Who We Are:

At 4Refuel we believe that our people are our greatest asset. We're dedicated to fostering a vibrant workplace culture where every employee feels valued, engaged, and inspired to contribute their best. We are proud to have achieved an employee engagement score of 93%, paired with our superior safety culture, 4Refuel was recently awarded a prestigious WSIB honor, winning 'Canada's Best Health & Safety Culture'. Among other notable achievements, 4Refuel has also been recognized as: Great Place to Work, Canada's Safest Employers, and Best Workplaces for Women from a Great Place to Work Canada.

As Canada's largest and most experienced mobile refueller, 4Refuel has dominated the direct-to-equipment market for over 25 years and ranks among the country's largest fuel buyers.

What You Will Do:

The Cloud Infrastructure & Security Administrator safeguards, optimizes, and supports our cloud-based data center. The role spans computing operations, backup and disaster recovery, network and systems security engineering, vulnerability management, and end-user escalations while serving as the primary liaison to our managed detection/response (MDR) partner.

You Will Be Responsible For:

AWS Infrastructure

• Provision, patch, and optimize EC2, and other AWS related services. Automate with CloudFormation/Terraform and PowerShell, manage IAM roles and least privilege access.
• Design and support VPCs, security groups, VPNs, IAM roles, Systems Manager, CloudWatch alarms, and backups.

Backup & Disaster Recovery

• Own AWS Backup, snapshots, cross-region replication, and test and document recovery procedures to meet RPO/RTO targets.
• Perform quarterly recovery and failover drills.

Patch Management & System Updates

• Schedule, test, and deploy OS, application, and firmware patches across cloud and on-prem resources
• Coordinate maintenance windows with stakeholders, track compliance and report on patch status and aging.

Security Operations & Incident Response

• Deploy, tune, and monitor the EDR platform, triage alerts, and coordinate with MDR analysts.
• Perform root cause analysis and write post-incident reports.

Vulnerability Detection & Remediation

• Operate vulnerability scanning tools (AWS Inspector, Nessus/Qualys, etc.), prioritize findings, schedule patching, track remediation through completion and report risk trends to leadership.

Network & Cloud Security Engineering

• Configure VPCs, security groups, NACLs, VPNs, and WAF rules, enforce CIS/AWS Well-Architected security controls and OS hardening baselines.

End User Support & Escalations

• Provide Tier 3 support for server, backup, and security issues
• Create knowledge base articles and brief IT Service Desk on recurring problems, deliver occasional training for power users.

Documentation & Continuous Improvement

• Produce runbooks, diagrams, and training materials, track emerging AWS features, threat intel, and security frameworks to recommend platform improvements

Network & Endpoint Security

• Implement and optimize endpoint protection and threat detection tools (e.g., EDR/next-gen AV), and manage vulnerability scanning platforms.
• Ensure critical security logs and events (CloudTrail, Windows event logs, etc.) are collected, retained, and generate timely alerts that integrate into the security operations workflow

Required Qualifications:

• 5 + years administering AWS infrastructure in production
• 3 + years managing Windows Server 2016/2019/2022
• Hands-on ownership of backup, DR, EDR, and vulnerability scanning tools

Certifications (one or more strongly preferred):

• AWS SysOps Administrator - Associate or AWS Security - Specialty
• Microsoft Certified: Windows Server Hybrid Administrator Associate
• CompTIA Security+ or equivalent

Technical Skills:

• Infrastructure as Code (CloudFormation or Terraform) & CI/CD basics
• PowerShell scripting for automation and remediation
• Experience with an EDR platform (e.g., SentinelOne, CrowdStrike)
• Familiarity with vulnerability scanners (Inspector, Qualys, Nessus)
• Solid grasp of TCP/IP, DNS, routing, and firewall fundamentals

Preferred Qualifications:

• Integrating AWS workloads with Microsoft 365 security controls
• Exposure to container security (ECS/EKS) and image scanning tools
• Knowledge of compliance frameworks (ISO 27001, SOC 2, etc.)

4Refuel welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process.

We are committed to diversity at 4Refuel, to building and sustaining a diverse and inclusive workforce and as an equal opportunity employer we encourage applications from all qualified individuals. 4Refuel does not discriminate against applicants based on genders, races, national and ethnic origins, religions, ages, sexual orientation, marital and family status, and/or mental or physical disabilities.

Job Type: Full-time

Pay: $100,000.00-$130,000.00 per year