Senior Cloud Security Engineer

JOB SUMMARY
The Senior Cloud Security Engineer plays a critical role in ensuring the integrity, scalability, and security of SE Health’s cloud environments. This position is responsible for designing, maintaining, and supporting cloud security configurations across platforms such as Azure and key SaaS applications, including identity and access models, network security controls, workload protection, and encryption standards, while ensuring compliance with segregation of duties and internal security controls. In addition to managing daily cloud security change requests and performing system audits, the role supports security monitoring and incident response activities, enhancing the organization’s overall cloud posture. The individual collaborates closely with the technology team and business stakeholders to define cloud security strategy, implement new security capabilities, and ensure cloud systems are governed in a sustainable and risk-mitigated manner.

JOB RESPONSIBILITIES

Cloud Security Governance and Controls 

• Lead the design, maintenance, and enhancement of cloud security policies and configurations across platforms such as Azure, and key SaaS systems, including identity and access management, network security controls, workload protection, and data visibility models.
• Monitor and manage cloud security change requests, ensuring appropriate access controls, privileged roles, and segmentation rules are implemented to maintain environment integrity and reduce risk.
• Conduct quarterly audits of access, role assignments, configurations, and security logs to ensure alignment with internal controls, compliance standards, and Segregation of Duties (SOD).
• Support disaster recovery and business continuity planning by validating cloud platforms' role in critical workflows, resilience configurations, and system availability.

Compliance, Risk, and Internal Controls 

• Ensure cloud security configurations and practices align with internal security policies and frameworks such as ISO 27001, NIST, PHIPA, and other applicable compliance requirements.
• Document and maintain internal security controls, audit trails, and change records across cloud platforms to support both internal and external audit activities.
• Vet and validate requests for new or modified cloud access, privileged roles, security groups, policies, and configurations to ensure adherence to security, compliance, and least-privilege principles.

Security Configuration and System Optimization

• Configure and maintain cloud security architecture, including IAM models, conditional access policies, endpoint and workload protections, network segmentation rules, and encryption standards across multiple environments.
• Implement and support enhancements, new security capabilities, and configuration changes to strengthen cloud posture and align with evolving business and technical needs.
• Coordinate and perform testing of security updates, policy changes, and new integrations to ensure smooth deployment and minimal disruption to operations.
• Respond to support requests for cloud-related security issues, troubleshooting access, policy conflicts, or configuration errors.

Incident Management and Risk Mitigation 

• Investigate and respond to cloud security incidents, collaborating with cross-functional teams to assess impact, determine root cause, and implement corrective and preventive actions.
• Recommend enhancements, guardrails, or policy changes based on incident trends, risk findings, audit results, or vulnerability reports.
• Continuously assess risks related to identity, privileged access, integrations, misconfigurations, and data exposure across cloud environments and propose mitigation strategies as needed.

Reporting, Stakeholder Support, and Documentation

• Develop and deliver cloud security dashboards and reports that provide visibility into access, configuration health, compliance posture, and operational metrics.
• Partner with technical and business stakeholders to understand requirements and deliver secure, scalable solutions that support operational efficiency and governance.
• Maintain clear documentation on cloud security architecture, standards, procedures, and change management processes to support training, onboarding, and ongoing governance.
• Provide guidance and knowledge sharing across multiple teams.

QUALIFICATIONS

Post-secondary education in an IT-related field (e.g., Cybersecurity, Computer Science, Information Technology) or an equivalent combination of relevant education, certifications, and professional work experience.
 

Why join SE Health?
 

• Competitive Total Rewards
  So much more than a paycheque! Enjoy comprehensive benefits, pension, flexible pay options, car-loan support, housing solutions and exclusive staff perks.
• Flexibility & Belonging
  Thrive with hybrid work, flexible scheduling and a supportive, inclusive culture that puts people first.
• Purpose & Impact
  Join a national social enterprise where your voice matters. Every role helps advance health, spark innovation and strengthen communities across Canada.
• Growth That Meets Your Ambition
  Access tuition support, training and meaningful career pathways across a growing, future-focused organization.

ABOUT US:  

SE Health is a not-for-profit social enterprise advancing health with heart. With 115+ years of impact, we bring hope, happiness and exceptional care to people and communities across Canada. We lead with empathy, dignity and purpose while building a future where everyone can realize their full health and well-being potential. We’re also an inclusive, supportive workplace offering competitive compensation, strong benefits and real opportunities to grow. We’re All In Together.

COVID-19: To protect the health of our clients, teams, and communities, all SE Health employees must be fully vaccinated (two doses, 14+ days since the final dose).

Accessibility: If you require accommodations due to illness or disability, please contact Talent Acquisition at careers@sehc.com.

AI and compensation details:

We use AI to take notes during our interview.  All applications and interviews are reviewed by our Talent Acquisition team. This role is a replacement position. The total compensation for this position is $87,000 - $108,000. The compensation offered is determined based on the successful candidate’s relevant experience, skills, and competencies, taking into consideration internal equity.