Security Engineer

About Kinaxis
Are you looking to join an innovative, market-leading company where you can truly elevate your career? At Kinaxis we are serious about culture, we are serious about technology, we are serious about customers, and we are serious about not taking ourselves too seriously. If you are looking to be part of an incredible growth story, then we might just be the place for you!
In 1984, we started out as a team of three engineers. Today, we have grown to become a global organization with over 2000 employees around the world, 6 global office and a best-in-class HQ in Ottawa, Canada. As winners of several Top Employer awards globally, we are proud to work with our customers and employees towards solving some of the biggest challenges facing supply chains today.
Kinaxis is a global leader in modern supply chain orchestration, powering complex global supply chains, and supporting the people who manage them. Our powerful, AI infused platform provides full transparency and visibility across end-to-end supply chains, enabling our customers to make faster, better decisions. We are trusted by renowned global brands to provide the agility and predictability needed to navigate today’s volatility and disruption. With more than 40,000 users in over 100 countries, we are expanding our team as we continue to innovate and revolutionize how we support our customers.
Location
Ottawa, Canada - Hybrid
Other Canadian locations - Remote
About The Role
The Information Security Engineer is a seasoned cybersecurity professional responsible for responsible for designing and implementing complex security controls across a hybrid environment spanning public cloud and on ‑ premise infrastructure, supporting both Corporate IT environments and the Kinaxis Maestro SaaS platform.
In this position, you will collaborate closely with IT, SaaS Operations, Product Development, and Business Systems teams to design durable controls, support and implement remediation activities, and strengthen detection and response capabilities. You will focus on solution design and technical execution.
Vacancy Status
This is an existing job vacancy
What you will do
Security Engineering & Control Design

• Design, implement, and operate security controls across Corporate IT environments and the Kinaxis Maestro SaaS platform, aligned with approved standards and architectures.
• Translate security requirements into practical, scalable engineering solutions across identity, endpoint, network, workload, application, and data layers.
• Contribute to secure configuration standards and reference architectures.

Cloud, Platform & Application Security

• Lead security engineering efforts for complex initiatives such as cloud migrations, SaaS integrations, container and Kubernetes adoption, and platform modernization.
• Embed security controls into CI/CD pipelines and infrastructure ‑ as ‑ code workflows.
• Partner with Security Architecture to operationalize approved security patterns and guardrails.

Vulnerability Management & Risk Reduction

• Work closely with IT, SaaS Operations, Product Development, and Business Systems teams to identify, prioritize, and reduce exposure to known vulnerabilities and misconfigurations.
• Support risk ‑ based remediation planning, track remediation actions to closure, and implement remediation directly where required and within scope.
• Verify remediation effectiveness and contribute to durable control improvements that prevent recurrence.

Detection, Incident Response & Resilience

• Contribute to detection engineering and monitoring capabilities that enable early identification of threats and control failures.
• Act as a technical escalation point during complex security incidents, supporting investigation, containment, and remediation.
• Participate in post ‑ incident root ‑ cause analysis and corrective action implementation.

What we are looking for
Primary Skills And Qualifications

• Bachelor’s degree in Information Security, Computer Science, Information Technology, or equivalent experience.
• 6–8 years of experience in security engineering, cloud security, or enterprise security roles.
• Strong hands ‑ on experience implementing and operating security controls across multiple domains.
• Experience securing GCP and/or Azure environments, including hybrid or multi ‑ account deployments.
• Solid understanding of modern authentication, identity federation, and access control models.
• Working knowledge of security frameworks such as NIST CSF, ISO 27001/27002, and SOC 2.
• Influencing architecture, risk decisions, and roadmap priorities without formal authority
• Adaptable and resilient in high-urgency operational contexts.
• Demonstrated ability to coach or mentor junior team members.
• Certifications:
• Desired: CISSP, CCSP, Certified Security – GCP or Azure Security Engineer.
• Preferred: GIAC Cloud Security, OSCP, HashiCorp Terraform Associate or policy-as-code certifications.

Role Specific Skills And Experience

• Experience designing, implementing, and operating security controls to protect enterprise and SaaS environments, with direct responsibility for improving control effectiveness across identity, endpoint, network, workload, application, and data layers
• Experience identifying, validating, and prioritizing vulnerabilities and misconfigurations using a risk ‑ based approach across cloud, SaaS, and enterprise systems.
• Drives remediation of high ‑ risk vulnerabilities, including hands ‑ on implementation where required.
• Proven experience collaborating with engineering teams to embed security controls into platform designs, CI/CD pipelines, and infrastructure ‑ as ‑ code workflows throughout system lifecycle.
• Hands-on experience with SIEM and XDR platforms (Microsoft Sentinel, Defender for Endpoint, or similar).
• Proven experience implementing and managing controls such as firewalls, network segmentation, private connectivity, and secure ingress/egress, with a focus on reducing attack surface.
• Experience with security technologies including firewalls, IDS/IPS, SIEM, CNAPP, IAM, encryption, and authentication mechanisms.
• Strong understanding of industry-recognized cybersecurity frameworks, including ISO 27001, NIST CSF, and SOC 2.

#Senior;
Work With Impact:
Our platform directly helps companies power the world’s supply chains. We see the results of what we do out in the world every day, when we see store shelves stocked, when medications are available for our loved ones, and so much more.
Work with Fortune 500 Brands:
Companies across industries trust us to help them take control of their integrated business planning and digital supply chain. Some of our customers include Lockheed Martin, Unilever, P&G, ExxonMobil, Cisco and more.
Social Responsibility at Kinaxis:
Our Diversity, Equity, and Inclusion Committee weighs in on hiring practices, talent assessment training materials, and mandatory training on unconscious bias and inclusion fundamentals. Sustainability is key to what we do and we’re committed to a long-term net-zero operations strategy. We are involved in our communities and support causes where we can make the most impact.
People matter at Kinaxis and here are some of the perks and benefits we offer, which may vary by location and employee:

• Flexible vacation and Kinaxis Days (company-wide days off)
• Flexible work options
• Physical and mental well-being programs
• Regularly scheduled virtual fitness classes
• Mentorship programs, training, and career development
• Recognition programs and referral rewards
• Hackathons

For more information, visit the Kinaxis website at www.kinaxis.com or the company’s blog at http://blog.kinaxis.com .
Kinaxis welcomes candidates to apply to our inclusive community. We provide accommodations upon request to ensure fairness and accessibility throughout our recruitment process for all candidates, including those with specific needs or disabilities. If you require an accommodation, please reach out to us at recruitmentprograms@kinaxis.com. This contact information is for accessibility requests only and cannot be used to inquire about the status of applications.
Kinaxis is committed to ensuring a fair and transparent recruitment process. We use artificial intelligence (AI) tools in the initial step of the recruitment process to compare submitted resumes against the job description to identify candidates whose education, experience, and skills most closely match the requirements of the role. After the initial screening, all subsequent decisions regarding your application, including final selection, are made by our human recruitment team. AI does not make any final hiring decisions.