Our client, is seeking a highly sophisticated Security Specialist to join their advanced Cloud Compliance and Governance division.
...
In this senior engineering role, you will focus on automating and validating Compliance-as-Code (CaC) policies across massive multi-cloud infrastructure environments (GCP, Azure, and AWS). You will blend deep cloud security principles with cutting-edge AI tools (such as Azure AI Studio, Azure Foundry, and Generative AI engines) to architect automated, intelligent validation routines. Your mission is to embed automated financial regulation gates, positive/negative exception test models, and real-time scanning into the enterprise DevSecOps pipelines to ensure continuous cloud security enforcement.
Duration: 3 Months (Possibility of extension or permanent conversion based on performance and business needs)
Schedule: Monday – Friday, 37.5 hours per week (7.5 hours/day, core business hours)
Work Location: Hybrid (2 days per week on-site at the corporate office in downtown Toronto, ON; 3 days remote. Note: Anchor days are Wednesdays and Fridays, and the schedule could potentially scale to 4 days in-office in the future).
Advantages
High-Innovation Tech Stack: Pioneer the use of Azure Foundry, Azure ML, and Generative AI tools to solve enterprise-scale cloud security and policy compliance challenges.
Tier-1 Financial Footprint: Deepen your corporate portfolio by driving cloud compliance architecture in alignment with rigid international banking regulations.
Multi-Cloud Environment Leadership: Act as a central technical authority overseeing security configurations across all three major public cloud providers (AWS, Azure, and GCP).
Strategic Career Springboard: Enter an elite technology group with clear visibility, offering pathways for contract extensions or permanent team conversion.
Responsibilities
Automated Cloud Policy Testing
AI-Driven Framework Architecture: Design, implement, and maintain AI-driven automated test frameworks to validate the behavior of Compliance-as-Code (CaC) policies across GCP, AWS, and Azure.
Intelligent Environment Mocking: Leverage Azure Foundry, Azure AI Search, and Azure ML to build realistic mock cloud environments (including complex network topologies and IAM matrices) to predict policy non-compliance and auto-recommend remediations.
Test Case Rigor: Develop comprehensive positive, negative, and edge-exception test scripts to rigorously challenge policy enforcement boundaries, maintaining clear traceability maps to financial audits.
Cross-Functional Alignment: Partner with CaC policy developers, cloud service owners, and security architects to deeply map system failure conditions and intended behaviors.
Continuous Testing & CI/CD Integration
DevSecOps Ingestion: Embed automated compliance verification layers directly into CI/CD pipelines via GitHub Actions and GitHub workflows, utilizing GitHub Copilot and M365 Copilot Studio for scripting and validation efficiency.
Infrastructure-as-Code Auditing: Build custom Python utilities to automate the real-time security scanning and baseline validation of Terraform infrastructure deployments.
Regulatory Enforcement & Audit Readiness
Control Mapping: Collaborate with DevSecOps and cloud governance teams to enforce cloud controls against international frameworks (NIST, ISO 27001, SOC 2).
Automated Audit Telemetry: Validate real-time compliance reporting dashboards, monitoring logs, and vulnerability alerting tools leveraging platforms like Wiz.io, SonarQube, Splunk, Dynatrace, or AppOmni. Ensure all corporate development and testing activities are traceable for internal risk assessments.
Qualifications
Experience: 8+ years of progressive technical experience operating in Cloud Security, DevSecOps, AI Engineering, or Cloud Systems Engineering environments.
Leadership Acuity: Minimum 3+ years operating successfully in a formal Technical Lead capacity, steering project deliverables and architectural standards.
Multi-Cloud Expertise: Strong technical knowledge and engineering familiarity with GCP, Azure, and AWS architectures.
Core Development Stack: High proficiency writing clean, complex automation scripts in Python.
IaC & CI/CD Mastery: Advanced hands-on experience developing infrastructure with Terraform and automating pipeline controls within CI/CD repositories (GitHub preferred).
Collaboration Toolsets: Solid working experience leveraging Jira and Confluence to govern sprint backlogs and documentation.
Soft Skills: Outstanding written and verbal communication skills; strong interpersonal finesse; detail-oriented self-starter who thrives independently or inside matrixed squads.
Nice-to-Have Skills & Assets
Prior professional experience operating inside a banking or major financial institution.
Hands-on experience with native cloud policy engines and frameworks: HashiCorp Sentinel, Open Policy Agent (OPA / Rego logic), Azure Policy, or GCP Org Policy.
Strong exposure to containerization security and Kubernetes policy enforcement frameworks (Helm, ARM, YAML setups).
Holding active Cloud Security or DevSecOps engineering certifications.
Summary
If you are a visionary Cloud Security Tech Lead who bridges the gap between deep infrastructure engineering (Terraform/Python) and next-generation AI automation, this hybrid Toronto assignment is tailored for your career. Bring your multi-cloud expertise, compliance mapping rigor, and DevSecOps mindset to an industry-leading financial infrastructure today!
Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.
Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.
This posting is for existing and upcoming vacancies.
show more
Our client, is seeking a highly sophisticated Security Specialist to join their advanced Cloud Compliance and Governance division.
In this senior engineering role, you will focus on automating and validating Compliance-as-Code (CaC) policies across massive multi-cloud infrastructure environments (GCP, Azure, and AWS). You will blend deep cloud security principles with cutting-edge AI tools (such as Azure AI Studio, Azure Foundry, and Generative AI engines) to architect automated, intelligent validation routines. Your mission is to embed automated financial regulation gates, positive/negative exception test models, and real-time scanning into the enterprise DevSecOps pipelines to ensure continuous cloud security enforcement.
Duration: 3 Months (Possibility of extension or permanent conversion based on performance and business needs)
Schedule: Monday – Friday, 37.5 hours per week (7.5 hours/day, core business hours)
Work Location: Hybrid (2 days per week on-site at the corporate office in downtown Toronto, ON; 3 days remote. Note: Anchor days are Wednesdays and Fridays, and the schedule could potentially scale to 4 days in-office in the future).
...
Advantages
High-Innovation Tech Stack: Pioneer the use of Azure Foundry, Azure ML, and Generative AI tools to solve enterprise-scale cloud security and policy compliance challenges.
Tier-1 Financial Footprint: Deepen your corporate portfolio by driving cloud compliance architecture in alignment with rigid international banking regulations.
Multi-Cloud Environment Leadership: Act as a central technical authority overseeing security configurations across all three major public cloud providers (AWS, Azure, and GCP).
Strategic Career Springboard: Enter an elite technology group with clear visibility, offering pathways for contract extensions or permanent team conversion.
Responsibilities
Automated Cloud Policy Testing
AI-Driven Framework Architecture: Design, implement, and maintain AI-driven automated test frameworks to validate the behavior of Compliance-as-Code (CaC) policies across GCP, AWS, and Azure.
Intelligent Environment Mocking: Leverage Azure Foundry, Azure AI Search, and Azure ML to build realistic mock cloud environments (including complex network topologies and IAM matrices) to predict policy non-compliance and auto-recommend remediations.
Test Case Rigor: Develop comprehensive positive, negative, and edge-exception test scripts to rigorously challenge policy enforcement boundaries, maintaining clear traceability maps to financial audits.
Cross-Functional Alignment: Partner with CaC policy developers, cloud service owners, and security architects to deeply map system failure conditions and intended behaviors.
Continuous Testing & CI/CD Integration
DevSecOps Ingestion: Embed automated compliance verification layers directly into CI/CD pipelines via GitHub Actions and GitHub workflows, utilizing GitHub Copilot and M365 Copilot Studio for scripting and validation efficiency.
Infrastructure-as-Code Auditing: Build custom Python utilities to automate the real-time security scanning and baseline validation of Terraform infrastructure deployments.
Regulatory Enforcement & Audit Readiness
Control Mapping: Collaborate with DevSecOps and cloud governance teams to enforce cloud controls against international frameworks (NIST, ISO 27001, SOC 2).
Automated Audit Telemetry: Validate real-time compliance reporting dashboards, monitoring logs, and vulnerability alerting tools leveraging platforms like Wiz.io, SonarQube, Splunk, Dynatrace, or AppOmni. Ensure all corporate development and testing activities are traceable for internal risk assessments.
Qualifications
Experience: 8+ years of progressive technical experience operating in Cloud Security, DevSecOps, AI Engineering, or Cloud Systems Engineering environments.
Leadership Acuity: Minimum 3+ years operating successfully in a formal Technical Lead capacity, steering project deliverables and architectural standards.
Multi-Cloud Expertise: Strong technical knowledge and engineering familiarity with GCP, Azure, and AWS architectures.
Core Development Stack: High proficiency writing clean, complex automation scripts in Python.
IaC & CI/CD Mastery: Advanced hands-on experience developing infrastructure with Terraform and automating pipeline controls within CI/CD repositories (GitHub preferred).
Collaboration Toolsets: Solid working experience leveraging Jira and Confluence to govern sprint backlogs and documentation.
Soft Skills: Outstanding written and verbal communication skills; strong interpersonal finesse; detail-oriented self-starter who thrives independently or inside matrixed squads.
Nice-to-Have Skills & Assets
Prior professional experience operating inside a banking or major financial institution.
Hands-on experience with native cloud policy engines and frameworks: HashiCorp Sentinel, Open Policy Agent (OPA / Rego logic), Azure Policy, or GCP Org Policy.
Strong exposure to containerization security and Kubernetes policy enforcement frameworks (Helm, ARM, YAML setups).
Holding active Cloud Security or DevSecOps engineering certifications.
Summary
If you are a visionary Cloud Security Tech Lead who bridges the gap between deep infrastructure engineering (Terraform/Python) and next-generation AI automation, this hybrid Toronto assignment is tailored for your career. Bring your multi-cloud expertise, compliance mapping rigor, and DevSecOps mindset to an industry-leading financial infrastructure today!
Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.
Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.
This posting is for existing and upcoming vacancies.
show more
