Cloud Security Engineer focused on high-automation and tool optimization across multi-cloud platforms, including AWS and Azure. Balancing technical security engineering and hands-on operations to strengthen digital security.
Responsibilities
Multi-Cloud Engineering and Perimeter Hardening**Identity and Access: Design and maintain Microsoft Entra ID Conditional Access policies and cloud IAM boundaries.**
Endpoints and Intune: Configure endpoint security baselines and automated deployment workflows via Microsoft Intune.**
Data Protection: Implement and tune Microsoft Purview Data Loss Prevention (DLP) policies and compliance toolsets.**
Cloud Posture: Deploy technical security controls natively within AWS and Azure to continuously drive up our Secure Score.**
Automation, Vulnerability Management and SecOps.**
Sentinel and SOAR: Architect Microsoft Sentinel, building KQL queries and automated response playbooks to eliminate manual triage overhead.**
Vulnerability Lifecycle: Administer scanning tools, automate continuous asset discovery, and technically validate remediation efforts with IT infrastructure teams.**
Operations: Participate in a weekly on-call operational rotation with two team members to investigate and remediate technical escalations.**
Vendor Engineering: Partner directly with vendors to ensure our security tools are integrated and utilized to their maximum potential.**
Security Approvals and Operational Support.**
Access and Exceptions: Review, triage, and technically validate security exceptions, identity exclusions, and access requests.**
Awareness Training: Manage the KnowBe4 platform to deploy automated phishing simulations and training tracks.
Requirements
Education: Graduate degree (Master's) in Computer Science, Cybersecurity, IT, or a related technical field.
Experience: Minimum of 5 years of hands-on experience in security engineering, multi-cloud security, or a technical SecOps environment.
Tech Stack Expertise: Practical experience configuring technical security boundaries within AWS, Microsoft Azure, Microsoft Entra ID, Intune, and Microsoft Purview.
Automation Skills: Proven track record managing Microsoft Sentinel, writing KQL queries, and creating automated workflows using PowerShell or Python.
Certifications (Preferred): CISSP (Certified Information Systems Security Professional), AWS Certified Security - Specialty, or Microsoft SC-200.
Benefits
Competitive salary and benefits package (Health, Dental, Vision and Personal Spending Account - employer paid premiums).
Flexible Work location (on-site offices in Toronto and Montreal, remote – work from home, hybrid as required per role).
Continuous learning and development via Percipio, our Learning Management System.
Be part of additional programs such as MentorMe, which helps our employee’s network, and grow within the organization.
Leadership Training offerings for new and emerging leaders.
Culture of great teams, coworkers and supportive leadership.
Perkopolis: Participation in a program that provides exclusive discounts on products and services to employees.
Lead AI Red Team focusing on adversarial testing and security for enterprise - scale AI systems. Collaborate with engineering and compliance to map vulnerabilities and document findings.
Intern in operational security at Investissement Québec, supporting security alert management and vulnerability tracking in a supervised learning environment.
IT Information Security Lead at Mirego, responsible for technology and information security management. Overseeing compliance and IT strategies while maintaining operational efficiency.
Cybersecurity Specialist focusing on offensive security for Exposant 3. Performing penetration testing, security audits, and team knowledge transfer in a hybrid work setup.
Financial security advisor in life and health insurance, developing and maintaining client relationships. Selling insurance products and assessing customer needs to provide personalized solutions.
Senior Security Engineer designing and maintaining Microsoft 365 security solutions at ResMed. Focusing on compliance, incident response, and collaboration with global teams.
Senior Infrastructure professional solving practical security challenges and improving enterprise systems security at Confluence. Focused on implementation, remediation, and secure operations across Windows and Linux environments.
Senior infrastructure professional responsible for vulnerability remediation and security improvements across enterprise systems at Confluence. Hands - on role involving Windows and Linux environments with strong collaboration with Cybersecurity team.
Enterprise Security Architect responsible for implementing information security best practices at SecureOps. Collaborating with clients to analyze networks and provide effective security solutions.
Health, safety, and environment advisor responsible for maintaining compliance and promoting safety practices. Supporting project teams and developing SSE programs to manage risks in the workplace.