Location
Ottawa, Canada - Hybrid
Other Canadian locations - Remote
About the role
The Information Security Engineer is a seasoned cybersecurity professional responsible for responsible for designing and implementing complex security controls across a hybrid environment spanning public cloud and on0premise infrastructure, supporting both Corporate IT environments and the Kinaxis Maestro SaaS platform.
In this position, you will collaborate closely with IT, SaaS Operations, Product Development, and Business Systems teams to design durable controls, support and implement remediation activities, and strengthen detection and response capabilities. You will focus on solution design and technical execution.
Vacancy Status
This is an existing job vacancy
What you will do
Security Engineering & Control Design Design, implement, and operate security controls across Corporate IT environments and the Kinaxis Maestro SaaS platform, aligned with approved standards and architectures. Translate security requirements into practical, scalable engineering solutions across identity, endpoint, network, workload, application, and data layers. Contribute to secure configuration standards and reference architectures.
Cloud, Platform & Application Security Lead security engineering efforts for complex initiatives such as cloud migrations, SaaS integrations, container and Kubernetes adoption, and platform modernization. Embed security controls into CI/CD pipelines and infrastructure0as0code workflows. Partner with Security Architecture to operationalize approved security patterns and guardrails.
Vulnerability Management & Risk Reduction Work closely with IT, SaaS Operations, Product Development, and Business Systems teams to identify, prioritize, and reduce exposure to known vulnerabilities and misconfigurations. Support risk0based remediation planning, track remediation actions to closure, and implement remediation directly where required and within scope. Verify remediation effectiveness and contribute to durable control improvements that prevent recurrence.
Detection, Incident Response & Resilience Contribute to detection engineering and monitoring capabilities that enable early identification of threats and control failures. Act as a technical escalation point during complex security incidents, supporting investigation, containment, and remediation. Participate in post0incident root0cause analysis and corrective action implementation.
What we are looking for
Primary Skills and Qualifications Bachelor0degree in Information Security, Computer Science, Information Technology, or equivalent experience. 608 years of experience in security engineering, cloud security, or enterprise security roles. Strong hands0on experience implementing and operating security controls across multiple domains. Experience securing GCP and/or Azure environments, including hybrid or multi0account deployments. Solid understanding of modern authentication, identity federation, and access control models. Working knowledge of security frameworks such as NIST CSF, ISO 27001/27002, and SOC 2. Influencing architecture, risk decisions, and roadmap priorities without formal authority Adaptable and resilient in high-urgency operational contexts. Demonstrated ability to coach or mentor junior team members. Certifications: Desired: CISSP, CCSP, Certified Security 0 GCP or Azure Security Engineer. Preferred: GIAC Cloud Security, OSCP, HashiCorp Terraform Associate or policy-as-code certifications.
Role Specific Skills and experience Experience designing, implementing, and operating security controls to protect enterprise and SaaS environments, with direct responsibility for improving control effectiveness across identity, endpoint, network, workload, application, and data layers Experience identifying, validating, and prioritizing vulnerabilities and misconfigurations using a risk0based approach across cloud, SaaS, and enterprise systems. Drives remediation of high0risk vulnerabilities, including hands0on implementation where required. Proven experience collaborating with engineering teams to embed security controls into platform designs, CI/CD pipelines, and infrastructure0as0code workflows throughout system lifecycle. Hands-on experience with SIEM and XDR platforms (Microsoft Sentinel, Defender for Endpoint, or similar). Proven experience implementing and managing controls such as firewalls, network segmentation, private connectivity, and secure ingress/egress, with a focus on reducing attack surface. Experience with security technologies including firewalls, IDS/IPS, SIEM, CNAPP, IAM, encryption, and authentication mechanisms. Strong understanding of industry-recognized cybersecurity frameworks, including ISO 27001, NIST CSF, and SOC 2.
#Senior; #LI-EM1
Work With Impact: Our platform directly helps companies power the world0s supply chains. We see the results of what we do out in the world every day, when we see store shelves stocked, when medications are available for our loved ones, and so much more.
Work with Fortune 500 Brands: Companies across industries trust us to help them take control of their integrated business planning and digital supply chain. Some of our customers include Lockheed Martin, Unilever, P&G, ExxonMobil, Cisco and more.
Social Responsibility at Kinaxis: Our Diversity, Equity, and Inclusion Committee weighs in on hiring practices, talent assessment training materials, and mandatory training on unconscious bias and inclusion fundamentals. Sustainability is key to what we do and we0re committed to a long-term net-zero operations strategy. We are involved in our communities and support causes where we can make the most impact.
People matter at Kinaxis and here are some of the perks and benefits we offer, which may vary by location and employee:
- Flexible vacation and Kinaxis Days (company-wide days off)
- Flexible work options
- Physical and mental well-being programs
- Regularly scheduled virtual fitness classes
- Mentorship programs, training, and career development
- Recognition programs and referral rewards
- Hackathons
