
Senior Security Engineer
Wattpad
full-time
Posted on:
Location Type: Hybrid
Location: Toronto • Canada
Visit company websiteExplore more
Salary
💰 CA$120,000 - CA$160,000 per year
Job Level
About the role
- Designing, implementing, and monitoring security controls in our AWS cloud infrastructure to balance protection with scalability.
- Influencing the technical direction of the Engineering & Data department by introducing secure development practices and threat modeling.
- Acting as a force multiplier by building security automation workflows and "guardrails" that allow teams to ship code safely and quickly.
- Directly solving complex security challenges, including incident response, root cause analysis, and remediation of vulnerabilities.
- Assisting teams in implementing access management and compliance controls, compliance (SOC 2/ISO 27001), and risk governance.
- Building and maturing our application security program, partnering with engineering teams to triage findings from our Vulnerability Disclosure Program.
- Collaborating with engineers on implementing security best practices to help raise the security bar across the organization.
Requirements
- 5+ years of work experience in SecOps, Cloud Security, DevSecOps, or similar security-focused role
- AWS security expertise: Hands-on experience with Security Hub, GuardDuty, Inspector, AWS WAF, and IAM policy management
- SIEM experience highly desirable: Datadog, Splunk, or similar platforms (query development, alert tuning, incident investigation)
- Proficiency with infrastructure-as-code security: Terraform, CloudFormation, or similar
- Experience with containers and Kubernetes (EKS preferred) including security hardening
- Strong scripting and automation skills: Python, Bash, PowerShell
- Experience securing CI/CD pipelines (GitHub Actions strongly preferred)
- Familiarity with MITRE ATT&CK and D3FEND frameworks
- Understanding of enterprise and cloud network security architecture and controls
- SOC 2 and/or ISO 27001 compliance experience
- Self-starter comfortable with ambiguity - ability to define and execute on loosely-scoped problems
- Balanced communication style - proactive collaborator when needed, deep-focus engineer when required
- Excellent written and verbal communication skills for cross-functional collaboration.
Benefits
- 📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
AWS securitySecurity HubGuardDutyInspectorAWS WAFIAM policy managementTerraformCloudFormationPythonBash
Soft Skills
self-starterproactive collaborationdeep-focus engineeringproblem-solvingcommunicationinfluencingteamworkadaptabilitycritical thinkingautomation
Certifications
SOC 2ISO 27001