Security Consultant on TELUS's Cybersecurity Platforms Operations team. Providing hands - on support for critical security services and collaborating with industry - leading vendors.
About the role
- Senior Security Engineer at Wattpad implementing security controls for AWS cloud systems. Collaborating with engineering teams to ensure data protection and secure software practices.
Responsibilities
- Designing, implementing, and monitoring security controls in our AWS cloud infrastructure to balance protection with scalability.
- Influencing the technical direction of the Engineering & Data department by introducing secure development practices and threat modeling.
- Acting as a force multiplier by building security automation workflows and "guardrails" that allow teams to ship code safely and quickly.
- Directly solving complex security challenges, including incident response, root cause analysis, and remediation of vulnerabilities.
- Assisting teams in implementing access management and compliance controls, compliance (SOC 2/ISO 27001), and risk governance.
- Building and maturing our application security program, partnering with engineering teams to triage findings from our Vulnerability Disclosure Program.
- Collaborating with engineers on implementing security best practices to help raise the security bar across the organization.
Requirements
- 5+ years of work experience in SecOps, Cloud Security, DevSecOps, or similar security-focused role
- AWS security expertise: Hands-on experience with Security Hub, GuardDuty, Inspector, AWS WAF, and IAM policy management
- SIEM experience highly desirable: Datadog, Splunk, or similar platforms (query development, alert tuning, incident investigation)
- Proficiency with infrastructure-as-code security: Terraform, CloudFormation, or similar
- Experience with containers and Kubernetes (EKS preferred) including security hardening
- Strong scripting and automation skills: Python, Bash, PowerShell
- Experience securing CI/CD pipelines (GitHub Actions strongly preferred)
- Familiarity with MITRE ATT&CK and D3FEND frameworks
- Understanding of enterprise and cloud network security architecture and controls
- SOC 2 and/or ISO 27001 compliance experience
- Self-starter comfortable with ambiguity - ability to define and execute on loosely-scoped problems
- Balanced communication style - proactive collaborator when needed, deep-focus engineer when required
- Excellent written and verbal communication skills for cross-functional collaboration.
Benefits
- Career development; we believe in mentorship and investing in your learning, supporting you to achieve your goals
- Top industry health benefits, including vision and dental
- Your own health/wellness account to spend each year
- RRSP Contributions (Canada), 401K Contributions (USA)
- Generous vacation and Maternity/Parental leave top-up program
- Corporate discount for gym memberships for you and your family
- Work from almost anywhere in the world for part of the year
- Winter break shutdown and a whole lot more!
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Senior Cloud Cybersecurity Engineer responsible for cloud security engineering at Tanium. Collaborate to protect cloud infrastructure against threats in Azure, AWS, and Kubernetes.
Managing Consultant in Cybersecurity and NERC Compliance at Guidehouse. Leading client management and project workstreams within the electric utility sector in Canada.
Senior Analyst performing SOC 1 and SOC 2 examinations at Kraken. Leading compliance initiatives and enhancing IT controls in a remote environment.
Security Guard responsible for protecting people and property in Amherst, Nova Scotia. Conducting patrols and monitoring security systems to ensure safety.
Security Lead responsible for driving security function and strategy at Newton, a crypto trading platform. Ensuring CIRO and SOC 2 alignment while embedding security practices across all systems and applications.
Senior Cybersecurity Engineer at Vervent focused on security solution design and incident response. Join a growing team to implement and strengthen enterprise security operations.
IA
Conseiller juridique stratégique au sein des Services juridiques pour la protection des renseignements personnels au Canada. Fournissant des conseils stratégiques en matière de cybersécurité et réglementaire.
Manager, Information Security at Manulife will assess vendor IT risks and security controls. Conducting audits, guiding businesses in IT risk management under a hybrid working model.
Key role in operational security management of IT infrastructures at Xideral. Involves risk management, security architecture, and coordination with various stakeholders.