Senior Analyst responsible for control testing reporting and operations within financial services sector. Collaborating with teams to ensure testing results are communicated effectively.
About the role
- Cloud Security Engineer at Fullscript, securing cloud platforms across AWS and Google Cloud for healthcare. Building security controls and implementing best practices for sensitive data protection.
Responsibilities
- Design and implement cloud security controls across AWS and Google Cloud, including multi-account architecture, network segmentation, data protection, and secure-by-default infrastructure patterns.
- Build reusable Terraform modules, reference architectures, policy-as-code guardrails, and self-service tooling that make secure implementation easier for engineering teams.
- Operate and tune CSPM/CNAPP tooling to identify misconfigurations, exposures, toxic combinations, and coverage gaps across Fullscript’s cloud environments.
- Drive remediation of cloud vulnerabilities and misconfigurations, balancing risk, engineering effort, customer impact, and business priorities.
- Strengthen IAM, secrets management, key rotation, cloud credentials, machine identities, and just-in-time access patterns across cloud and SaaS environments.
- Embed security into CI/CD pipelines through IaC scanning, container image scanning, SBOM generation, artifact protection, and software supply chain controls.
- Partner with the SOC and engineering teams on cloud-native detections, logging, runbooks, incident response, post-incident learning, and secure AI/ML workload patterns.
Requirements
- 4+ years of security engineering experience, including 2+ years focused on cloud security in AWS and/or Google Cloud.
- Strong understanding of cloud-native attack paths, IAM risks, network controls, data protection, key management, secrets management, and workload identity.
- Hands-on experience with infrastructure-as-code, ideally Terraform, and a strong understanding of how to secure it at scale.
- Ability to write code in Python, Go, or a similar language to automate detection, remediation, and security workflows.
- Experience integrating security tooling into CI/CD pipelines and developer workflows without creating unnecessary friction.
- Working knowledge of at least one compliance framework such as SOC 2, HIPAA, HITRUST, PCI-DSS, or ISO 27001, with the ability to translate requirements into technical controls.
- Strong communication and collaboration skills, with a bias toward enabling teams, influencing without authority, and helping engineers build securely.
- Bonus if you have
- Experience in healthcare, fintech, or another regulated environment.
- Hands-on experience with CSPM or CNAPP tools such as Wiz, Prisma Cloud, Lacework, or similar platforms.
- Experience securing Ruby on Rails, JavaScript, TypeScript, GraphQL, containerized workloads, or modern cloud-native applications.
- Cloud incident response, forensics, or threat hunting experience.
- Experience securing AI/ML workloads, LLM integrations, data science platforms, autonomous AI systems, or non-human identities.
- Familiarity with AI/ML model supply chain risks, AI-specific SBOMs, or controls for limiting blast radius and privilege escalation.
- Open-source contributions or experience building internal security tooling.
Benefits
- Remote-first flexibility to work where you work best, with Ottawa, Toronto, Calgary, or Vancouver preferred for this role.
- Flexible PTO and competitive pay, because work-life balance matters
- RRSP/401k match and stock options to invest in your future
- Premium benefits package with customizable coverage, paramedical services, and an HSA.
- Fullscript discounts to save on high-quality wellness products
- Continuous learning opportunities to grow your skills and career
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Director of Control Testing overseeing control testing reporting and operations at RBC. Leading a high performing team and integrating AI and digitization into workflows.
Senior Manager overseeing control testing reporting and operations for Global Security at RBC. Focusing on data - driven insights and process management in a financial services context.
LP
Lead Cloud Security Architect (Azure)
LinkedIn Recruiter Post
Lead Cloud Security Architect (Azure) needed in Toronto, ON. Full - time permanent role requiring 8 - 10 years of cybersecurity experience.
LP
Cyber Security Architect
LinkedIn Recruiter Post
Lead cyber security program development, risk management, and incident response for Supply Ontario. Requires 7 - 10 years experience and CISSP or equivalent.
Principal Cybersecurity Engineer leading complex engineering efforts and guiding strategic security decisions at a Canadian company. Combines technical expertise with mentorship and business acumen to drive cybersecurity initiatives.
Senior Security Engineer at Chainguard shaping how open source defends itself. Collaborate with teams to enhance security posture and compliance with industry standards.
Senior Security Engineer managing AI platform posture at Chainguard to enhance security and efficiency. Collaborating with teams for proactive governance, administration, and risk management.
Senior Product Security Engineer securing software delivery pipelines at Chainguard. Focus on cloud - native security in CI/CD processes and Kubernetes environments.
Sr IAM Engineer managing implementation and support of Secret Management solutions at RBC. Collaborating across teams to deliver secure, scalable identity solutions.