Staff Cloud Infrastructure Engineer, Security

at  Lightspeed

Hi there! Thanks for stopping by
Are you actively looking for a new opportunity? Or just checking the market? Well… you might just be in the right place!
We are looking for a Staff Cloud Infrastructure Engineer, Security. The successful candidate serves as a critical member of the Security Operations and Engineering team, designing and assisting in the implementation of highly secure cloud environments. They champion security best practices, proactively identify and mitigate risks, and help guide the organization in aligning security with business goals. This role collaborates extensively with various teams, assists in incident response, and mentors others to elevate the organization’s overall security posture.

What you’ll be doing:

• Work with SRE teams to design and implement highly secure cloud infrastructure, emphasizing network segmentation, access controls, encryption, and monitoring, among others.
• Advocate for security best practices and proactive threat mitigation throughout the organization.
• Develop and maintain cloud security standards, leveraging industry frameworks (NIST, CIS, etc.) and cloud provider recommendations.
• Evaluate designs and architectures for potential vulnerabilities, proposing risk mitigation measures.
• Ensure seamless integration of cloud security solutions across cloud and on-premise infrastructure.
• Conduct regular risk assessments of cloud infrastructure, applications, and data.
• Work closely with cloud architects, engineers, developers, and operations teams to embed security into all phases of cloud projects.
• Participate in incident response planning and lead remediation efforts in case of security breaches.
• Research, assess, and select security tools and technologies best suited for the organization’s cloud environment.
• Partner / mentor fellow security team members, fostering expertise across multiple cloud environments (AWS, GCP, Azure).
• Identify and work to develop automations to detect, alert and protect against malicious activities

And a little bit of:

• On-call availability for incident response.
• Contributing as part of the wider team to achieve organizational objectives even if this means doing things that aren’t strictly within the scope of your role.

What you need to bring:

• 7+ years of deep hands-on experience designing, implementing, and managing security within large-scale cloud environments (AWS, GCP, etc.).
• Bachelor’s degree or equivalent experience in computer science, cybersecurity, network engineering, or a similar field.
• Significant experience aligning systems with regulations (PCI DSS, SOC2, etc.) and conducting risk assessments.
• AWS Certified Security Specialty, Azure Security Engineer, Google Cloud Certified Professional Security Engineer, or equivalent.
• Demonstrated ability to lead cross-functional initiatives.

We know that people are more than what’s on their CV. If you’re unsure that you have the right profile for the role… hit the ‘Apply’ button and give it a try!
What’s in it for you?

Come live the Lightspeed experience…

• Ability to do your job in a truly flexible environment;
• Genuine career opportunities in a company that’s creating new jobs every day;
• Work in a team big enough for growth but lean enough to make a real impact.

… and enjoy a range of benefits that’ll keep you happy, healthy, and (not) hungry:

• Lightspeed RSU program (we are all owners)
• Unlimited paid time off policy
• Flexible working policy
• Immediate access to health insurance
• Health and wellness benefits
• Paid leave assistance for new parents
• Linkedin learning license
• 1 paid volunteer day annually

To all recruitment agencies: Lightspeed does not accept unsolicited agency resumes. If we have not directly engaged your company in writing to supply candidates for a specific vacancy, Lightspeed will not be responsible for any fees related to unsolicited resumes.
Lightspeed is a proud equal opportunity employer and we are committed to creating an inclusive and barrier-free workplace. Lightspeed welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process.
Where to from here?
Obviously, this has to be mutually beneficial: we want you to step into a role you love, and we want to offer you a place you’re proud to come to every day. .
Lightspeed is building communities through commerce, and we need people from all backgrounds and lived experiences to do that. We were founded in 2005, in Montreal’s gay village and our original members were all part of the LGBTQ+ community. The ethos of our business has been about inclusion from the very beginning, and we strive to provide a workplace where everyone belongs.
Who we are:
Powering the businesses that are the backbone of the global economy, Lightspeed’s one-stop commerce platform helps merchants innovate to simplify, scale, and provide exceptional customer experiences. Our cloud commerce solution transforms and unifies online and physical operations, multichannel sales, expansion to new locations, global payments, financial solutions, and connection to supplier networks.
Founded in Montréal, Canada in 2005, Lightspeed is dual-listed on the New York Stock Exchange (NYSE: LSPD) and Toronto Stock Exchange (TSX: LSPD). With teams across North America, Europe, and Asia Pacific, the company serves retail, hospitality, and golf businesses in over 100 countries.
Lightspeed handles your information in accordance with our Applicant Privacy Statement.

• Work with SRE teams to design and implement highly secure cloud infrastructure, emphasizing network segmentation, access controls, encryption, and monitoring, among others.
• Advocate for security best practices and proactive threat mitigation throughout the organization.
• Develop and maintain cloud security standards, leveraging industry frameworks (NIST, CIS, etc.) and cloud provider recommendations.
• Evaluate designs and architectures for potential vulnerabilities, proposing risk mitigation measures.
• Ensure seamless integration of cloud security solutions across cloud and on-premise infrastructure.
• Conduct regular risk assessments of cloud infrastructure, applications, and data.
• Work closely with cloud architects, engineers, developers, and operations teams to embed security into all phases of cloud projects.
• Participate in incident response planning and lead remediation efforts in case of security breaches.
• Research, assess, and select security tools and technologies best suited for the organization’s cloud environment.
• Partner / mentor fellow security team members, fostering expertise across multiple cloud environments (AWS, GCP, Azure).
• Identify and work to develop automations to detect, alert and protect against malicious activitie