Senior Security Engineer at Float enhancing security for fintech features. Leading initiatives to implement security controls and work closely with cross-functional teams for compliance.
Responsibilities
Owning and improving AWS and GitHub security guardrails, including IAM, OIDC, network segmentation, and CI/CD hardening.
Leading automation for vulnerability management and cloud posture using our security tools and infrastructure-as-code.
Partnering with developers to embed secure SDLC practices, including dependency scanning, secret management, and threat modeling for high-risk features.
Helping mature endpoint and identity security while ensuring full coverage and strong baselines.
Tuning and expanding detection and response capabilities, developing playbooks, alert pipelines, and response automation.
Contributing to evidence automation for PCI DSS 4.0 and SOC 2, ensuring “compliance by default.”
Championing security metrics that matter: coverage, time-to-remediate, and control effectiveness.
Requirements
Strong background in security, authentication, infrastructure, and cloud technologies, including vulnerability management and threat detection/remediation.
Familiarity with integrating security practices into CI/CD pipelines, ideally using tools such as Buildkite.
Understanding of Infrastructure as Code (IaC) security, particularly with Terraform.
Knowledge of compliance frameworks such as SOC 2 and ISO 27001.
Experience with risk assessment and management in cloud environments, as well as network monitoring and intrusion detection/prevention.
Hands-on experience with vulnerability scanning tools and methods for identifying, prioritizing, and remediating vulnerabilities.
Strong grasp of common security vulnerabilities (e.g., OWASP Top Ten) and security testing techniques.
Experience with Auth0 and Okta for user management, SSO, and MFA.
Familiarity with implementing and managing IAM policies, RBAC, and user lifecycle best practices.
Senior Technology Architect (Cyber Security & Network Security) needed for a hybrid contract with the Ontario government. 10+ years experience required.
Security Advisor developing and overseeing security measures aligned with corporate goals at Desjardins Group. Diagnosing risks and advising on security policies and solutions.
Business Unit Security Officer conducting risk assessments for technology systems and applications. Collaborating with engineering teams and managing cloud - based security measures at Manulife.
Manager Cyber Cloud Security and AI at PwC protecting organizations from cyber threats. Leading cybersecurity strategy focused on AI security, team collaboration, and stakeholder engagement.
Hiring a Threat Modeler / Security Architect with development background for hybrid full - time role in Canada, focusing on application security, threat modeling, and DevSecOps.
Network & Perimeter Security Specialist II - Firewall at Enbridge enhancing security architectures. Providing technical leadership and driving enterprise standards for firewall and network security.
Network and Perimeter Security IT Specialist I at Enbridge overseeing enterprise security architecture and leading large - scale security initiatives. Collaborating across teams to ensure secure solutions and compliance.
Lead critical cybersecurity transformation programmes at Hewlett Packard Enterprise, ensuring alignment with enterprise priorities and delivering complex initiatives. Collaborate with IT, cybersecurity, and business leaders.
Staff Engineer responsible for designing scalable security solutions and collaborating with engineering at Twilio. Empowering security partnerships across products and platforms while mitigating risks.