We are looking for a Senior Security Engineer who will play a critical role in maintaining the security and integrity of Fundserv's network, cloud and system infrastructure.

Fundserv has been the indispensable hub for the Canadian investment industry for over 30 years, connecting manufacturers, distributors, intermediaries, and service providers to build solutions that simplify business interactions and promote innovation in the industry. We do this by focusing on our corporate values of Collaboration, Adaptability, Integrity, and Respect.

In this role, you will

• Architect and implement security solutions to protect the organization against security threats that might affect the confidentiality, integrity and availability of Fundserv's data, system and network.
• Manage security and compliance of hybrid cloud setup using CSPM, CNAPP, and other industry frameworks and standards.
• Perform threat modeling, risk assessment and Penetration test on network and infrastructure setup and collaborate with different teams to mitigate the identified threats.
• Work closely with IT and business teams to integrate security policy, procedure and best practice across all the projects, tools and technologies utilized within the organization.
• Stay up to date on the latest malicious security trends that affect the financial industry and mentor other engineers in the team by sharing knowledge.
• Automate repetitive tasks with python scripts or using other automation tools.
• Respond to security incidents and zero days by leveraging incident response tools, framework, process and procedures.

Why you are the person we're looking for

You've demonstrated the ability to do the following, gained through education and/or experience:

• Implementation of security tools and technologies like EDR/XDR, DLP, database logging & monitoring, and SIEM for a medium sized organization.
• Utilized cloud and container security tools to improve the security posture of an organization's hybrid cloud setup.
• Designed and architected a security solution to reduce the threat exposure of an application or tool.
• Configure and manage networking tools and technologies like NGFW, IDS/IPS, SASE and WAF, preferably Cisco and Fortinet products.
• Collaborate with stakeholders on multiple levels to advocate for security change across the organization.
• Perform vulnerability management, threat modelling, risk assessment and penetration test on network, infrastructure or application environments.
• Explain, present, demonstrate, and document the impact of vulnerabilities or security loopholes on an organization level.
• Facilitate remediation of the identified security gaps by providing sufficient details on existing mitigation and proposing solutions.

The following is not required but will be a bonus:

• CISSP, CCSP, GIAC Cloud security, architecture and design.

We recognize that there are different paths to gaining skills, so if you have diverse experience which doesn't match the criteria exactly but you think you would be great in this role, we invite you to apply!

Why Work Here

Our Benefits and Perks

We've consistently been recognized as a GTA Top Employer and a Canada Top Small & Medium Employer. Below are some of the reasons why:

• Employer-paid premiums for group health plan, including a Healthcare Spending Account
• Up to $2,000 per year for mental health practitioners and corporate-wide mental health days per year
• Wellness benefit for gym memberships, workout equipment, meditation and wellness apps, and more!
• RRSP matching program
• $500 one-time stipend for home office equipment and monthly home-internet subsidy
• Out of Province policy offers up to 20 days of out-of-province work per calendar year for employees with 2+ years of service
• Access to tools like LinkedIn Learning and Pluralsight and additional training opportunities
• EI top-up programs for maternity and parental leave, family medical, and family caregiver leave

Our Hybrid Work Policy

We recognize the importance of flexibility and work-life balance, and as such our hybrid model is purpose-led - we come in for a reason, not to fill a quota.