Senior Security Specialist

Summary

Join Miovision as a Senior Security Specialist and play a critical role in strengthening the organization's security posture across enterprise systems, cloud platforms, and customer-facing applications. You will ensure the security and integrity of Miovision’s digital infrastructure and transportation-focused solutions by leading key initiatives in enterprise security architecture, cloud and application security, and incident response. Reporting to the Senior Director, Security (CISO), you will design and implement security controls, drive the secure software development lifecycle, and coordinate incident response activities. This hands-on role requires expertise in Miovision’s security platforms and leadership in evaluating and adopting new technologies. You will collaborate with various teams to embed best-in-class security practices and serve as a key resource during audits and customer due diligence. This position is crucial for maintaining the security and trust of Miovision's smart transportation solutions.

Requirements

• 10+ years of cybersecurity experience with 5+ years specializing in application and cloud security
• Expert knowledge of secure development frameworks (OWASP), application security practices, and DevSecOps methodologies
• Proven experience with AWS, Kubernetes, and GitLab environments
• Proficiency with vulnerability management tools and cloud/application security platforms
• Demonstrated ability managing cloud/application vulnerabilities, SAMM assessments and third-party penetration testing
• Track record implementing security automation and CI/CD pipeline security integration
• Extensive experience supporting ISO 27001 and SOC 2 compliance frameworks
• Skilled in Enterprise Security architecture, Zero Trust implementation and Secure Service Edge deployment
• Strong incident response background including EDR and Email Security platform management
• Experience supporting customer RFPs and conducting comprehensive risk assessments
• Exceptional communication skills for translating security concepts across technical and business audiences

Responsibilities

• Develop and maintain a comprehensive enterprise security architecture aligned with business objectives and compliance requirements
• Collaborate with IT to ensure consistent and robust security architecture across all environments
• Administer and optimize Zscaler ZIA/ZPA , EDR , Email Security and SIEM platforms
• Evaluate new technologies and solutions for integration into the security ecosystem
• Lead the definition, implementation, and continual improvement of a secure product development lifecycle across Miovision's cloud services and applications
• Develop and lead adoption of security standards and best practices for defining and creating secure solutions, including SAMM Assessments , threat modeling, SAST/DAST/SCA and secure code reviews
• Collaborate with Engineering and DevOps teams to provide security consultation and guidance for cloud infrastructure and application development including vulnerability management
• Administration and Deployment of Cloud Security (CNAPP) and Application security tools
• Identify security gaps and propose solutions to remediate risks
• Track and report security metrics and KPIs, demonstrating the effectiveness of security controls and improvement initiatives
• Manage penetration test coordination, including remediation planning and report triage
• Serve as primary security incident responder for Cloud, Product and Application security incidents
• Support Corporate Security Incident Response as a secondary responder when needed
• Coordinate cross-functional response teams during security incidents
• Serve as Cloud, Product, and Application Security SME for various external/internal audits, including ISO 27001 and SOC2
• Execute internal audits to maintain compliance with various frameworks
• Perform risk assessments for new software vendors from procurement
• Maintain relationships with security vendors and consultants
• Coordinate security initiatives and contract management with vendors
• Manage relationship with Managed Security Service Providers (MSSP) including contract management, SLA monitoring and performance evaluation
• Provide technical security expertise in customer meetings, RFP responses, and security due diligence processes
• Support RevOps and sales team with security documentation and expertise during customer engagements

Preferred Qualifications

CISSP and AWS Security Specialist certifications

Benefits

• Comprehensive health benefits starting on day one
• RRSP Matching Plan
• Variable Incentive Plan
• Mio-Days : We extend all three-day weekends to four-days and provide a Holiday Shutdown in December
• Virtual Healthcare Service providing employees and their families access to healthcare providers 24/7
• Internet subsidy and a remote work allowance
• Enhanced paternity and maternity leaves
• Unlimited vacation policy
• Wellness offerings (Fitness, Mindfulness)