Security Engineer, DevOps

Curinos


Job Location:

Toronto - Canada

Yearly Salary: CAD 110000 - 150000
Posted on: 10 hours ago
Vacancies: 1 Vacancy

Job Summary

Curinos empowers financial institutions to put customers at the center of every decision. Our AI-first platform transforms proprietary data advanced analytics and deep financial services expertise into timely recommendations - delivered right where teams work. The result: confident decisions stronger customer relationships and lasting profitable growth.

Curinos operates under a hybrid modality and has office locations in New York Chicago Boston Toronto and London. This role is open to remote candidates based in the Canada Pacific Standard Time preferred.

Job Description

Curinos is looking for an experienced Senior Security Engineer to join our Information & Security team. Operating in an AWS-native environment with select on-premises workloads this role drives and advances key security capabilities across cloud security posture management vulnerability management threat detection and detection engineering application security and incident response. The ideal candidate brings deep hands-on experience with modern cloud and security tooling independent designs and implements solutions for new initiatives and partners with engineering and operations teams to reduce risk across our hybrid environment. Working closely with Information Security IT and Engineering teams this role sets priorities within its areas of responsibility drives remediation to closure mentors more junior team members and serves as a subject-matter expert on security issues.

Responsibilities

  • Run day-to-day security operations and engineering activities across our cloud and hybrid environment prioritizing work across competing risks based on severity timelines and dependencies and partnering with Information Security IT and Engineering teams to identify drive and verify remediation while continuously improving detection and response capabilities
  • Monitor and respond to findings in AWS Security Hub and Amazon GuardDuty; tune and author detections to improve signal quality and reduce false positives and define remediation standards that engineering teams can follow
  • Independently manage cloud security posture using our CNAPP platform setting risk prioritization criteria driving remediation with asset owners and grouping recurring findings to identify root causes and recommend preventative measures
  • Drive the vulnerability management lifecycle using an enterprise platform performing assessments applying risk-based prioritization and SLAs and driving findings to resolution across a mixed asset inventory; coordinate penetration tests and remediation of their results
  • Design and embed application security controls within development pipelines partner with product and platform engineers to design remediation solutions clearly communicate implications and timing of decisions and recommend enhancements to code resiliency
  • Operate and improve endpoint and network detection and response tooling develop and tune detections lead telemetry and threat investigations end to end and coordinate response
  • Lead investigation and response for security incidents including high-severity events; lead root-cause analysis and drive post-incident corrective actions to completion across the relevant teams.
  • Define and report security posture metrics and KPIs; explain complex findings and their implications to technical peers leaders and stakeholders outside the team and respond to targeted technical questions from external audiences such as auditors clients and vendors.
  • Independently automate security operations using scripting and infrastructure-as-code developing reusable tooling that improves team efficiency and consistency.
  • Stay current with emerging threats CVEs and platform changes; evaluate new security tooling and methodologies through proofs-of-concept and recommend adoption where they reduce risk.
  • Work cross-functionally with engineering information technology and infrastructure teams to consult on security matters and champion secure-by-design practices.
  • Mentor and provide technical guidance on security matters to junior team members and advise engineering teams on secure design.

Key Skills

  • AWS cloud security: Deep hands-on expertise designing and operating AWS native security services such as Security Hub GuardDuty CloudTrail IAM and VPC including detection tuning and guardrail design.
  • AWS cloud infrastructure: Strong working knowledge of AWS infrastructure and services sufficient to assess architecture for security risk and design remediations.
  • CNAPP / cloud posture management: Hands-on proficiency in cloud posture management identifying misconfigurations prioritizing risk driving remediation and recommending preventative controls within a CNAPP platform.
  • Vulnerability management: Proficiency driving the vulnerability management lifecycle including scanning risk-based prioritization SLA definition and driving remediation to closure across a mixed aset inventory.
  • Endpoint and network threat detection: Hands-on experience operating and tuning endpoint and network detection tooling including authoring detections leading investigations and coordinating response.
  • Application security tooling: Experience designing and integrating application security controls (software composition analysis SAST secure pipelines) into engineering workflows and partnering with developers on remediation.
  • Linux and Kubernetes: Solid hands-on experience securing Linux and Kubernetes environments including hardening monitoring and leading remediation.
  • Security frameworks: Practical experience applying and helping mature NIST 800-53 CIS Benchmarks and/or ISO 27001 controls including supporting audits and assessment responses.
  • Security automation & IaC: Proficiency building automation and security-as-code (e.g. Terraform Python) to operationalize and scale security controls.
  • Technical leadership: Ability to mentor junior team members and act as a domain subject-matter expert.

Salary Range:00 CAD (plus Bonus)

Desired Skills & Expertise

  • 58 years of hands-on experience in security operations security engineering or related roles including demonstrated experience driving security workstreams end-to-end
  • AWS Cloud Services (5 years hands-on experience)
  • Linux systems administration
  • Automation & Infrastructure as Code (Terraform) including the ability to design and maintain reusable modules
  • Deep hands-on experience across several of the following areas with the ability to act as subject-matter expert in at least one: AWS security services cloud security posture management vulnerability management endpoint detection and response network threat detection or application security tooling
  • Strong hands-on command of cloud security principles in AWS (IAM networking logging encryption) including hands-on experience with AWS CloudWatch (Logs Metrics Alarms APM and infrastructure monitoring) for visibility and alerting
  • Familiarity with observability and metrics tooling used to support monitoring alerting and security visibility
  • Experience applying and helping mature security frameworks (NIST 800-53 CIS Benchmarks ISO 27001) including supporting audits and assessments.
  • Proficiency in Python and/or Bash for building and maintaining security automation and tooling
  • Bachelors degree in computer science Information Security or a related field or equivalent practical experience
  • Senior-level certification preferred (e.g. AWS Security Specialty or CCSP); hands-on or foundational certs a plus (e.g. Certified Kubernetes Security Specialist (CKS) Security CySA)
  • Demonstrated experience mentoring or providing technical guidance to other engineers.

Why work at Curinos

  • Competitive benefits including a range of Financial Health and Lifestyle benefits to choose from
  • Flexible working options including home working flexible hours and part time options depending on the role requirements please ask!
  • Unlimited PTO policy floating holidays volunteering days and a day off for your birthday
  • Learning and development tools to assist with your career development
  • Work with industry leading Subject Matter Experts and specialist products
  • Regular social events and networking opportunities
  • Collaborative supportive culture including an active DE&I program
  • Employee Assistance Program which provides expert third-party advice on wellbeing relationships legal and financial matters as well as access to counselling services

Applying

We know that sometimes the perfect candidate doesnt exist and that people can be put off applying for a job if they dont meet all the requirements. If youre excited about working for us and have relevant skills or experience please go ahead and apply. You could be just what we need!

If you need any adjustments to support your application such as information in alternative formats special requirements to access our buildings or adjusted interview formats pleasecontact us at and well do everything we can to help.

Inclusivity at Curinos

We believe strongly in the value of diversity and creating supportive inclusive environments where our colleagues can succeed. As such Curinosis proud to be an Equal Opportunity do not discriminate on the basis of race color ancestry national origin religion or religious creed mental or physical disability medical condition genetic information sex (including pregnancy childbirth and related medical conditions) sexual orientation gender identity gender expression age marital status military or veteran status citizenship or other protected characteristics.



Required Experience:

IC

Curinos empowers financial institutions to put customers at the center of every decision. Our AI-first platform transforms proprietary data advanced analytics and deep financial services expertise into timely recommendations - delivered right where teams work. The result: confident decisions stronge...