments on cloud security best practices and procedures.
• Leadership Development: Develop leadership skills through mentorship, project management, and architecture decision-making opportunities.

📝 Enhancement Note: The IT Security (Cloud) role at General Dynamics Mission Systems International presents various technical challenges and growth opportunities for candidates looking to advance their careers in cloud security. By embracing these challenges and seeking out learning and development opportunities, candidates can position themselves for success in this role and the broader defense and government sectors.

💡 Interview Preparation

Technical Questions:

• Cloud Security Architecture Design: Describe your approach to designing, implementing, and managing secure cloud architectures in AWS, Azure, or M365. Provide examples of your experience with NIST security frameworks and Canadian Centre for Cyber Security cloud protection profiles.
• Risk Management: Explain your process for identifying and mitigating potential risks to cloud environments and sensitive data. Discuss your experience with NIST 800-171 and other relevant security frameworks.
• Incident Response: Walk through your incident response plan for cloud security breaches or compromises. Describe your approach to minimizing the impact of security incidents and ensuring business continuity.

Company & Culture Questions:

• Company Culture: Describe what you value in a company culture and how you have demonstrated your ability to thrive in a collaborative and inclusive work environment.
• Cloud Security Strategy: Explain how you would align cloud security strategies with business goals and mission objectives. Discuss your experience working with internal stakeholders and cross-functional teams.
• Professional Development: Describe your approach to professional development and growth. Discuss your experience with training, certifications, and mentorship opportunities.

Portfolio Presentation Strategy:

• Cloud Security Architecture Design: Prepare a live demo or presentation showcasing your experience with cloud security architecture design, risk management, and incident response.
• Risk Assessment: Include examples of risk assessments and security controls implemented to meet NIST 800-171 and Canadian Centre for Cyber Security cloud protection profiles requirements.
• Security Policies and Procedures: Highlight your experience developing, reviewing, and enforcing cloud security policies, standards, and procedures.

📝 Enhancement Note: The interview process for the IT Security (Cloud) role at General Dynamics Mission Systems International is designed to assess the candidate's technical skills, problem-solving abilities, and cultural fit with the organization. Candidates should be prepared to discuss their experience with cloud security principles, NIST security frameworks, and Canadian cybersecurity regulations, as well as their approach to risk management, incident response, and security best practices.

📌 Application Steps

To apply for this IT Security (Cloud) position at General Dynamics Mission Systems International:

1. Submit Your Application: Visit the General Dynamics Mission Systems International careers page and search for the "IT Security (Cloud)" position. Click on the job title to view the job description and submit your application.
2. Tailor Your Resume: Highlight your relevant experience with cloud security, NIST security frameworks, and Canadian cybersecurity regulations. Include specific examples of your cloud security architecture design, risk management, and incident response skills.
3. Prepare Your Portfolio: Include examples of your cloud security architecture design projects, risk assessments, and security controls implemented to meet NIST 800-171 and Canadian Centre for Cyber Security cloud protection profiles requirements. Prepare a live demo or presentation showcasing your technical skills and understanding of cloud security principles.
4. Research the Company: Familiarize yourself with General Dynamics Mission Systems International's mission, values, and company culture. Prepare thoughtful questions to ask during the interview process to demonstrate your interest in the organization and its goals.
5. Practice Technical Interview Questions: Review the technical questions and company & culture questions outlined in this enhanced job description. Practice your responses and prepare for the interview process.

⚠️ Important Notice: This enhanced job description includes AI-generated insights and web technology industry-standard assumptions. All details should be verified directly with the hiring organization before making application decisions.

---

Content Guidelines (IMPORTANT: Do not include this in the output)

Web Technology-Specific Focus:

• Tailor every section specifically to IT Security (Cloud) roles, focusing on cloud security principles, NIST security frameworks, and Canadian cybersecurity regulations.
• Include specific examples of cloud security architecture design, risk management, and incident response skills.
• Address the unique challenges and growth opportunities presented by cloud environments and emerging technologies.

Quality Standards:

• Ensure no content overlap between sections - each section must contain unique information.
• Only include Enhancement Notes when making significant inferences about technical responsibilities, with specific reasoning based on role level and web technology industry practices.
• Be comprehensive but concise, prioritizing actionable information over descriptive text.
• Strategically distribute web technology and cloud security keywords throughout all sections naturally.
• Provide realistic salary ranges based on location, experience level, and cloud security specialization.

Industry Expertise:

• Include specific cloud platforms, security tools, and frameworks relevant to the IT Security (Cloud) role.
• Address cloud security career progression paths and technical leadership opportunities in web technology teams.
• Provide tactical advice for cloud security portfolio development, live demonstrations, and project case studies.
• Include cloud security-specific interview preparation and coding challenge guidance.
• Emphasize cloud security best practices, emerging technologies, and continuous learning opportunities.

Professional Standards:

• Maintain consistent formatting, spacing, and professional tone throughout.
• Use web technology and cloud security industry terminology appropriately and accurately.
• Include comprehensive benefits and growth opportunities relevant to IT Security (Cloud) professionals.
• Provide actionable insights that give web technology candidates a competitive advantage.
• Focus on cloud security team culture, cross-functional collaboration, and user impact measurement.

Technical Focus & Portfolio Emphasis:

• Emphasize cloud security best practices, NIST security frameworks, and Canadian cybersecurity regulations.
• Include specific portfolio requirements tailored to the IT Security (Cloud) discipline and role level.
• Address browser compatibility, accessibility standards, and user experience design principles for cloud environments.
• Focus on problem-solving methods, performance optimization, and scalable cloud architecture.
• Include technical presentation skills and stakeholder communication for cloud security projects.

Avoid:

• Generic business jargon not relevant to IT Security (Cloud) roles.
• Placeholder text or incomplete sections.
• Repetitive content across different sections.
• Non-technical terminology unless relevant to the specific IT Security (Cloud) role.
• Marketing language unrelated to cloud security, IT Security, or user experience.

Generate comprehensive, cloud security-focused content that serves as a valuable resource for IT Security (Cloud) candidates seeking their next opportunity and preparing for technical interviews in the web technology industry.