Staff Security Engineer - CANADA (Remote)

5+ years of experience in security engineering for production SaaS systems. Strong understanding of cloud security (AWS preferred). Experience with modern DevSecOps practices. Experience designing or integrating automated security pipelines and observability systems. Solid understanding of web application security (OWASP Top 10, API security, encryption standards). Hands-on experience with IaC (Terraform, Pulumi, CloudFormation). Hands-on experience with containerized environments (Docker, Kubernetes). Experience building or securing systems involving large language models (OpenAI, Anthropic, or similar). Excellent collaboration and communication skills.

Design and implement automated systems for security risk monitoring, detection, and mitigation. Integrate continuous security testing into CI/CD pipelines. Build and maintain automated alerting and remediation workflows. Architect and implement robust authentication and authorization frameworks. Harden cloud environments and enforce least-privilege access. Conduct architecture reviews, threat modeling, and code audits. Define secure coding standards and best practices. Develop security frameworks and tooling for LLM vulnerabilities. Implement guardrails for AI systems. Design safe orchestration between models, APIs, and user data. Own and improve incident detection, response, and recovery processes. Collaborate on internal audits and compliance efforts. Advise on emerging threats and best practices.