Devsecops Engineer
Insight Global
Insight Global is looking for a Cloud Security Engineer / Devsecops Engineer to support a major banking client on site in downtown Toronto 4 times a week. This person will be responsible for ensuring that all cloud environments (AWS, Azure, GCP) automatically follow the bank’s security and compliance standards. Instead of manual reviews, this role focuses on automating security controls, testing policies, and building guardrails so that every cloud change is secure before it gets deployed.
The ideal candidate has hands-on experience with cloud platforms, automation, Infrastructure as Code, and security policy testing within a regulated environment.
Day to day responsibilities include the below:
Compliance as Code (CaC)
-Develop and maintain security rules written as code
-Build automated tests to validate compliant vs. non‑compliant scenarios
-Ensure updates to cloud controls don’t break existing security policies
Automated Security Testing & CI/CD
-Integrate security tests into GitHub Actions / CI/CD pipelines
-Block deployments when controls fail
-Provide early detection for misconfigurations
Multi‑Cloud Security Enforcement
-Apply and validate compliance rules across AWS, Azure, and GCP
-Ensure consistent behavior across all cloud providers
Test / Mock Cloud Environments
-Build safe test environments to validate policies
-Simulate users, permissions, and cloud services
-Test security rules without impacting production systems
Banking & Regulatory Compliance
-Ensure cloud environments meet financial industry standards (NIST, ISO 27001, SOC 2, CIS)
-Support internal and external audit readiness
Reporting & Monitoring
-Ensure violations are logged, monitored, and reviewed
-Generate automated security and compliance reports
-Work with tools such as Wiz, Splunk, SonarQube for dashboards and insights
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
The ideal candidate has hands-on experience with cloud platforms, automation, Infrastructure as Code, and security policy testing within a regulated environment.
Day to day responsibilities include the below:
Compliance as Code (CaC)
-Develop and maintain security rules written as code
-Build automated tests to validate compliant vs. non‑compliant scenarios
-Ensure updates to cloud controls don’t break existing security policies
Automated Security Testing & CI/CD
-Integrate security tests into GitHub Actions / CI/CD pipelines
-Block deployments when controls fail
-Provide early detection for misconfigurations
Multi‑Cloud Security Enforcement
-Apply and validate compliance rules across AWS, Azure, and GCP
-Ensure consistent behavior across all cloud providers
Test / Mock Cloud Environments
-Build safe test environments to validate policies
-Simulate users, permissions, and cloud services
-Test security rules without impacting production systems
Banking & Regulatory Compliance
-Ensure cloud environments meet financial industry standards (NIST, ISO 27001, SOC 2, CIS)
-Support internal and external audit readiness
Reporting & Monitoring
-Ensure violations are logged, monitored, and reviewed
-Generate automated security and compliance reports
-Work with tools such as Wiz, Splunk, SonarQube for dashboards and insights
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Confirmar seu email: Enviar Email
Todos os Empregos de Insight Global