Job Title

About ProxyLink At ProxyLink, we specialize in building meaningful connections between exceptional talent and leading employers across Canada. As a trusted recruitment partner, our mission is to create impactful career matches by combining innovative hiring strategies with a personalized, people-first approach. Were driven by the belief that investing in people today builds a stronger workforce for tomorrow. Proxylink is a specialized technology staffing and talent solutions firm connecting highly skilled engineers with leading organizations across cloud infrastructure, cybersecurity, and platform engineering. Proxylink partners closely with clients to deliver top-tier talent for high-impact, mission-critical technology roles. For this opportunity, Proxylink is supporting a global technology organization seeking to strengthen its DevSecOps and cloud security capabilities. Role Overview We are seeking a DevSecOps Engineer to help embed security deeply into modern software delivery and cloud infrastructure practices. This role focuses on designing and implementing automated security controls, scalable guardrails, and secure development workflows that enable rapid innovation without compromising system integrity. You will work closely with platform, infrastructure, and software engineering teams to drive a strong shift-left security culture and ensure security is integrated throughout the software development lifecycle. What Youll Do Secure CI/CD & Automation Design and implement automated security testing within CI/CD pipelines. Integrate SAST, DAST, and software composition analysis tools into build and deployment workflows. Build automation to continuously detect and prevent security vulnerabilities. Cloud Security & Governance Implement and manage security controls across AWS cloud environments. Ensure infrastructure aligns with industry security frameworks and best practices. Continuously assess and improve cloud security posture. Infrastructure as Code Security Embed Security as Code principles into infrastructure workflows. Implement automated scanning and policy enforcement for Terraform and related IaC tools. Prevent misconfigurations before infrastructure reaches production. Vulnerability & Risk Management Identify, triage, and prioritize vulnerabilities across applications, infrastructure, and containers. Partner with engineering teams to remediate security issues and strengthen system resilience. Threat Modeling & Architecture Reviews Participate in architecture and design reviews to identify potential security risks. Provide guidance on secure design patterns and mitigation strategies. Incident Response & Monitoring Support security incident response across cloud and application environments. Conduct forensic log analysis and assist with mitigation and recovery efforts. Security Advocacy & Enablement Promote secure coding and engineering practices across development teams. Provide guidance and education to help teams build secure, resilient systems. Required Skills & Experience Experience 3+ years of experience in DevSecOps, Cloud Security, or DevOps roles with a strong security focus. Cloud Security Strong experience securing AWS environments, including IAM, VPCs, GuardDuty, Security Hub, AWS WAF, and KMS. Automation & Scripting Proficiency in Python and/or Bash for automation and security tooling integration. CI/CD & Security Tooling Experience integrating security tools into CI/CD pipelines (GitHub Actions, GitLab CI, etc.), including: Snyk SonarQube Trivy Checkmarx Infrastructure as Code Strong experience with Terraform and IaC security scanning tools (e.g., tfsec, Checkov). Container & Kubernetes Security Understanding of Docker and Kubernetes security, including image scanning, RBAC, and network policies. Networking & Security Fundamentals Knowledge of firewalls, zero-trust architecture, VPNs, and TLS/SSL. Nice to Have Certifications such as AWS Certified Security Specialty, CKA/CKS, or OSCP. Experience with compliance frameworks such as SOC 2, ISO 27001, or HIPAA. Familiarity with SIEM/SOAR platforms and centralized logging solutions. Application Note Thank you for your interest in this opportunity. If your experience aligns with the clients requirements, a member of the Proxylink team will reach out to discuss next steps.