Back to jobs

Cyber Security Engineer

Toronto, Canada

GENERAL FUNCTION

We are looking for a seasoned Cyber Security Engineer with a minimum of 7 years of hands-on experience in information security, ideally in regulated environments such as finance. This role will lead the design, implementation, and continuous improvement of security capabilities across our infrastructure, with emphasis on cloud security, especially within AWS.

You’ll work closely with IT, Cyber OPS, DevOps, risk, and compliance teams to ensure our security posture is resilient, scalable, and aligned with business goals.

DUTIES/RESPONSIBILITIES

Security Architecture & Engineering

  • Design and implement secure architectures for networks, applications, and data storage.
  • Deploy and manage controls such as firewalls, EDR, IDS/IPS, and DLP across hybrid environments.
  • Define and enforce secure configurations and system hardening baselines.

Monitoring & Incident Response

  • Tune SIEM rules for AWS and on-prem logs, manage alert triage and escalation.
  • Lead incident response activities and support forensic investigations as needed.

Threat & Vulnerability Management

  • Conduct security assessments, vulnerability scans, and threat modeling.
  • Coordinate remediation efforts across IT and development teams.

Training & Collaboration

  • Provide technical expertise to cross-functional teams.
  • Advocate for secure coding, architecture, and operational practices across the company.

DevSecOps & Automation

  • Embed security controls into CI/CD workflows.
  • Use scripting to automate operational tasks and detection/response playbooks.

EDUCATION

  • Bachelor’s degree in Computer Science, Information Security, or related field (Master’s preferred).

EXPERIENCE

  • Minimum 7 years of experience in cybersecurity roles with progressive responsibilities.
  • Strong understanding of:
    • Security operations, network security, identity and access management, and endpoint protection.
    • Cloud security best practices, especially in AWS environments.
  • Hands-on experience with:
    • AWS-native security services (CloudTrail, IAM, KMS, GuardDuty, Security Hub, etc.).
    • Security automation and scripting (Python, Bash, PowerShell).
    • SIEM, IDS/IPS, endpoint protection, DLP, and vulnerability management tools.
  • Familiarity with frameworks and standards: NIST CSF, MITRE ATT&CK, CIS Benchmarks.
  • Relevant certifications are a plus: AWS Certified Security – Specialty, CISSP, CISM, OSCP, GSEC, etc.

Nice to Have

  • Experience in cloud-first or cloud-migration environments.
  • Knowledge of Kubernetes and container security in AWS (EKS, Fargate).
  • Participation in red/blue/purple teaming or threat hunting programs.
  • Prior experience supporting security in regulated industries.
  • Cloud Security (AWS Focus)
    • Serve as the technical lead for AWS security strategy, implementation, and operations.
    • Build and maintain cloud security controls using AWS-native services (e.g., GuardDuty, Macie, Security Hub, IAM, KMS, CloudTrail, Config).
    • Develop automation for policy enforcement, misconfiguration detection, and incident response within AWS.
    • Review and enhance security of VPCs, S3 buckets, Lambda functions, EC2 instances, and containerized workloads (ECS, EKS).
    • Collaborate with DevOps to integrate security into infrastructure-as-code (Terraform, CloudFormation).
  • Governance, Risk & Compliance

    • Ensure AWS and internal systems comply with regulatory standards.
    • Support third-party risk reviews and internal/external audits.

Create a Job Alert

Interested in building your career at Momentum Financial Services Group? Get future opportunities sent straight to your email.

Apply for this job

*

indicates a required field

Resume/CV*

Accepted file types: pdf, doc, docx, txt, rtf

Cover Letter

Accepted file types: pdf, doc, docx, txt, rtf


Select...
Select...
Select...
Select...
Select...
Select...
Select...

Employment and Verification Information:

  • Money Mart will review all submissions, and interview the most qualified candidates based on their knowledge, skills, abilities, and other competencies.
  • Candidates who do not meet the requirements, in the recruitment process, for employment will remain classified as applicants and may re-apply for any future job posting and shall receive equal consideration.
  • Only successful applicants will be contacted.
  • All resumes will be kept on file for a period of three months.
  • Money Mart is committed to protecting the rights of individuals to privacy with regard to the processing of personal data.
  • It is necessary for Money Mart to process personal data in the normal and proper conduct of business operations.
  • Such processing will be conducted fairly and lawfully in accordance with Canada’s Federal Personal Information Protection and Electronic Documents Act including the ten principles set out in the National Canadian Standards Association: Model Code for the Protection of Personal Information.
  • If there is a query regarding the accuracy of your personal data then your query will be dealt with fairly and impartially.
  • Money Mart holds data on prospective, current and former candidates, as well as prospective, current and former staff
  • This data is held securely in electronic and/or as a paper record.
  • The processing of this data is subject to the rules laid down under Canada’s Federal Personal Information Protection and Electronic Documents Act.
  • Personal data will only be used for the proper purposes of the employment business.
  • The protection of your personal data will be governed by the provisions of Canada’s Federal Personal Information Protection and Electronic Documents Act. Access to your data will be restricted to those personnel to whom it is necessary for proper purposes.
Select...

Diversity, Equity and Inclusion

Momentum Financial Services Group (MFSG) integrates questions about diversity, including race and ethnicity, into its job application process to support its commitment to equity, diversity, and inclusion. These questions are designed to collect demographic information for the purpose of analyzing and improving hiring practices, ensuring they are inclusive and equitable. Applicants have the option to disclose their demographic information. Choosing not to provide this information will not affect their application status.

Select...
Select...
Select...
Select...