Cloud Security Engineer
CanadaJob Description
Key Skills Required
Master these to land this role
Want to know if you're a match for this job?
Join Jane as our new Cloud Security Engineer, where you'll help harden the cloud native systems, CI/CD pipelines, and container infrastructure that protect Jane and the sensitive health information our customers trust us with.
As our Cloud Security Engineer, you'll join a function that's still being built, working directly with me on some of the most active and consequential work in security right now. We're operationalizing our cloud native application security posture across our cloud environments, building security guardrails directly into CI/CD pipelines, automating secret remediation from detection through resolution, hardening our container infrastructure, and imagining what AI security looks like at Jane years from now.
What Impact We're Looking For You To Make
Contribute to maturing our cloud security posture management practice across our cloud environments, prioritizing signal over noise, building remediation workflows, and measuring genuine coverage rather than just finding volume.
Ship CI/CD security integrations that developers actually use, hardening the supply chain by understanding our pipelines, container image validation, secrets gates, and the automation that turns security findings into developer-facing, actionable output.
Partner with infrastructure enablement and product teams to embed security into the workflows they already use, making secure defaults the easiest choice rather than an additional step.
Help shape our AI security programme at scale, contributing to standards, tooling, and governance patterns for how Jane builds, deploys, and operates AI agents and systems safely as that surface area grows.
Participate in the on-call rotation and build runbook quality and post-incident reviews so the team responds faster and learns more from every incident.
What Experience We Need
2 to 4 years of solid grounding in AWS security across IAM, networking, compute, and storage, with a track record of taking ownership and growing your skills. Comfort reading and writing Terraform signals real depth here.
Working knowledge of CNAPP or CSPM tooling such as Wiz or Prisma Cloud, including how findings get operationalized, how false positive rates get managed, and how security posture actually improves over time rather than just accumulating alerts.
Experience with at least one of secrets detection and remediation, IaC hardening, container image scanning, or CI/CD pipeline security controls, along with an understanding of the full SDLC picture even if you haven't built every piece yourself.
Kubernetes or EKS security fundamentals, including RBAC hardening, Helm security configuration, network policies, and admission control, ideally with hands-on experience implementing policy guardrails via Kyverno or OPA/Gatekeeper.
How would you rate this job post?
See what other professionals think about this role.
Safety First
- Never pay for a job application.
- Do not share sensitive bank info.
- Verify the client before starting work.