Aquanow, a leading infrastructure and liquidity provider that provides institutional and enterprise application platforms for digital assets, is looking for a Senior Cloud Security Engineer to join our technology team in Vancouver or Toronto. This is a unique opportunity to work alongside a highly-experienced team and contribute to the development of a high-growth trading and technology company.

If you want to have your name in the success story of a globalizing company, we look forward to receiving your application to the winning Aquanow team!

What You’ll Do:

• Perform security assessments and audits of our infrastructure, identifying and mitigating security gaps and weaknesses.
• Drive the design and implementation of Zero Trust architectures, including identity-based perimeters, mTLS, network segmentation, and least-privilege access controls.
• Partner with DevOps and Engineering teams to embed security into infrastructure roadmaps, CI/CD pipelines, and service architectures.
• Implement and manage security tools within the CI/CD pipeline, focusing on DevSecOps practices.
• Act as Incident Commander for high-severity security incidents and vulnerabilities (e.g., React2Shell events), coordinating technical response, stakeholder communication, and post-incident reviews.
• Monitor and analyze logs, events, and metrics to identify security incidents, potential breaches, and emerging threats.
• Understand runtime security, image scanning, network security, access control, host OS hardening, and vulnerability management in the container lifecycle.
• Deep subject matter expertise with security engineering best practices for subjects such as CVSS, EPSS.
• Design, implement, and maintain security measures for our cloud infrastructure, including VPCs, security groups, IAM roles, and access controls.
• Maintaining security hardening configurations and guidance for the diverse set of services available across our cloud environments.
• Provide structured feedback to support AI security analysis initiatives.

You’ll Need to Have:

• 6+ years of Security Engineering experience and at least 3 of the following areas: cloud security, web application security and threat hunting
• Strong knowledge of security principles, best practices, and common vulnerabilities (e.g., OWASP Top 10)
• Familiar with SAST, DAST, Fuzzing, and other tools.
• Strong experience securing Infrastructure‑as‑Code (Terraform preferred), including policy-as-code frameworks (OPA/Rego).
• Identity and access management (OAuth2, OIDC, JWT, federation, CIAM)
• Network micro-segmentation and Zero Trust design
• Familiarity with CI/CD tools such as GitHub Actions, Jenkins or CircleCI.
• Experience with security technologies, such as firewalls, IDS/IPS, SIEM, DLP, antivirus, and vulnerability scanners.
• Good understanding of cloud security architecture, security assessments, audit standards for the Cloud, security threats in the cloud.
• Solid understanding of network protocols, TCP/IP, and network security concepts.
• Ability to work independently and solve problems.

We’d Love to See:

• Automation experience with AWS. Relevant certifications such as AWS Certified Security - Specialty, CEH are highly desirable.
• Experience in a global fast moving environment covering multiple time zones.
• Familiarity with common security vulnerabilities and the ability to judge their severity and impact on the business.
• Passion in all things security.
• Stay updated with the latest security trends & AI technologies.

At our offices you will find a group of people that embrace diversity and value performance over pedigree. Every day we draw value from the diverse experiences of our team whose backgrounds include top financial institutions, tech companies and untraditional backgrounds. Our success comes from identifying exceptional people and providing them with the platform to reach their true potential.

Aquanow is an Equal Opportunity Employer. We are committed to providing equal employment opportunity to all qualified persons without regard to race, color, creed, religion, sex, age, national origin, citizenship status, disability, qualified veteran status, marital status, sexual orientation, gender identity or any other unlawful criterion or circumstance.