The Job: Cyber Security EngineerWhat You'll DoReporting to the
Senior Manager, Cyber Operations, the Cyber Security Engineer will be responsible for engineering, implementing, and continuously improving enterprise security controls and capabilities across multiple security domains.
Key ResponsibilitiesEndpoint & Email Security Engineering- Design, implement, and optimize endpoint protection controls, threat detection, response processes, and hardening standards.
- Enhance email security capabilities, threat protection policies, detection mechanisms, and incident response workflows.
Vulnerability Management- Lead risk-based vulnerability discovery, assessment, prioritization, remediation tracking, and reporting.
- Partner with infrastructure, cloud, application, and business teams to drive timely remediation of security findings.
Proxy, SSE/CASB & Cloud Posture Security- Design, deploy, and maintain Secure Web Gateway (SWG), Proxy, CASB/SSE, and Cloud Security Posture Management (CSPM) controls.
- Strengthen SaaS and AI application visibility, data protection policies, governance processes, and exception management.
AWS Cloud Security- Enhance AWS security guardrails across identity, networking, logging, data protection, and workload security.
- Embed secure configuration standards into cloud deployment and operational practices.
AI Security, SOC Engineering & SIEM Enablement- Secure enterprise AI and GenAI solutions through monitoring, logging, data protection, control validation, and governance.
- Develop and tune SIEM detections, dashboards, alerts, SOC integrations, and automated security workflows.
Application Security & Certificate Management- Support application security assessments, remediation governance, and secure development practices.
- Manage PKI/TLS certificate lifecycle processes, renewals, standards, and associated risk controls.
What You'll Bring to the Table- Strong problem-solving skills with the ability to identify risks and implement practical security solutions.
- Passion for emerging cybersecurity challenges, including AI/GenAI security and security automation.
- Ability to collaborate effectively across Infrastructure, Development, Cloud, SOC, Risk, and Business teams.
- Strong communication skills with the ability to influence stakeholders and drive security best practices.
- Experience balancing multiple priorities in a dynamic and fast-paced environment.
- Continuous improvement mindset focused on strengthening security posture and operational efficiency.
Required Education- Bachelor's Degree in:
- Computer Science
- Cybersecurity
- Information Security
- Related technical discipline
Equivalent combination of education and experience will also be considered.
Required Experience- Minimum 7 years of hands-on Security Engineering experience.
- Proven experience designing, implementing, tuning, troubleshooting, and optimizing security controls within large enterprise or regulated environments.
- Experience across:
- Endpoint Security
- Email Security
- Vulnerability Management
- AWS Cloud Security
- SIEM/SOC Engineering
- Application Security
- Certificate Lifecycle Management
- AI Security and Governance
- Strong experience partnering with technical and business stakeholders to drive security initiatives and remediation activities.
Preferred Experience- Experience within Financial Services, Retail, or other regulated industries.
- Exposure to scripting and automation technologies.
Technical ExperienceThe ideal candidate will demonstrate expertise in several of the following areas:
- Endpoint Detection & Response (EDR)
- Email Security Platforms
- Vulnerability Management Programs
- Secure Web Gateways (SWG)
- Security Service Edge (SSE)
- Cloud Access Security Broker (CASB)
- Cloud Security Posture Management (CSPM)
- AWS Security Services and Guardrails
- SIEM Engineering and Detection Development
- Security Monitoring and Alert Tuning
- AI/GenAI Security Controls
- Application Security Testing
- PKI/TLS Certificate Lifecycle Management
- Zero Trust Security Architecture
- Security Automation and Orchestration
- API Integrations
- PowerShell, Python, or similar scripting languages
CertificationsPreferredOne or more of the following certifications are considered strong assets:
- CISSP (Certified Information Systems Security Professional)
- CISM (Certified Information Security Manager)
- CISA (Certified Information Systems Auditor)
- AWS Certified Security - Specialty
- GIAC Security Certifications
- Other relevant industry-recognized cybersecurity certifications
If you're passionate about securing identities, improving access controls, and building scalable IAM solutions, this is an opportunity to make a critical impact on enterprise security.
Please note: The salary range for this position is between C$ 142,000 to C$ 160,000.