Cloud Security Engineer

Vancouver or Toronto

If you want to have your name in the success story of a globalizing company, we look forward to receiving your application to the winning Aquanow team!

What You'll Do:

• Perform security assessments and audits of our infrastructure, identifying and mitigating security gaps and weaknesses.
• Proven expertise in using Terraform and other infrastructure as code tools, managing vulnerabilities, policies and implementing best practices.
• Partner with Aquanow engineering teams to understand and resolve security incidents that arise on their services.
• Conduct in-depth security reviews of application code, working closely with developers to code securely from the outset and address issues early during coding and testing phases.
• Experience with SAST, SCA, and DAST, with the ability to address real-world challenges in these areas.
• Implement and manage security tools within the CI/CD pipeline, focusing on DevSecOps practices
• Monitor and analyze logs, events, and metrics to identify security incidents, potential breaches, and emerging threats.
• Understand runtime security, image scanning, network security, access control, host OS hardening, and vulnerability management in the container lifecycle.
• Develop and maintain incident response plans, procedures, and playbooks for effective handling of security incidents and breaches.
• Design, implement, and maintain security measures for our cloud infrastructure, including VPCs, security groups, IAM roles, and access controls.
• Maintaining security hardening configurations and guidance for the diverse set of services available across our cloud environments.

You'll Need to Have:

• 5+ years of Security Engineering experience preferably in AWS Cloud and at least 2 of the following areas: cloud security, web application security, incident response, threat hunting, and cyber security operations.
• Bachelor's degree in Computer Science, Information Security, or a related field. Equivalent work experience may be considered.
• Strong knowledge of security principles, best practices, and common vulnerabilities (e.g., OWASP Top 10)
• Familiar with SAST, DAST, Fuzzing, and other tools.
• Experience with Wiz, Prisma Cloud, Jira, Confluence & Terraform / CloudFormation (Infrastructure as a code)
• Familiarity with CI/CD tools such as GitHub Actions, Jenkins or CircleCI.
• Experience with security technologies, such as firewalls, IDS/IPS, SIEM, DLP, antivirus, and vulnerability scanners.
• Good understanding of cloud security architecture, security assessments, audit standards for the Cloud, security threats in the cloud.
• Solid understanding of network protocols, TCP/IP, and network security concepts.
• Ability to work independently and problem solve.

We'd Love to See:

• Automation experience with AWS. Relevant certifications such as AWS Certified Security - Specialty, CISSP, CEH are highly desirable.
• Experience in a global fast moving environment covering multiple time zones.
• Passion in all things security.
• Stay updated with the latest security trends & AI technologies.