Sr. IT Systems & Security Engineer

The Systems and Security Engineer at Spotless Brands plays a pivotal role in maintaining the security and efficiency of the Company's IT infrastructure and digital assets, with a particular focus on cloud services (such as Microsoft 365 and Azure), Point of Sale (POS) systems, and cybersecurity. This role demands a blend of expertise in cloud computing, application security, and cybersecurity practices to ensure the protection and optimal performance of IT systems.

• Administer and optimize cloud environments, primarily focusing on Microsoft 365 and Azure, ensuring scalable, secure, and efficient operations.
• Implement and manage cloud-based applications and services, including integrations with on‑premises or other cloud systems.
• Oversee cloud data storage, backup, and recovery processes, ensuring data integrity and compliance with data protection standards.
• Ensure the security and integrity of POS systems, implementing cybersecurity measures to protect against threats and unauthorized access.
• Coordinate with the applications team to ensure that POS systems are seamlessly integrated with cloud services and other IT systems.
• Monitor and maintain POS software and hardware, including regular updates and patches to address security vulnerabilities.

• Deploy and manage advanced cybersecurity tools and processes to safeguard IT systems and sensitive data.
• Conduct regular security assessments and audits to identify vulnerabilities and implement remediation strategies.
• Keep up to date with the latest cybersecurity threats and countermeasures, continuously improving the organization’s security posture.

• Implement robust data protection strategies, focusing on both cloud-based and on‑premises environments.
• Ensure compliance with relevant regulations and standards like PCI DSS, HIPAA and NIST CSF, adapting practices to meet the needs of different environments (cloud, hybrid, on‑site).
• Collaborate with legal and compliance teams to ensure adherence to data privacy laws and guidelines.

• Manage and maintain essential IT systems, with a particular focus on cloud-based environments and POS systems.
• Perform routine system maintenance tasks, including system monitoring, performance tuning, and troubleshooting.
• Coordinate with vendors and service providers to resolve complex system issues and optimize performance.

• Provide high-level technical support for cloud and security-related issues.
• Develop and deliver training and awareness programs focusing on cybersecurity best practices and secure use of cloud services.

• Actively participate in IT projects, ensuring cloud and cybersecurity considerations are integrated from the outset.
• Collaborate with various IT teams to align system and security objectives with broader organizational goals.

Required:

• Bachelor’s degree; or equivalent level of advanced schooling + experience
• 7+ years of relevant work experience in IT Infrastructure
• Familiar with IT Systems & Security concepts, design principles, best practices, standards, and processes
• Excellent analytical, statistical, quantitative, and deduction skills.
• Ability to represent information in graphical forms including creating data, infrastructure, and topology diagrams, etc.
• Experience implementing controls for Cybersecurity regulation such as: PCI-DSS, SOX, or CCPA
• Flexible and adaptable to changing priorities, based on business needs.
• Must be able to work occasional varied hours, including nights, weekends and holidays.

Preferred:

• Regular work exposure to Python and Git version control
• Exposure to JSON (arm) and XML
• Industry Certifications preferred (ITIL, CISSP, Azure, etc.)
• Working understanding of POS systems architecture

• Strong understanding of architecting and configuring Microsoft Windows OS technology
• Systems management & deployment software such as SCCM, M365 Intune, JAMF, etc.
• Vulnerability scanning technologies such as Viking Cloud, Rapid7, Qualys
• Understanding of change management processes…