84 Cloud Security Engineer jobs in Canada

Job Description

Job Description

Cloud Security Engineer

Location: Toronto, ON

Hybrid: 3 days in office

Salary: $100,000.00 + per annum

Years of experience: 5+ years related experience in Cloud Security Engineering roles

About the Role

We are seeking an experienced Cloud Security Engineer with 5+ years in cloud security to strengthen our enterprise environments. The role centers on managing, maintaining and supporting Microsoft cloud solutions M365 and Azure. ie Intune, Co-Pilot, Azure Security services, and Microsoft Defender for Cloud and Endpoint along with other capabilities. You will be responsible for securing cloud infrastructure, enhancing threat detection and response and driving Zero Trust and compliance across the cloud environment.

---

Key Responsibilities

• Design, deploy, and refine Zero Trust security architectures for Azure and Microsoft 365 environments.
• Implement and manage identities and Access using Microsoft Entra (MFA, SSO, PIM, etc.)
• Implement and manage Microsoft Intune for device management, including endpoint security, compliance polices, and secure device management.
• Implement and manage Microsoft Co-Pilot to enhance AI and automation capabilities for operational and integration work.
• Deploy, configure, and maintain Azure Security services (Azure Security Center, Azure Policy, Key Vault, Privileged Identity Management, Conditional Access, MFA, etc.).
• Manage and optimize Defender for Cloud (CSPM).
• Develop, test and support security baselines, RBAC policies and compliance policies through security posture assessments across Azure workloads and endpoints aligned with compliance frameworks (CIS, NIST, ISO, etc.)
• Support threat modeling, risk assessments, and incident response activities to reduce risk exposure.
• Support audit, governance, and compliance reporting using Microsoft security and compliance solutions.
• Familiarity and support of WAFs and Firewalls.
• Provide technical guidance, security automation, and mentoring to colleagues.

---

• 5+ years in Cloud Security Engineering roles.
• Hands on experience with:
  • Microsoft Intune (endpoint/device security, compliance, app protection).
  • Co-Pilot for automation
  • Defender suite (Cloud, Endpoint, Identity)
  • Azure AD, Conditional Access, MFA, RBAC, Key Vault
  • Strong Background in Azure Policy, Blueprints and Security Baselines
  • Support VPNs, Firewalls, WAF's, within the Azure enviornment
  • Support Sentinel SIEM/SOAR (analytics, rules, automated playbooks)
  • PIM (Privileged Identity Management)
• Experience in vulnerability management, systems hardening, orchestration/automation (PowerShell, Azure CLI, Terraform, Python)
• Support Incident Response in M365 and Azure framework
• Good Knowledge of compliance frameworks (CIS, NSIT, ISO27001, GDPR, etc.)
• Excellent problem solving, written and communication skills
• Bonus: Familiarity with Qualys, LanSweeper, Global Secure Access, Purview

---

Preferred Qualifications

• Certifications:
  • AZ-500: Microsoft Azure Security Technologies
  • SC-200: Microsoft Security Operations Analyst
  • SC-100: Microsoft Cybersecurity Architect (Preferred)
  • Microsoft Certified: Endpoint Administrator / Intune Specialist
• Experience with cloud-native security across multi-cloud (Azure, AES, GCP).
• Familiarity with Zero Trust Architecture and modern endpoint management

Other similar job titles: Azure Engineer, Cloud Security Operations Engineer, Cloud Security Consultant.

---

About TPH

TPH operates 65 production centres across Canada to serve our customers where and when they need it. Locally produced, in the exact quantity that our customers require, and delivered when and where they need it. TPH has been named North America's most forest-friendly printer and one of Canada's Greenest Employers.

Commitment to Diversity, Inclusion, Accessibility & Anti-Racism:

TPH is committed to a diverse and inclusive workplace where everyone is respected and valued for their contributions and has opportunity to grow and develop. TPH will provide accommodation throughout the recruitment process upon request. If you require accommodation, please notify us and we will work with you to meet your needs.

Job Description
Insight Global is looking for a Cloud Security Engineer for one of the leading banks in Toronto. We are looking for a detailed-oriented Cloud Security Engineer to join our team. This individual will focus on automating and validating compliance as code (CaC) policies across multi cloud environments including GCP, Azure and AWS. This role involves creating and implementing automated test cases to ensure these policies function as intended.The engineer will integrate these tests into GitHub based CI CD pipelines using GitHub workflows and GitHub actions and leverage Terraform, Python, PowerShell.
Mainly responsibilities include the below:
· Design, develop, implement and maintain automated test frameworks for the behavior of existing compliance as a code policy across cloud environments (GCP/AWS/Azure) in alignment with banking regulations.
· Develop comprehensive positive negative and edge exception test cases to validate policy enforcement logic.
· Build automated test pipelines integrated with CI CD workflows to ensure continuous validation of CAC changes
· Collaborate with CaC policy developers and security architects and Cloud Service Owners to understand intended behavior and failure conditions
· Implement mock cloud environments/services/IAM for to simulate realistic scenarios for policy testing
· Maintain a test suite library and ensure traceability between compliance requirements validation cases and artifacts
Continuous testing & CI/CD integration
· Integrate compliance validation tests into CI CD pipelines GitHub actions GitHub workflows and terraform to enforce continuous compliance checks before deployment.
· Automate security scanning and validation of terraform deployments with PowerShell, and Python
· Validate the enforcement of banking cloud security policies by embedding automated compliance checks into DevSecOps workflows and actions.
Cloud Security and Regulatory Compliance enforcement
· Work closely with Banking security, DevSecOps teams, and Cloud Compliance governance teams to define and enforce cloud security controls in accordance with regulatory mandates.
· Validate cloud resource configurations against financial industry standards, (NIST, ISO 27001, SOC 2)
Reporting & Audit Readiness
· Implement/test logging and monitoring solutions to detect compliance violations in real time.
· Automate/validate the generation of compliance reports and dashboards using tools like SonarQube, Wiz.IO, Splunk
· Ensure that all Standards & STIG requirements for IAAS, PaaS, SaaS CaC development, and testing activities are traceable and auditable for internal risk assessments and external regulatory audits.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: and Requirements
-Strong Knowlege of GCP, Azure, AWS.
-4+ years in Cloud Security, DevSecOps, or Cloud Engineering roles.
-Cloud infrastructure as a code - experience with Terraform, Helm, ARM, JSON, YAML
-Compliance as Code (CaC)- Hands on experience with HashiCorp Sentinel, Azure policy, Wiz policy, GCP Org policy and Open Policy Agent, Kubernetes
-CI/CD Pipelines- Experience with GitHub actions, Jenkins
-Scripting and Automation- Proficiency in Python, Bash, Go, PowerShell, terraform and automate testing framework.
-Cloud Security & Compliance - Understanding of CIS benchmarks, NIST standards and security frameworks.
- -Specifications; Azure fundamentals certification Azure security engineer associate, GCP fundamentals certification
-Experience with multi cloud security testing GCP, Azure and AWS
-Experience with Container security and Kubernetes policy enforcement

**We help the world run better**
At SAP, we keep it simple: you bring your best to us, and we'll bring out the best in you. We're builders touching over 20 industries and 80% of global commerce, and we need your unique talents to help shape what's next. The work is challenging - but it matters. You'll find a place where you can be yourself, prioritize your wellbeing, and truly belong. What's in it for you? Constant learning, skill growth, great benefits, and a team that wants you to grow and succeed.
**About the SAP Internship Experience Program**
The SAP Internship Experience Program is SAP's global, strategic, paid internship program that provides university students with opportunities to find purpose in their careers.
Three reasons to intern at SAP
1. Culture of collaboration: meet with mentors, make new friends across the globe and create a thriving personal network.
2. Project-driven experience: gain cross-functional skills from our virtual and in-person learning sessions, diverse subject matter experts, and project deliverables.
3. Gain visibility: with SAP Internship Experience Program in your title, you'll have a global network of SAP leaders, entrepreneurs and career development opportunities at your fingertips.
**What you'll do**
Position Title: SAP iXp Intern - SAP Analytics Cloud Security Engineer
Location: Vancouver, BC
Expected Start Date: January 2026
Contract Duration: 8 months
Work Hours: 40 hours per week
As a security intern on the SAP Analytics Cloud team, you will have the opportunity to:
+ Work closely with the Cloud Architecture teams to ensure adherence to the defined security, risk and governance needs
+ Analyze security test results with applicability to target environments
+ Ability to understand the risks and security issues associated with infrastructure (such as servers, networks and storage) and able to clearly articulate them to business users and technical personnel.
+ Conduct and/or manage vulnerability assessments, penetration testing, and compliance audits of IT operations, application systems and infrastructure
+ Contribute to hands-on coding, design, test and architecture to deliver best solutions to our customers
+ Collaborate in a team environment that extends to colleagues in remote locations and from various lines of businesses within the company.
+ Assess new technology, tool and infrastructure to keep up with the rapid pace of change.
+ Embrace lean and agile software development principles
**What you bring**
We're looking for someone who takes initiative, perseveres, and stay curious. You like to work on meaningful innovative projects and are energized by lifelong learning.
Education: Computer Science or Engineering or related field of study.
Eligibility: Must be currently enrolled, or recently graduated (start date must be within 6 months of graduation date) from a coding academy/bootcamp, apprenticeship, associate, bachelor's, master's or JD/PhD program.
+ Ability to work well in a team as well as independently and have a positive self-motivated can-do attitude
+ Solid programming skills in Javascript/Java/python (or equivalent)
+ Working knowledge of data structures, algorithms and principles of OO design
+ Understanding of databases and web application servers
+ Knowledge in software security (authentication mechanisms, cryptography, security breaches.)
+ Basic IT security knowledge (system and network security, firewalls, IPS, Proxies)
+ Previous internship experience would be an asset
+ Experience with products for networking analyses and scanning (e.g. Nmap, Wireshark Zap, BurpSuite, .) is a plus
+ Prior experience with AWS/Azure/GCP is preferred but not mandatory
**Meet your team**
The SAP Analytics Cloud team is looking for energetic and innovative individuals to help with our next generation cloud-based Analytics platform on the topic of security. Are you passionate about security and understand the importance of end-to-end security, data protection and compliance of SAPs technology development and operations? Do you thrive in a team with strong engineers to learn from and where all members of the engineering team, including management are close to the code and making technical contributions? If so, then this is the right job for you! Help us shape the future.
**Bring out your best**
SAP innovations help more than four hundred thousand customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end-to-end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with two hundred million users and more than one hundred thousand employees worldwide, we are purpose-driven and future-focused, with a highly collaborative team ethic and commitment to personal development. Whether connecting global industries, people, or platforms, we help ensure every challenge gets the solution it deserves. At SAP, you can bring out your best.
**We win with inclusion**
SAP's culture of inclusion, focus on health and well-being, and flexible working models help ensure that everyone - regardless of background - feels included and can run at their best. At SAP, we believe we are made stronger by the unique capabilities and qualities that each person brings to our company, and we invest in our employees to inspire confidence and help everyone realize their full potential. We ultimately believe in unleashing all talent and creating a better world.
SAP is committed to the values of Equal Employment Opportunity and provides accessibility accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team:
For SAP employees: Only permanent roles are eligible for the SAP Employee Referral Program ( , according to the eligibility rules set in the SAP Referral Policy. Specific conditions may apply for roles in Vocational Training.
Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, ethnicity, gender (including pregnancy, childbirth, et al), sexual orientation, gender identity or expression, protected veteran status, or disability, in compliance with applicable federal, state, and local legal requirements.
SAP believes the value of pay transparency contributes towards an honest and supportive culture and is a significant step toward demonstrating SAP's commitment to pay equity. SAP provides the hourly base salary rate range applicable for the posted role. The targeted range for this position is 24-35 CAD. The actual amount to be offered to the successful candidates will be within that range, dependent upon the key aspects of each case which may include education, skills, experience, scope of the role, location, etc. as determined through the selection process. SAP offers limited benefits for employees hired into hourly or like roles subject to appliable plan/policy terms. A summary of benefits and eligibility requirements can be found by clicking this link: to the nature of the role, which involves global interactions with SAP entities, as well as with employees and stakeholders in Canada, functional proficiency in English is required for positions based in the Quebec.
**AI Usage in the Recruitment Process**
For information on the responsible use of AI in our recruitment process, please refer to our Guidelines for Ethical Usage of AI in the Recruiting Process ( .
Please note that any violation of these guidelines may result in disqualification from the hiring process.
Requisition ID: | Work Area: Information Technology | Expected Travel: 0 - 10% | Career Status: Student | Employment Type: Limited Full Time | Additional Locations: #LI-Hybrid
#SAPNextGen

Job Description

Job Description

Salary: 100k-150k

Job Overview

We are seeking a seasoned Cloud Security & Compliance Engineer to play a large, hands-on role in our SOC 2 program. You will partner closely with leadership, auditors, and engineering to implement controls, build evidence collection, and drive continuous improvement. You will also help define security policy scope, build an enforcement pipeline with automation, conduct vendor security assessments, and contribute as a strong DevOps engineer. This is especially important as we scale compliance-by-default practices.

The job is primarily remote with in-office presence required a few times a year.

Our full-time positions are for a35 hour workweek.

Responsibilities

Cloud Security (Primary)

• Partner with the SOC 2 program lead to design and implement controls, build evidence-collection workflows, and refine policies and procedures.
• Act as a key contributor during readiness, gap remediation, auditor interactions, and ongoing audits.
• Help refine security policy scope across applications, infrastructure, data, and vendors.
• Maintain existing policies such as acceptable use, data classification, retention, and incident response.
• Provide pragmatic and business-aware security guidance to leadership and engineering.

• Embed security into CI/CD with SAST, DAST, dependency and container scanning, secrets detection, infrastructure-as-code checks, and policy-as-code.
• Automate compliance with evidence capture, control attestations, drift detection, SBOM management, artifact signing, and guardrails.

• Vendor security assessments (third-party risk): Run questionnaires, review attestations, risk-rate vendors, guide remediation, and track follow-ups.
• AWS infrastructure security: Enforce guardrails with IAM, SCPs and Organizations, KMS, CloudTrail, Config, Security Hub, GuardDuty, and network controls.
• Align to CIS and NIST patterns. Champion least-privilege and zero-trust approaches.
• Improve logging and monitoring, alerting, runbooks, tabletop exercises, and incident postmortems.

DevOps (Secondary)

• Collaborate cross-functionally and participate in reviews.
• Help expand and manage existing infrastructure.
• Oversee CI/CD pipeline health.
  

Requirements

• Bachelors in Computer Science, Cybersecurity, or a related field, or equivalent experience.
• 5+ years in Cloud Security, DevSecOps or platform security.
• Proven experience implementing and operating SOC 2. Exposure to ISO 27001 or similar frameworks is a plus.
• Strong experience with infrastructure as code such as Terraform, CloudFormation, and CI/CD security integrations.
• Hands-on experience with containers using Docker and orchestration using ECS or similar.
• Experience with monitoring and logging using OpenTelemetry.
• Proficiency in at least one scripting language such as Python.
• Excellent communication and documentation skills. Comfortable presenting tradeoffs to stakeholders.

Bonus

• Ruby on Rails experience.
• Bilingual (French and English)
• Experience with compliance automation platforms such as Vanta or Drata.
• SIEM or EDR experience such as Splunk or Sentinel.
• AWS certifications.
• Familiarity with CIS Benchmarks, NIST CSF, and MITRE ATT&CK.

Competencies: Database Optimization and Tuning, Database Technology

Experience (Years): 4-6 (actually 6-8)

Role Description:

Min of 2-3 years of IT experience - Client - Server architecture (Windows Linux Servers)Min of 1-2 years of experience assessing database security controls using manual processes and automated tools (i.e., Imperva, IBM Guardium, Qualys)Min of 1-2 years of experience using database activity monitoring tools would be an assetMin of 1-2 years of experience performing data discovery activities on data repositories using data discovery tools (i.e., Imperva, IBM, Symantec, McAfee, Microsoft, Varonis, BigID etc.) with more focus on structured data repositories (databases)Min of 1-2 years of experience with configuring managing supporting AWS and Azure cloud native DB services like AWS RDS, AWS Dynamo on-prem database platforms like Oracle, SQL, DB2, Big data, Netezza, PostgreSQL Mongo would be an assetKnowledge of data protection related regulatory requirements, emerging trends and issues would be an asset Knowledge of industry leading data protection tools and data management practices would be an assetComfortable of working in an agile fast paced environment

Ready to be pushed beyond what you think you're capable of?
At Coinbase, our mission is to increase economic freedom in the world. It's a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform - and with it, the future global financial system.
To achieve our mission, we're seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company's hardest problems.
Our is intense and isn't for everyone. But if you want to build the future alongside others who excel in their disciplines and expect the same from you, there's no better place to be.
While many roles at Coinbase are remote-first, we are not remote-only. In-person participation is required throughout the year. Team and company-wide offsites are held multiple times annually to foster collaboration, connection, and alignment. Attendance is expected and fully supported.
Coinbase Cloud Security (CloudSec) is looking for a Staff Security Engineer to enhance our network security across multiple cloud environments. This role involves leading the design, implementation, and continuous improvement of our security posture. You will leverage your extensive skills in WAF management, DDoS protection, network segmentation, and firewall policy management to enforce robust security measures while enabling developer efficiency.
*What you'll be doing (ie. job duties):*
* Design, implement, and maintain network security controls across multi-cloud (AWS, GCP, etc.) and on-prem infrastructure
* Own and optimize Web Application Firewalls (WAF) and DDoS protection services for scalability and resilience.
* Enforce network segmentation and firewall rules that minimize blast radius without impairing productivity.
* Review configuration changes and write policies to detect security invariants.
* Drive continuous improvement of secure-by-default network patterns for developers.
* Write code for automations that support security requirements like threat detection, incident containment, and network access management.
* Partner with engineering teams to review network and routing architecture design changes.
*What we look for in you (ie. job requirements):*
* At least 8 years of experience in network security with deep expertise in AWS and cloud edge security experience.
* An ability to deploy cloud infrastructure with Terraform and to develop automations or guardrails with Golang.
* An execution-focused mindset, capable of navigating through ambiguity and delivering results.
* Your passion for building an open financial system that brings the world together drives you to excel in this role.
*Nice to haves:*
* Proficiency in crafting Rego rules for Open Policy Agent (OPA) or comparable policy-as-code solutions.
* Proven experience implementing AWS Network Firewall or GCP Cloud Firewall in large-scale production environments.
* Demonstrated expertise in managing Cloudflare.
* Experience with both GCP and/or on-premise infrastructure.
Position ID: P72327
#LI-Remote
*Pay Transparency Notice: *The target annual salary for this position can range as detailed below. Full time offers from Coinbase also includebonus eligibility + equity eligibility + benefits (including medical, dental, and vision)
Pay Range:
$217,900-$217,900 CAD
Please be advised that each candidate may submit a maximum of four applications within any 30-day period. We encourage you to carefully evaluate how your skills and interests align with Coinbase's roles before applying.
Commitment to Equal Opportunity
Coinbase is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, sex, gender expression or identity, sexual orientation or any other basis protected by applicable law. Coinbase will also consider for employment qualified applicants with criminal histories in a manner consistent with applicable federal, state and local law. For US applicants, you may view the in certain locations, as required by law.
Coinbase is also committed to providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please contact us at accommodations Data Privacy Notice for Job Candidates and Applicants
Depending on your location, the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) may regulate the way we manage the data of job applicants. Our full notice outlining how data will be processed as part of the application procedure for applicable locations is available Disclosure
For select roles, Coinbase is piloting an AI tool based on machine learning technologies to conduct initial screening interviews to qualified applicants. The tool simulates realistic interview scenarios and engages in dynamic conversation. A human recruiter will review your interview responses, provided in the form of a voice recording and/or transcript, to assess them against the qualifications and characteristics outlined in the job description.
For select roles, Coinbase is also piloting an AI interview intelligence platform to transcribe and summarize interview notes, allowing our interviewers to fully focus on you as the candidate.
*The above pilots are for testing purposes and Coinbase will not use AI to make decisions impacting employment*. To request a reasonable accommodation due to disability, please contact accommodations(at)coinbase.com

Job Description

Job Description

Who we are:

For over 20 years, Global Relay has set the standard in enterprise information archiving with industry-leading cloud archiving, surveillance, eDiscovery, and analytics solutions. We securely capture and preserve the communications data of the world's most highly regulated firms, giving them greater visibility and control over their information and ensuring compliance with stringent regulations.

Though we offer competitive compensation and benefits and all the other perks one would expect from an established company, we are not your typical technology company. Global Relay is a career-building company. A place for big ideas. New challenges. Groundbreaking innovation. It's a place where you can genuinely make an impact – and be recognized for it.

We believe great businesses thrive on diversity, inclusion, and the contributions of all employees. To that end, we recruit candidates from different backgrounds and foster a work environment that encourages employees to collaborate and learn from each other, completely free of barriers.

Job purpose

The IT Network Security Specialist – L2 is responsible for assisting in engineering, long term strategies, planning, integration, and deployments pertaining to the IT Network. They will work closely with all members of the IT Operations team to continuously design, evolve, build, and ensure the integration, manageability, and security of highly available systems and applications. Working closely with other units, they will ensure that the design of Global Relay's IT Networks integrate with other technologies such as storage, virtualization, containerization, and any and all systems and services.

Duties and responsibilities

• Participate in the development and engineering of long term strategies for the IT Network
• Utilize 'Systems Thinking' to understand interdependencies both within the IT Network and Infrastructure, and throughout Global Relay's interests
• Work closely with Operations and Development teams to identify, troubleshoot, diagnose, and correct system related issues as they arise
• Participate in formulating and implementing innovative techniques for achieving and maintaining a high level of client satisfaction in conjunction with organizational effectiveness
• Collaborate with Operations and Development teams to identify opportunities for improved service, efficiency, security, and resiliency
• Participate in strategic planning initiatives as well as selection, installation, operationalizing, and ongoing support of infrastructure enhancements
• Participate and support change management activities
• Provide support to business users and key stakeholders as needed
• Participate in the creation of documentation including: Runbooks, how-to user guides & technical how-to support guides, and Method of Procedures (MoP)
• Support and evolve the monitoring and reviewing of system dashboards and critical alerts to ensure system issues are identified, escalated, and addressed as quickly as possible
• Identify, evaluate and make recommendations on opportunities for the implementation of automation
• Provide support for all Systems Administration, escalated incidents or problem related items
• Utilize acquired knowledge to balance user requirements, available resources, organizational goals and objectives while striving to maintain top quality client service

Qualifications

• Minimum of 5+ years' experience in a Network Specialist capacity
• Experience with complex enterprise network architecture planning, design, and implementation
• Experience with troubleshooting & resolving complex technical problems, management reporting, and documentation (how-to, processes and procedures, MoP)
• Proven ability to self-manage and balance assigned work meeting deliverables as scheduled
• Solid knowledge and experience in deploying and managing Linux
• Experience in network configuration of Aruba, HPE, Arista, or Cisco would be considered an asset
• Experience in VOIP and UC technologies such as Cisco UC
• Experience with Aruba wireless systems and ClearPass
• Experience in automation and scripting
• Experience provisioning, maintaining, and supporting enterprise networks, firewalls, and related dependencies
• Experience with OpenSource software and/or service management tools and applications (OpenStack, OpenShift, Zabbix, JIRA, Confluence, Jenkins, etc.)
• Experience with implementing and leveraging automation in the delivery of system administration responsibilities
• Solid knowledge of network protocols including TCP/IP, UDP, HTTP, FTP, ARP, ICMP, MPLS, BGP, EVPN, VXLAN, etc.
• Demonstrated ability to work both collaboratively in a team environment as well as independently in an effective and organized manner in a complex and challenging environment
• Adaptability to work with multiple teams on projects with varying degrees of flexibility/rigidity at different points in the development cycle
• Solid experience working in an environment with formally structured IT Operational processes, such as work request ticket management, incident management, change management, problem management, etc.
• Ability to take on internal operational initiatives as the owner and coordinator for projects or large scale items
• ITSM Framework certifications such as ITIL, Sigma, SIAM or Methodology certifications such as Agile, Scrum, DevOps are considered a definite asset

Compensation:

Global Relay advertises the pay range for this role in compliance with British Columbia's pay transparency laws. Individual pay rates are determined by evaluating factors such as expertise, skills, education, and professional background.

The range below reflects the expected annual base salary, which is only one element of our comprehensive total rewards package designed to reflect our company pay philosophy, culture and values. We aim to foster an inspiring work environment and support employees' work-life rhythms. We provide a comprehensive extended health benefits program, including virtual healthcare and a wellness allowance. Employees also receive annual allotted vacation days, which increase based on tenure. Other benefits include: Paid sick days, maternity/parental enhancement program, corporate bonuses, and an RRSP contribution matching program.

For Vancouver-based employees, we provide a subsidized meal program, courtesy of our talented in-house culinary team!

British Columbia - Base salary range

$85,000—$100,000 CAD

What you can expect:

At Global Relay, there's no ceiling to what you can achieve. It's the land of opportunity for the energetic, the intelligent, the driven. You'll receive the mentoring, coaching, and support you need to reach your career goals. You'll be part of a culture that breeds creativity and rewards perseverance and hard work. And you'll be working alongside smart, talented individuals from diverse backgrounds, with complementary knowledge and skills.

Global Relay is an equal-opportunity employer committed to diversity, equity, and inclusion.

We seek to ensure reasonable adjustments, accommodations, and personal time are tailored to meet the unique needs of every individual.

To learn more about our business, culture, and community involvement, visit

Job Description

Job Description

Company Description

At NIQ, we believe in turning ideas into action, collaborating as one team, and delivering results that matter. We are looking for a Senior Cybersecurity Network Engineer who embodies these principles — someone passionate about building secure, scalable infrastructure and committed to protecting the systems that power our clients’ insights. 

In this role, you will lead the design and implementation of security solutions that support NIQ’s mission to deliver trusted insights. You will work cross-functionally — and often across lines of business — to solve complex challenges, mentor others, and drive innovation with urgency and accountability. If you are client-obsessed, integrity-driven, and motivated to win as part of a high-performing team, we invite you to bring your expertise to NIQ and help advance how we secure the technologies that drive our clients’ success. 

Job Description

• Lead the design and implementation of secure, scalable infrastructure solutions that align with NIQ’s security and compliance objectives.  

• Serve as a trusted subject matter expert, driving initiatives that strengthen NIQ’s security posture and advance our engineering maturity across diverse lines of business and technologies. 

• Demonstrated senior-level expertise, with a proven ability to lead the resolution of complex technical issues, provide strategic support across diverse environments, and guide teams through advanced troubleshooting and incident response scenarios. 

• Collaborate with cross-functional teams across multiple lines of business to deliver security solutions that enable our growth while managing risk effectively. 

• Champion automation, observability, and engineering best practices to improve the reliability, scalability, and efficiency of NIQ’s security infrastructure. 

• Mentor and uplift junior engineers, fostering a culture of curiosity, continuous learning, and pride in our collective capabilities. 

• Translate security requirements into actionable technical strategies, balancing security, usability, and operational efficiency. 

• Proactively identify and mitigate risks, lead root cause analyses, and drive long-term improvements that reflect NIQ’s commitment to quality and accountability. 

• Influence strategic planning and decision-making, contributing to the evolution of enterprise security architecture. 

Qualifications

• Proven track record of designing, implementing, and supporting secure infrastructure solutions in complex enterprise environments. 

• Expertise in Networking and Network Security Cybersecurity domains. 

• Hands-on experience with network analysis and security tools such as packet capture, NGFW, IDS/IPS, web proxy/SWG, routing/switching, DNS, application layer networking, transport layer security (encryption/decryption), certificate handling and wireless technologies.  

• A strong command of spoken and written English, to facilitate communications with our global workforce. 

• Strong communication and collaboration skills, with the ability to influence and engage stakeholders across technical and business teams. 

• Demonstrated leadership in coaching and mentoring junior engineers. 

• Working knowledge of the CIS framework and risk management practices. 

• Bachelor’s degree or College Diploma in Computer Science, Cybersecurity, or Information Systems (or equivalent practical experience). 

• A minimum of 5–8 years of experience in Cybersecurity and/or Information Technology (IT), demonstrating expertise in securing systems, managing risk, and supporting enterprise IT environments, is required. 

• Relevant industry certifications (e.g., ISC2, GIAC) are a plus.

Additional Information

NielsenIQ is a global measurement and data analytics company that provides the most complete and trusted view available of consumers and markets worldwide. We provide consumer packaged goods manufacturers/fast-moving consumer goods and retailers with accurate, actionable information and insights and a complete picture of the complex and changing marketplace that companies need to innovate and grow. Our approach marries proprietary NielsenIQ data with other data sources to help clients around the world understand what’s happening now, what’s happening next, and how to best act on this knowledge. We like to be in the middle of the action. That’s why you can find us at work in over 90 countries, covering more than 90% of the world’s population. For more information, visit

NielsenIQ is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action-Employer, making decisions without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability status, age, marital status, protected veteran status or any other protected class. 

Our Benefits

• Flexible working environment
• Volunteer time off
• LinkedIn Learning
• Employee-Assistance-Program (EAP)

About NIQ

NIQ is the world’s leading consumer intelligence company, delivering the most complete understanding of consumer buying behavior and revealing new pathways to growth. In 2023, NIQ combined with GfK, bringing together the two industry leaders with unparalleled global reach. With a holistic retail read and the most comprehensive consumer insights—delivered with advanced analytics through state-of-the-art platforms—NIQ delivers the Full View™. NIQ is an Advent International portfolio company with operations in 100+ markets, covering more than 90% of the world’s population.

For more information, visit NIQ.com

Want to keep up with our latest updates?

Follow us on: LinkedIn | Instagram | Twitter | Facebook

Our commitment to Diversity, Equity, and Inclusion

At NIQ, we are steadfast in our commitment to fostering an inclusive workplace that mirrors the rich diversity of the communities and markets we serve. We believe that embracing a wide range of perspectives drives innovation and excellence.  All employment decisions at NIQ are made without regard to race, color, religion, sex (including pregnancy, sexual orientation, or gender identity), national origin, age, disability, genetic information, marital status, veteran status, or any other characteristic protected by applicable laws. We invite individuals who share our dedication to inclusivity and equity to join us in making a meaningful impact. To learn more about our ongoing efforts in diversity and inclusion, please visit the  -center/diversity-inclusion

Job Description

Job Description

Salary:

Ce poste est un contrat d'un an, avec possibilit de renouvellement.

Rsum

Les ingnieurs en scurit rseau offrent une assistance pour une grande varit de dispositifs lis la scurit rseau. Cela inclut, sans s'y limiter, les pare-feu, les proxys, les ISD/IPS, les VPN, etc. Les technologies utilises comprennent les fournisseurs de services cloud (AWS, Azure, OCI) et des fournisseurs tels que Palo Alto, Fortinet, Cisco, F5 et Juniper.

L'ingnieur en scurit rseau est galement responsable de la maintenance de l'infrastructure oprationnelle, y compris la gestion des changements et une grande varit de documents afin d'assurer la cohrence au sein du dpartement de support infrastructure. L'ingnieur en scurit rseau assistera les architectes dans des tches et des projets de haut niveau. Voici les tches attendues d'un ingnieur en scurit rseau : Entretien et maintenance des appareils.

Les ingnieurs en scurit rseau sont chargs de garantir la cohrence de la configuration sur toutes les plateformes gres des clients. Ils participent au processus de gestion des changements, au calendrier de mise jour des appareils, l'examen des avis de scurit, etc. Les ingnieurs sont tenus de participer aux appels de dpannage et d'aider les ressources de support de niveau infrieur dans leurs activits quotidiennes et le transfert de connaissances.

Les tches oprationnelles comprennent :

• Gestion des appareils en fonction des demandes des clients.
• Dpannage des incidents rseau.
• Validation des changements complexes d'infrastructure dans l'environnement de laboratoire/sandbox.
• Examen des avis de scurit et analyse de l'impact possible sur l'infrastructure gre du client.
• Se tenir au courant des dernires tendances en matire de scurit et des technologies rseau de pointe.
• S'assurer que la documentation technique est jour.
• Transfert des connaissances techniques.
• Participation la rotation des astreintes

Documentation :

Afin de fournir un soutien adquat et de garantir l'identification des problmes, ainsi qu'une piste d'audit de scurit viable,

il est ncessaire de documenter correctement toutes les activits et actions pertinentes lors du traitement

d'un problme. Cela signifie :

• Consigner avec prcision les actions et les mesures prises.
• S'assurer que toutes les communications relatives un problme particulier sont consignes
• S'assurer que toutes les parties concernes sont informes des mesures prises
• S'assurer que tous les processus sont documents, ce qui permet d'assurer la cohrence dans l'ensemble du dpartement et de prendre rapidement des mesures en cas de problmes rcurrents.

Apprentissage et tests :

• Les NSE sont galement chargs de tester les appareils pris en charge. Cela permet de s'assurer que les appareils fonctionnent un niveau lev tout en y apportant rgulirement des modifications. C'est pourquoi un environnement de laboratoire contenant bon nombre de nos appareils en ligne est frquemment utilis pour les tests et l'apprentissage. Les responsabilits des NSE comprennent :
• S'assurer que les correctifs et les mises jour du micrologiciel peuvent tre appliqus en toute scurit.
• Rsoudre les problmes de scurit en reproduisant l'environnement du client.
• S'assurer que les appareils continuent protger les environnements des clients contre les dernires menaces
• et vulnrabilits.

Exigences et exprience :

• Exprience avre en gestion de clients et solides comptences en communication orale et crite.
• Matrise parfaite de l'anglais, tant l'crit qu' l'oral, en raison des interactions rgulires avec des clients/partenaires hors Qubec et de la nature des responsabilits internationales de l'entreprise.
  
• Au moins 3 ans d'exprience dans l'exploitation de rseaux.
• Au moins 1 an d'exprience en scurit rseau (pare-feu, accs rseau, contrles de scurit).
• Solides connaissances de la suite de protocoles TCP/IP.
• Exprience avre en routage (BGP) et en cloud computing (AWS, Azure).
• Les certifications Cisco CCNP, Palo Alto PCNSA, CompTIA Security+ ou des comptences quivalentes sont prfrables.
• Les certifications de fournisseurs de cloud (AWS, Azure) sont un plus.
• Capacit planifier, organiser et hirarchiser les tches accomplir dans les dlais impartis
• Capacit travailler de manire autonome sans supervision directe, motivation personnelle et respect des dlais serrs
• Flexibilit dans l'horaire de travail.

___

This position is a 1-year contract role, with the possibility of renewal.

Summary

Network Security Engineers offer support for a wide variety of Network security-related devices. This includes, without being limited to Firewalls, Proxies, ISD/IPS, VPNs, Etc. Technologies include Cloud Providers (AWS, Azure, OCI), and vendors such as Palo Alto, Fortinet, Cisco, F5 and Juniper.

The Network Security Engineer is also responsible for operational infrastructure upkeep, including change management and a wide variety of documentation to ensure consistency throughout the Infrastructure Support department. The Network Security Engineer will provide assistance to the Architects with high-level tasks and projects. The following are the tasks expected of a Network Security Engineer: Device upkeep and maintenance.

Network Security Engineers are responsible for ensuring the configuration consistency across clients managed platforms. Participate in the change management process, device patching schedule, reviewing security advisories, etc. Engineers are expected to join troubleshooting calls and assist lower-level support resources in the day-to-day activities and knowledge transfer.

Operational tasks include:

• Device management based on the clients requests.
• Troubleshoot network incidents.
• Validate complex infrastructure changes in the lab/sandbox environment.
• Security Advisory review and analyze possible impact to the clients managed infrastructure.
• Stay current with the latest trends in security and cutting-edge network technologies.
• Ensure technical documentation is up to date.
• Technical knowledge transfer.
• Participation in on-call rotation

Documentation:

In order to provide proper support and ensure issue identification, as well as a viable security
audit trail, it is necessary to properly document all relevant activities and actions when working
on an issue. This means:

• Accurately logging actions and steps taken.
• Ensuring all communications on a particular issue are logged
• Ensuring all necessary parties are informed of actions being taken
• Ensuring all processes are documented, allowing consistency throughout the department, as well as prompt action to recurring issues.

Learning and testing:

• NSEs are also responsible for testing devices being supported. This is done to ensure that the devices perform at a high level while routinely implementing changes to them. For this reason, a lab environment containing many of our in-line appliances is frequently used for testing and learning. The NSEs responsibilities include:
• Ensure patches and firmware upgrades can be applied safely.
• Troubleshoot security issues by replicating the customers environment.
• Ensure that devices continue to protect customer environments from the latest threats
  and vulnerabilities.

Requirements and Experience:

• Proven Client Management experience and strong verbal and written communication skills.
• 3+ years or more of network operations experience.
• 1+ years of network security experience (Firewall, Network Access, Security controls).
• Strong knowledge of TCP/IP protocol suite.
• Proven experience with Routing (BGP) and Cloud Computing (AWS, Azure).
• Cisco CCNP, Palo Alto PCNSA, CompTIA Security+ or equivalent skills are preferred.
• Cloud vendor certifications (AWS, Azure) are a plus.
• Ability to plan, organize and prioritize tasks to complete within established time frames
• Ability to work independently without direct supervision, self-motivated, and meets tight deadlines
• Flexibility in the work schedule.