Security Engineer

Insight Global is seeking a skilled and proactive AWS Security Engineer to join a leading Logistics and Transportation customer in their growing Information Security team. This is a hybrid role and requires 3x/week on site Mississauga.

This role is ideal for someone passionate about securing modern cloud environments and driving DevSecOps practices. You will be responsible for deploying and maintaining security technologies, ensuring solution availability, and aligning configurations with architectural and industry standards.

Responsibilities
- Deploy and configure new security technologies across cloud and on-premise environments.
- Manage upgrades, patches, and lifecycle maintenance for security tools and platforms.
- Ensure high availability and performance of security solutions, including coordination with SaaS vendors.
- Align security configurations with enterprise architecture and industry standards (e.g., NIST, CIS, ISO 27001).
- Operationalize security gating and compliance checks within CI/CD pipelines to support DevSecOps.
- Collaborate with engineering and application teams to enforce security controls across AWS, Azure, and hybrid environments.
- Conduct security assessments and provide remediation guidance for vulnerabilities and misconfigurations.
- Maintain documentation for security configurations, operational procedures, and incident response protocols.
Support incident response efforts with technical expertise and forensic analysis.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

1. 4+ years of experience in security engineering

2. DevSecOps Mindset: Beyond general DevOps experience, we need someone who can apply DevOps principles end-to-end with a strong security lens

3. Secure Cloud Architecture: Experience hardening multi-cloud environments using automated guardrails, baseline configurations, and continuous posture management.

4. Identity & Access Management (IAM): Enforcing least-privilege access, MFA, and centralized identity governance across cloud and on-prem assets.

5. Application Security (AppSec): Integrating SAST, DAST, and container security into CI/CD pipelines for proactive vulnerability detection.

6. Vulnerability Management: Proven ability to continuously scan, prioritize, and remediate infrastructure and application vulnerabilities.

7. Excellent communication and collaboration skills.

8. Solution oriented, forward thinking - you will be joining a team that is growing and looking to you for best practices

- Secrets Management – Managing credentials, API keys, and certificates securely using centralized vaults or native cloud tools.
- Data Protection & Encryption – Applying encryption in transit and at rest, enforcing key management policies, and leveraging DLP solutions.
- Network Security & Segmentation – Implementing microsegmentation, firewalls, private endpoints, and Zero Trust principles.
- Container & Kubernetes Security – Enforcing admission controls, image signing, and runtime monitoring for containerized workloads.
- Policy as Code – Defining and enforcing compliance/security rules using Infrastructure-as-Code scanning tools and OPA/Rego policies.
- Continuous Compliance Monitoring – Automating evidence collection and compliance checks for frameworks like SOC 2, ISO 27001, NIST, and CIS Benchmarks.
- Certifications – Industry-recognized certifications such as CISSP, CCSP, AWS Security Specialty, Azure Security Engineer Associate, or GIAC are a plus.

Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.