Y-Axis Jobs Logo
Send us feedback
telephone  +91 7670 800 001
Log in Sign up Try Premium
Cloud Security Specialist at CGI
Toronto, ON M5B 2L7, Canada -
Full Time

Start Date

Immediate

Expiry Date

25 Oct, 25

Salary

0.0

Posted On

25 Jul, 25

Experience

2 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Computer Science, Ccsp, Azure, Career Development, Security Automation, Soft Skills, Cissp, Devops, Giac, Network Security

Industry

Information Technology/IT

Description

This role is hybrid and requires you to be at our downtown Toronto and/or Client office at a minimum 1 day per week - subject to change at any time.

Required Qualifications

  • Bachelor’s degree in Computer Science, Cybersecurity, or related discipline—or equivalent experience.
  • 8+ years in security engineering roles, including 2+ years working in hybrid (cloud + on-prem) environments.
  • Expertise with

Preferred Experience

  • Security certifications: CISSP, CISM, GIAC, CCSP.
  • Familiarity with Zero Trust Architecture and secure SaaS multi-tenancy models.
  • Experience with infrastructure security automation and CI/CD pipeline hardening.
  • Tools: Terraform, Cisco Network Firewalls, GCP Firewalls

Soft Skills

  • Excellent communication and collaboration skills across engineering, DevOps, and compliance.
  • Ability to manage competing priorities in a fast-paced SaaS organization.
  • Strong analytical mindset, attention to detail, and a continuous improvement attitude

How To Apply:

Incase you would like to apply to this job directly from the source, please click here

Responsibilities

YOUR FUTURE DUTIES AND RESPONSIBILITIES

We are seeking a Hybrid Cloud Security Engineer to secure our multi-tenant SaaS platform by overseeing both modern cloud environments and mission-critical on-premises infrastructure. This role is essential in ensuring our security posture spans internal data centers, legacy systems, and cloud-native services.
As a key member of the security engineering team, you’ll architect, implement, and continuously improve scalable, secure, and compliant systems that support our product delivery across both platforms.

Key Responsibilities

Security Architecture & Engineering (Hybrid)

  • Design secure infrastructure blueprints for our GCP Cloud environments and internal data centers.
  • Define controls for secure connectivity, such as VPNs, site-to-site tunnels and interconnect.
  • Develop and maintain security baselines for compute, storage, and networking across platforms, including cloud managed services.

  • Define and implement (using Terraform) cloud networks required to support products deployments on cloud (GCP)

    On-Premises Infrastructure Security

  • Perform regular reviews of the firewall rules implemented in our on premise environments.

  • Provide security SME expertise to our product development teams.

    Cloud Security & SaaS Platform Protection

  • Partner with SRE and DevOps to secure CI/CD pipelines, container registries, and IaC workflows.

  • Apply Zero Trust principles and secure multi-tenant boundaries in the SaaS environment.

    Threat Detection, Monitoring & Response

  • Integrate cloud and on-prem telemetry into centralized SIEM systems (e.g., Splunk, Sentinel).

  • Conduct incident investigations across hybrid environments and coordinate remediation efforts.

  • Develop automated alerting and response playbooks.

    Governance, Risk & Compliance (GRC)

  • Ensure the cloud engineering and product teams Implement controls and monitoring required for SOC 2, ISO 27001, HIPAA, or industry-specific frameworks.

  • Automate evidence collection and reporting using security tooling and configuration management.

    Security Automation & Tooling

  • Use Terraform, Ansible, and other IaC tools to standardize secure configurations.

  • Work with Corporate teams that operate and manage tooling like CSPM, DLP, WAFs, vulnerability scanners, and endpoint agents.
  • Extend security practices to legacy applications that cannot be cloud-migrated.

REQUIRED QUALIFICATIONS TO BE SUCCESSFUL IN THIS ROLE

Required Qualifications

  • Bachelor’s degree in Computer Science, Cybersecurity, or related discipline—or equivalent experience.
  • 8+ years in security engineering roles, including 2+ years working in hybrid (cloud + on-prem) environments.
  • Expertise with:

o AWS, Azure, or GCP security services.
o Virtualization (e.g., VMware ESXi), endpoint protection, and firewall configuration.
o Identity management (AD, Azure AD, Okta), IAM/RBAC, and secrets management.
o Network security, VPNs, and perimeter defense.
o Understanding of Firewall rules, both on prem and in cloud environments

Preferred Experience

  • Security certifications: CISSP, CISM, GIAC, CCSP.
  • Familiarity with Zero Trust Architecture and secure SaaS multi-tenancy models.
  • Experience with infrastructure security automation and CI/CD pipeline hardening.
  • Tools: Terraform, Cisco Network Firewalls, GCP Firewalls.

Soft Skills

  • Excellent communication and collaboration skills across engineering, DevOps, and compliance.
  • Ability to manage competing priorities in a fast-paced SaaS organization.
  • Strong analytical mindset, attention to detail, and a continuous improvement attitude.

Why Join Us?

  • Influence the security architecture of a global SaaS platform undergoing cloud transformation.
  • Work with cutting-edge technologies while solving real-world infrastructure challenges.
  • Join a security-forward team embedded in the product lifecycle.
  • Competitive compensation, career development, and flexible working options.

LI-AV1