Shape the Future of Security: Senior Security Engineer
Ready to take ownership of security practices and drive the vision for a forward-thinking organization? We're seeking a passionate and experienced Senior Security Engineer to safeguard our R&D operations and production applications. You'll be at the forefront of our security strategy, working alongside our Staff Engineer, Information Security, to manage security projects and guide the rest of the engineering department in securing their application domains. This is a unique opportunity to make a significant impact, supported by our executive team and engineering leadership.
We embrace a DevOps approach to delivery and production ownership, extending this philosophy to our security strategy. If you thrive in a collaborative environment and are eager to lead the charge in securing our digital landscape, we encourage you to apply!
Location: Hybrid (Toronto) or Fully Remote (Canada)
Your Mission:
Design, implement, and maintain robust security systems and solutions within AWS and GitHub.
Conduct thorough security assessments, analyze penetration test results, and validate submissions from our Vulnerability Disclosure Program.
Develop and recommend security policies and procedures to address evolving threats.
Respond swiftly to security incidents, conduct in-depth post-incident analysis, and implement preventative measures.
Stay ahead of the curve by continuously researching the latest security trends and threats.
Mentor and guide junior security engineers, fostering a culture of security excellence.
Apply Threat Modelling methodologies to proactively identify and mitigate potential risks.
What You'll Bring:
5+ years of experience in information security.
3+ years of experience with scripting languages (e.g., Python, Bash).
3+ years of experience with AWS.
3+ years of experience with Terraform.
Proven experience with security tools such as SIEM, IDS/IPS, and vulnerability scanners.
Exceptional problem-solving and communication skills.
Familiarity with GitHub Advanced Security.
In-depth knowledge of network security, application security, and cloud security.
Solid understanding of Linux and networking principles.
Previous experience working in IT operations on-prem and/or cloud infrastructure.
Experience with security frameworks and compliance standards, including NIST SP 800-53, ISO 27001, and SOC 2.
Bonus Points:
Bachelor's degree in Computer Science, Information Security, or a related field.
Industry certifications (e.g., CISSP, CISM, OSCP, AWS Certified Security).
Prior experience with AWS services:
SecurityHub, GuardDuty, Trusted Advisor
Control Tower, Organizations, Config
Lambda
Athena
Why You'll Love Working Here:
A mission-driven company creating meaningful work.
A collaborative team passionate about customers and each other.
Flexible, remote-first work environment.
Professional learning and development opportunities.
An awesome and welcoming Toronto HQ (for hybrid roles).
Comprehensive health benefits from day one.
A management team focused on performance, growth, engagement, and connection.
A winning strategy and significant market potential.
Innovative PTO policy prioritizing self-care.
Passionate customers who believe in our vision.
The chance to work with cutting-edge tech like generative AI and see its impact.