Senior AI Cloud Security Engineer at Manulife focusing on security controls in cloud and AI environments. Building secure systems and protecting enterprise AI initiatives while collaborating with multiple teams.
Responsibilities
Designing, implementing, and automating security controls across cloud and AI environments, ensuring secure-by-default architecture, continuous compliance, and protection against evolving threats
Implement and operate AI Security Posture Management (AI SPM) solutions, including Cloud security posture management to continuously assess, detect, and remediate risks across AI and cloud environments
Secure AI and Generative AI workloads, including model pipelines, training data, inference APIs, and LLM integrations against threats such as prompt injection, data leakage, model abuse, and adversarial attacks
Design and implement AI SPM controls to provide visibility into AI assets, monitor model usage and access patterns, enforce security guardrails, and manage AI risks across the full lifecycle
Embed security into CI/CD and MLOps pipelines (DevSecOps) using automated controls such as SAST/DAST, IaC scanning, secrets detection, and compliance enforcement gates
Develop and maintain security policies and policy-as-code frameworks (e.g., Azure Policy) to enforce governance, regulatory compliance, and responsible AI usage
Engineer monitoring, detection, and response capabilities for cloud and AI systems, integrating telemetry with SIEM/SOAR platforms for centralized visibility and automated response
Perform security testing and validation across cloud, application, API, and AI layers, including AI-specific scenarios such as prompt injection and model misuse prior to production deployment
Automate security operations through scripting and tooling (e.g., Python, PowerShell) to improve efficiency, scalability, and consistency of controls
Conduct risk assessments, threat modeling, and security reviews for cloud infrastructure and AI systems to identify vulnerabilities and implement mitigation strategies
Collaborate with AI teams and security stakeholders to drive secure-by-design architectures and enable scalable, governed AI adoption
Requirements
Minimum 7-8 years IT industry experience
Minimum 5+ years of experience in cloud and security engineering, with strong hands-on expertise in Azure or similar cloud platforms
Required experience in AI Security and AI SPM, including securing AI and Generative AI systems and managing risks such as prompt injection, data leakage, and model abuse
Proven experience with CSPM, CWP, and IaC and implementing secure cloud architectures
Strong understanding of DevSecOps practices, including CI/CD security, SAST/DAST, IaC scanning, and automation (Python/PowerShell)
Experience developing and enforcing security policies and policy-as-code frameworks aligned with standards like NIST, ISO, and CIS
Knowledge of security monitoring, SIEM/SOAR, and incident response for cloud and AI environments
Experience with security testing, threat modeling, and risk assessments
Strong collaboration and communication skills, with the ability to work across cloud, AI, and security teams
Benefits
health, dental, mental health, vision, short- and long-term disability, life and AD&D insurance coverage
adoption/surrogacy and wellness benefits
employee/family assistance plans
various retirement savings plans (including pension and a global share ownership plan with employer matching contributions)
financial education and counseling resources
generous paid time off program in Canada (including holidays, vacation, personal, and sick days)
Senior Azure DevOps Engineer for a long - term contract in Canada (Remote). Requires 10+ years of Azure, CI/CD, DevOps, Terraform, Kubernetes, Docker, and Python experience.
Senior Cloud Engineer (Policy as Code) for a top 5 bank in Canada. Full - time permanent, 2 days/week in Toronto. Must have 8+ years Terraform and Policy as Code experience.
Solution Architect designing and delivering solutions across infrastructure, M365 and Azure Cloud. Leading hands - on architectural roles for client transformation initiatives from the Toronto branch.
Cloud Security Developer for Fortinet designing and optimizing SaaS security platforms. Ensuring secure cloud access and high - performance capabilities in cloud environments.
Cloud & Platform Engineer building and operating Azure - based ecosystem for investment analysis. Focus on developer experience, platform reliability, automation, and delivery speed.
Product Owner for Service Cloud managing strategy and execution of customer support applications. Collaborating with stakeholders and global development teams at Motorola Solutions to enhance user experiences and drive product success.
IT Infrastructure Manager managing Azure migration and cloud platforms at Confluence. Leading a team to transform infrastructure from legacy systems to modern cloud solutions.