It security engineer Jobs in Toronto, ON

Venture outside the ordinary - TMX Careers

The TMX group of companies includes leading global exchanges such as the Toronto Stock Exchange, Montreal Exchange, and numerous innovative organizations enhancing capital markets. United as a global team, we’re connecting cross-functionally, traversing industries and geographies, moving opportunity into action, advancing global economic growth, and propelling progress. Through a rich exchange of ideas, meaningful collaboration, and a nimble operating model, we're powering some of the nation's most critical systems, fueling capital formation and innovation, bringing increased opportunity to business visionaries, product ingenuity to consumers, and career exploration to our team.

Ready to be part of the action?

The Information Security Office (ISO) at TMX is responsible for researching, deploying, and maintaining security technologies that support our defense-in-depth strategy, in accordance with TMX regulations and policy. This includes robust security for our cloud environments.
Reporting to the Senior Manager of Security Operations, we are seeking a highly skilled Senior Security Engineer to contribute to the design, implementation, and maintenance of the security infrastructure that protects our enterprise. This is an engineering-focused role for a "builder" who loves to work with security technology. Working alongside other senior resources, you will serve as a key contributor to our security toolsets. While you will support incident response, and vulnerability management, your primary focus will be on engineering robust, automated, and scalable security solutions.

Key Responsibilities:

• Design & Deploy Security Solutions: Contribute to the architecture, evaluation, proof-of-concept, and deployment of new security technologies.
• Manage & Optimize Security Stack: Collaborate on the full lifecycle of our security toolset, including advanced configuration, tuning, and health monitoring.
• Develop Security Automation: Automating security tasks, processes, and tool integrations. Develop and support SOAR playbooks to streamline security operations.
• Engineer Detections: Research emerging threats and develop custom detection rules, analytics, and correlations within our SIEM and other detection platforms.
• Technical Escalation: Serve as one of our senior technical experts, providing tool-specific analysis and engineering support during complex investigations.
• Create Documentation: Develop and maintain comprehensive architectural diagrams, configuration documentation, and standard operating procedures for our security systems.
• Vulnerability & Patch Management: Assist with the enterprise vulnerability management lifecycle, including routine scanning and coordinating remediation efforts with IT teams.

What You'll Bring:

Must-Haves:

• Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent practical experience.
• 7+ years of hands-on experience in a Security Engineering role.
• 4+ years of deep technical expertise in administering, implementing, and tuning core security technologies, such as SIEM (e.g., Splunk), EDR (e.g., CrowdStrike), Network Security (Firewalls, WAFs, IDS/IPS, NAC), and vulnerability management tools (e.g., Rapid7, CVM).
• Strong scripting and automation skills with Security Orchestration, Automation, and Response (SOAR) platforms, and experience with APIs.
• Hands-on experience and expertise in Google Workspace security administration and best practices (formerly GSuite) is an asset.
• Solid understanding of network architecture, operating systems (Windows, Linux), and common attack vectors.
• A "builder" mindset with a passion for solving problems with technology and automation.
• Excellent analytical, problem-solving, and communication skills.
• Ability to work both independently and as a vital part of a collaborative team.

Nice-To-Haves:

• Experience with Infrastructure as Code (IaC) tools like Terraform or Ansible.
• Knowledge of containers and Kubernetes security.
• Experience with AI Security & Governance (e.g., OWASP Top 10 for LLMs, AI DLP, API security, and controls)
• Relevant industry certifications (e.g., CISSP, GSEC, GCIH, or cloud-specific security certs like AWS/Azure Security Specialist).
• Familiarity with compliance frameworks (e.g., SOC 2, ISO 27001, NIST).

Salary Range: 115,000/year -125,000/year CAD

Please note that the salary range included is a guideline only. The salary offered may vary based on factors, including, but not limited to, the successful candidate’s relevant knowledge, skills, and experience.

The recruiting efforts for this role are intended to fill a vacant position.

In the market for…

Excitement - Explore emerging technology and innovation, as well as ventures and digital finance that shape the future of global markets! Experience the movement of the market while grounded in the stability of close to 200 years of success.

Connection - With site hubs in some of the world’s most multicultural cities, we leverage our size and structure to create rich connections and belonging while experiencing powerful global impact through our work.

Impact - More than a platform, we use our talents to power mission-critical systems that drive global economic advancement, innovation, and growth. As well, our employee-led spreads social good via our giving strategy.

Wellness - From empathetic leadership to a culture of flexibility and balance, we believe wellness at work creates the maximum yield and a stronger “we”. Plus, with a cloud-first and hybrid workstyle, as well as generous time-off and leaves, we support a life well lived!

Growth - From a growth mindset in our work, to expansion in our business, TMX is home to action-takers energized by the achievement of ambitious growth.

Ready to enrich your career with impactful work, leaders who truly care, and the flexibility and programs to help you thrive as part of #TeamTMX ? Apply now.

.