Curinos empowers financial institutions to put customers at the center of every decision. Our AI-first platform transforms proprietary data, advanced analytics and deep financial services expertise into timely recommendations - delivered right where teams work. The result: confident decisions, stronger customer relationships, and lasting, profitable growth.

Curinos operates under a hybrid modality and has office locations in New York, Chicago, Boston, Toronto, and London. This role is open to remote candidates based in the Canada, Pacific Standard Time, preferred.

Job Description

Curinos is looking for an experienced Senior Security Engineer to join our Information & Security team. Operating in an AWS-native environment with select on-premises workloads, this role drives and advances key security capabilities across cloud security posture management, vulnerability management, threat detection and detection engineering, application security, and incident response. The ideal candidate brings deep hands-on experience with modern cloud and security tooling, independent designs and implements solutions for new initiatives, and partners with engineering and operations teams to reduce risk across our hybrid environment. Working closely with Information Security, IT, and Engineering teams, this role sets priorities within its areas of responsibility, drives remediation to closure, mentors more junior team members, and serves as a subject-matter expert on security issues.

Responsibilities

Run day-to-day security operations and engineering activities across our cloud and hybrid environment, prioritizing work across competing risks based on severity, timelines, and dependencies, and partnering with Information Security, IT, and Engineering teams to identify, drive, and verify remediation while continuously improving detection and response capabilities
Monitor and respond to findings in AWS Security Hub and Amazon GuardDuty; tune and author detections to improve signal quality and reduce false positives, and define remediation standards that engineering teams can follow
Independently manage cloud security posture using our CNAPP platform, setting risk prioritization criteria, driving remediation with asset owners, and grouping recurring findings to identify root causes and recommend preventative measures
Drive the vulnerability management lifecycle using an enterprise platform, performing assessments, applying risk-based prioritization and SLAs, and driving findings to resolution across a mixed asset inventory; coordinate penetration tests and remediation of their results
Design and embed application security controls within development pipelines, partner with product and platform engineers to design remediation solutions, clearly communicate implications and timing of decisions, and recommend enhancements to code resiliency
Operate and improve endpoint and network detection and response tooling, develop and tune detections, lead telemetry and threat investigations end to end, and coordinate response
Lead investigation and response for security incidents, including high-severity events; lead root-cause analysis and drive post-incident corrective actions to completion across the relevant teams.
Define and report security posture metrics and KPIs; explain complex findings and their implications to technical peers, leaders, and stakeholders outside the team, and respond to targeted technical questions from external audiences such as auditors, clients, and vendors.
Independently automate security operations using scripting and infrastructure-as-code, developing reusable tooling that improves team efficiency and consistency.
Stay current with emerging threats, CVEs, and platform changes; evaluate new security tooling and methodologies through proofs-of-concept and recommend adoption where they reduce risk.
Work cross-functionally with engineering, information technology, and infrastructure teams to consult on security matters and champion secure-by-design practices.
Mentor and provide technical guidance on security matters to junior team members and advise engineering teams on secure design.

Key Skills

AWS cloud security: Deep hands-on expertise designing and operating AWS native security services such as Security Hub, GuardDuty, CloudTrail, IAM, and VPC, including detection tuning and guardrail design.
AWS cloud infrastructure: Strong working knowledge of AWS infrastructure and services, sufficient to assess architecture for security risk and design remediations.
CNAPP / cloud posture management: Hands-on proficiency in cloud posture management, identifying misconfigurations, prioritizing risk, driving remediation, and recommending preventative controls within a CNAPP platform.
Vulnerability management: Proficiency driving the vulnerability management lifecycle, including scanning, risk-based prioritization, SLA definition, and driving remediation to closure across a mixed aset inventory.
Endpoint and network threat detection: Hands-on experience operating and tuning endpoint and network detection tooling, including authoring detections, leading investigations, and coordinating response.
Application security tooling: Experience designing and integrating application security controls (software composition analysis, SAST, secure pipelines) into engineering workflows and partnering with developers on remediation.
Linux and Kubernetes: Solid hands-on experience securing Linux and Kubernetes environments, including hardening, monitoring, and leading remediation.
Security frameworks: Practical experience applying and helping mature NIST 800-53, CIS Benchmarks, and/or ISO 27001 controls, including supporting audits and assessment responses.
Security automation & IaC: Proficiency building automation and security-as-code (e.g., Terraform, Python) to operationalize and scale security controls.
Technical leadership: Ability to mentor junior team members and act as a domain subject-matter expert.

Salary Range: 100,000-110,000 CAD (plus Bonus)

Desired Skills & Expertise

5–8 years of hands-on experience in security operations, security engineering, or related roles, including demonstrated experience driving security workstreams end-to-end
AWS Cloud Services (5+ years hands-on experience)
Linux systems administration
Automation & Infrastructure as Code (Terraform), including the ability to design and maintain reusable modules
Deep hands-on experience across several of the following areas, with the ability to act as subject-matter expert in at least one: AWS security services, cloud security posture management, vulnerability management, endpoint detection and response, network threat detection, or application security tooling
Strong, hands-on command of cloud security principles in AWS (IAM, networking, logging, encryption), including hands-on experience with AWS CloudWatch (Logs, Metrics, Alarms, APM, and infrastructure monitoring) for visibility and alerting
Familiarity with observability and metrics tooling used to support monitoring, alerting, and security visibility
Experience applying and helping mature security frameworks (NIST 800-53, CIS Benchmarks, ISO 27001), including supporting audits and assessments.
Proficiency in Python and/or Bash for building and maintaining security automation and tooling
Bachelor’s degree in computer science, Information Security, or a related field, or equivalent practical experience
Senior-level certification preferred (e.g., AWS Security Specialty or CCSP); hands-on or foundational certs a plus (e.g., Certified Kubernetes Security Specialist (CKS), Security+, CySA+)
Demonstrated experience mentoring or providing technical guidance to other engineers.

Why work at Curinos?

Competitive benefits, including a range of Financial, Health and Lifestyle benefits to choose from
Flexible working options, including home working, flexible hours and part time options, depending on the role requirements – please ask!
Unlimited PTO policy, floating holidays, volunteering days and a day off for your birthday
Learning and development tools to assist with your career development
Work with industry leading Subject Matter Experts and specialist products
Regular social events and networking opportunities
Collaborative, supportive culture, including an active DE&I program
Employee Assistance Program which provides expert third-party advice on wellbeing, relationships, legal and financial matters, as well as access to counselling services

Applying

We know that sometimes the 'perfect candidate' doesn't exist, and that people can be put off applying for a job if they don't meet all the requirements. If you're excited about working for us and have relevant skills or experience, please go ahead and apply. You could be just what we need!

If you need any adjustments to support your application, such as information in alternative formats, special requirements to access our buildings or adjusted interview formats please contact us at careers@curinos.com and we’ll do everything we can to help.

Inclusivity at Curinos

We believe strongly in the value of diversity and creating supportive, inclusive environments where our colleagues can succeed.  As such, Curinos is proud to be an Equal Opportunity Employer. We do not discriminate on the basis of race, color, ancestry, national origin, religion, or religious creed, mental or physical disability, medical condition, genetic information, sex (including pregnancy, childbirth, and related medical conditions), sexual orientation, gender identity, gender expression, age, marital status, military or veteran status, citizenship, or other protected characteristics.