DevOps / Security Engineer Toronto

We're seeking a highly skilled DevOps/Security Engineer to unify our development and operational processes while maintaining a robust, multi-cloud security posture. You will lead the design and implementation of security architecture for Google Cloud Platform (GCP) and other cloud environments, automate infrastructure provisioning and management using Terraform, and ensure seamless integration with federated login systems (OKTA, Auth0). Your strong communication skills will be essential for explaining technical concepts to non-technical stakeholders. You will also be accountable for meeting critical deadlines and continuously improving our security practices. What you'll do Security Architecture: Design and implement a comprehensive security architecture for GCP and other cloud environments. Identify and mitigate security risks across the infrastructure. Stay abreast of emerging security threats and trends. Infrastructure Automation: Design, develop, and maintain infrastructure as code (IaC) using Terraform for GCP and other cloud platforms. Automate provisioning, scaling, and configuration of cloud resources. Implement robust CI/CD pipelines for seamless deployment of infrastructure changes. Back-up Automation: Develop and implement comprehensive backup strategies that align with client business objectives, regulatory requirements, and risk tolerance. Implement automated in-project point-in-time backups of persistent disks using GCP snapshots to ensure data protection and recovery options. Implement automated synchronization of in-project Cloud Source Repository git repos into a backup GCP account to safeguard code and configuration. Implement daily copies of GCS buckets tagged as containing pipeline output to protect critical data and artifacts. Implement monthly full snapshots of BigQuery datasets and export them into JSON format for storage in GCS buckets. Automate the creation of monthly images for copying to a backup GCP account to ensure system recovery capabilities. Perform initial full backups of buckets tagged as containing proprietary/external vendor data to establish a baseline for ongoing protection. Test backup procedures to ensure their effectiveness and identify potential issues. Develop and maintain automated scripts and workflows to streamline backup processes and reduce manual effort. Implement monitoring mechanisms to track backup performance and identify anomalies. Generate regular reports on backup activities, including success rates, failures, and remediation actions. Contribute to the development and maintenance of disaster recovery plans, including testing and validation of recovery procedures. Ensure that backup procedures adhere to security best practices and comply with relevant industry standards and regulations. Create and maintain comprehensive documentation of backup procedures, policies, and standards. Security: Implement and manage federated login solutions (OKTA, Auth0) to securely manage user identities and access. Conduct regular security audits and vulnerability assessments. Develop and enforce security policies and best practices across the organization. Respond to security incidents promptly and effectively. Monitoring and Troubleshooting: Implement monitoring and logging solutions to proactively identify and resolve performance and security issues. Investigate and troubleshoot incidents related to infrastructure, security, or deployments. Communication and Collaboration: Clearly communicate technical information to non-technical stakeholders. Work closely with development teams to understand their needs and provide infrastructure and security support. Collaborate with IT operations to ensure smooth handoff of infrastructure components. Documentation: Create and maintain comprehensive documentation of backup procedures, policies, and standards. What you'll need to bring Proven experience with Google Cloud Platform (GCP) and its core services. Experience with backup and recovery tools specifically designed for GCP. Strong expertise in infrastructure automation using Terraform for multi-cloud environments. Hands-on experience with federated login solutions (OKTA, Auth0). Proficiency in scripting languages (Python, Bash) for automation tasks. Deep understanding of security best practices and industry standards. Excellent communication and presentation skills, with the ability to explain technical concepts clearly. Demonstrated ability to meet critical deadlines and work under pressure. Preferred: Experience with security architecture design and implementation. Knowledge of security frameworks and compliance regulations (e.g., ISO 27001, SOC 2). Additional Skills: Strong problem-solving and analytical skills. Excellent interpersonal skills and ability to collaborate effectively. Strong sense of ownership and accountability. Ready to join the team? We are appreciative of your time, but unfortunately, only successful applicants will be contacted for interviews. No phone calls please. 473 Adelaide St West Suite 300, Toronto ON M5V 1T1 Canada [email protected] 200 Hudson St. New York, NY 10013, USA [email protected] #J-18808-Ljbffr