Cloud Application Security Engineer, Engineering

Hexagon Manufacturing Intelligence division is seeking a Cloud Application Security Engineer.

At Hexagon, we strive to help industrial manufacturers develop the disruptive technologies of today and the life-changing products of tomorrow. Our strength comes from our global footprint and enormous portfolio of advanced industrial sensors, measurement technologies, factory automation, simulation, and analytics tools.

We are seeking a skilled Cloud Application Security Engineer with expertise in cloud security to join our growing team. The ideal candidate will have a strong background in application security, cloud infrastructure, and a passion for safeguarding our systems against potential threats.

Job Responsibilities

• Security Assessment: Conduct security assessments and penetration testing of cloud-based applications to identify vulnerabilities and risks.
• Cloud Security Architecture: Collaborate with DevOps and IT teams to design and implement secure cloud architectures, ensuring best practices and compliance with industry standards.
• Threat Modeling: Develop and maintain threat models and security risk assessments for cloud applications.
• Security Tools: Collaborate with the Corporate Security team to implement and manage security tools and technologies to enhance the security posture of our cloud environments.
• Incident Response: Assist in the development and execution of incident response plans and participate in security incident investigations.
• Policy Development: Develop and enforce security policies, procedures, and standards for cloud applications.
• Training and Awareness: Conduct security training and awareness sessions for development and operations teams to promote a security-first culture.
• Compliance: Ensure cloud applications comply with relevant security standards and regulations (e.g., GDPR, ISO 27001, SOC 2).

Qualifications

• Education: Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience).

• Minimum of 5 years of experience in application security, with a focus on cloud environments.
• Minimum of 2 years of experience with web application development.
• Certifications: Relevant security certifications such as GCLD, GWEB (or equivalent) are essential. Management certifications such as CISSP, CCSP, or equivalent are preferred.

Technical Skills:

• Proficiency with cloud platforms such as Azure, AWS, or Google Cloud.
• Demonstrable knowledge of Identity and Access Management skills and technologies.
• Experience with security tools and technologies (e.g., SAST, DAST, SCM, WAF).
• Strong understanding of secure software development practices and DevSecOps principles.
• Proficiency in multiple programming languages.
• Familiarity with containerization and orchestration technologies (e.g., Docker, Kubernetes).
• Familiarity with security frameworks such as OWASP and standards like ISO 27001.
• Understanding of web application architecture.
• Ability to dig deep and focus on the details.

Soft Skills:

• Excellent problem-solving and analytical skills.
• Strong communication skills, both written and verbal.
• Ability to work collaboratively in a team environment.

Location:
North America (Primary Canada – Toronto/Oakville) – Hybrid.
US and UK - Remote.

Organizational Relationships:
Reports directly to the Senior Director of Software Development.
Collaborates closely with the corporate security team.
Interfaces with worldwide Hexagon business units as required.
Works together with other Hexagon Manufacturing Intelligence departments to accomplish departmental & company goals and objectives.

At Hexagon Manufacturing Intelligence, our spirited energy and engagement are evident in our commitment to our work, passion for what we do, and the speed by which we achieve it. Here you will find the opportunity to build your career, develop professionally, and explore opportunities across a large, diversified company that prides itself on its innovative spirit and commitment to integrity. We strive to attract the most talented and dynamic individuals in their fields because our success is in our people! Our culture encourages independent thinking and a team mentality. And we offer a competitive benefits package that’s second to none!

Benefits - US Location:
Exceptional Medical, Dental, Vision insurances.
Health Savings Accounts with employer contribution (HSA).
Flexible Spending Accounts (FSA).
401k Plan with generous employer match.
Generous Paid Time Off (PTO).
Employee Assistance Program.
Paid Parental Leave.
Tuition Reimbursement.

Comprehensive Benefit Package:
Extended health, dental, and vision.
Health spending and personal spending accounts.
RRSP company contribution plan of 5%.
Generous paid time off (PTO).

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or disability.

Hexagon is a global leader in sensor, software, and autonomous solutions. We are putting data to work to boost efficiency, productivity, and quality across industrial, manufacturing, infrastructure, safety, and mobility applications. Our technologies are shaping urban and production ecosystems to become increasingly connected and autonomous – ensuring a scalable, sustainable future. Hexagon’s Manufacturing Intelligence division provides solutions that utilize data from design and engineering, production and metrology to make manufacturing smarter.