Overview

Instacart’s IT organization empowers every employee to work securely, reliably, and at scale. We’re looking for a Senior Corporate Engineer II to own and evolve our security-critical workforce platforms, including our Okta identity platform, device trust program, and office networks across San Francisco, New York City, and Toronto. Your work will directly impact every Instacart employee and partner by ensuring seamless, safe access to the tools we rely on every day.

You’ll collaborate closely with Security Engineering, Enterprise Applications, Workplace, Compliance, and our Help Desk teams to ship automation, harden our posture, and raise operational reliability. This is a hands-on role in a fast-paced, ever-changing environment—ideal for someone who thrives in ambiguity, rolls up their sleeves to solve complex problems, and brings sound architectural judgment to high-stakes systems.

We are a dynamic team that loves tackling unique scenarios while building solutions that are scalable and secure. The role is remote-friendly within North America, with a preference for candidates in the Pacific Time Zone and the San Francisco Bay Area. Occasional travel to Instacart offices may be required (up to 10%).

About the Job

• Own the architecture, security, and day-to-day operations of our enterprise Okta tenant, including delivery of Okta Identity Governance (OIG), lifecycle management, SCIM provisioning, SSO integrations (SAML/OIDC), MFA, risk-based policies, and device trust.
• Design and maintain Infrastructure-as-Code for identity and access using Terraform, building reusable modules, guardrails, and automated workflows integrated with HRIS and ITSM systems to achieve least-privilege and timely provisioning/deprovisioning.
• Architect, operate, and continuously improve Instacart’s office network infrastructure (firewalls, routing/switching, wireless) across SF, NYC, and Toronto; drive zero-trust segmentation, observability, capacity planning, and vendor/partner management.
• Lead and participate in incident response for identity and network events, drive rapid mitigation and root-cause analysis, and implement durable remediations through post-incident reviews and change management.
• Standardize and execute certificate and key lifecycles for SAML/TLS across SaaS applications; eliminate manual toil with scripting and robust runbooks that increase reliability and auditability.
• Partner with Security and Compliance to meet controls and audit needs (e.g., access reviews, evidence collection), improve access risk management, and unlock license savings via automated revocation and right-sizing.
• Mentor teammates, elevate documentation and operational excellence, and help shape the roadmap by prioritizing high-impact work in a rapidly evolving environment.

About You

Minimum Qualifications

• 7+ years of experience in corporate IT engineering or a related field with a focus on identity and access management (IAM) and enterprise networking.
• 3+ years of hands-on administration of Okta in production (1,000+ users), including SSO integrations (SAML/OIDC), SCIM provisioning, MFA, and policy design.
• 2+ years implementing identity governance and automation using Okta Workflows, Okta Identity Governance (OIG), or an equivalent IGA platform.
• Proficiency with Infrastructure-as-Code and automation: Terraform (required) and at least one scripting language (Python, Bash, or PowerShell).
• Demonstrated experience planning and executing certificate rotations and key management for SAML/TLS across multiple SaaS applications.
• Hands-on experience operating and troubleshooting office network infrastructure (switching, routing, wireless, firewalls) and VPN/zero-trust access using technologies such as Cisco/Meraki, Aruba, and Palo Alto.
• Proven track record leading critical incidents and executing structured change management, including authoring runbooks and conducting post-incident reviews.
• Working knowledge of endpoint management and device trust (e.g., Jamf, Kandji, Intune) and integrating device posture into access controls.
• Bachelor’s degree in Computer Science, Engineering, Information Systems, or equivalent practical experience.

Preferred Qualifications

• Okta certifications (Administrator, Professional, or Consultant) and/or networking/security certifications (e.g., CCNP, PCNSE).
• Experience building Git-based CI/CD pipelines for identity and network automation (e.g., GitHub Actions, CircleCI) and implementing policy-as-code.
• Familiarity with compliance frameworks and audits (SOX, SOC 2, ISO 27001) and hands-on experience running access reviews and evidence collection.
• Experience administering Google Workspace and/or Microsoft 365 identity and security configurations at scale.
• Exposure to secrets management and PKI (e.g., HashiCorp Vault, AWS KMS) and log/monitoring platforms (e.g., Datadog, Splunk).
• Strong cross-functional communication skills and experience leading complex, multi-stakeholder projects from scoping through delivery.

#LI-Remote

Overview

Instacart’s IT organization empowers every employee to work securely, reliably, and at scale. We’re looking for a Senior Corporate Engineer II to own and evolve our security-critical workforce platforms, including our Okta identity platform, device trust program, and office networks across San Francisco, New York City, and Toronto. Your work will directly impact every Instacart employee and partner by ensuring seamless, safe access to the tools we rely on every day.

You’ll collaborate closely with Security Engineering, Enterprise Applications, Workplace, Compliance, and our Help Desk teams to ship automation, harden our posture, and raise operational reliability. This is a hands-on role in a fast-paced, ever-changing environment—ideal for someone who thrives in ambiguity, rolls up their sleeves to solve complex problems, and brings sound architectural judgment to high-stakes systems.

We are a dynamic team that loves tackling unique scenarios while building solutions that are scalable and secure. The role is remote-friendly within North America, with a preference for candidates in the Pacific Time Zone and the San Francisco Bay Area. Occasional travel to Instacart offices may be required (up to 10%).

About the Job

• Own the architecture, security, and day-to-day operations of our enterprise Okta tenant, including delivery of Okta Identity Governance (OIG), lifecycle management, SCIM provisioning, SSO integrations (SAML/OIDC), MFA, risk-based policies, and device trust.
• Design and maintain Infrastructure-as-Code for identity and access using Terraform, building reusable modules, guardrails, and automated workflows integrated with HRIS and ITSM systems to achieve least-privilege and timely provisioning/deprovisioning.
• Architect, operate, and continuously improve Instacart’s office network infrastructure (firewalls, routing/switching, wireless) across SF, NYC, and Toronto; drive zero-trust segmentation, observability, capacity planning, and vendor/partner management.
• Lead and participate in incident response for identity and network events, drive rapid mitigation and root-cause analysis, and implement durable remediations through post-incident reviews and change management.
• Standardize and execute certificate and key lifecycles for SAML/TLS across SaaS applications; eliminate manual toil with scripting and robust runbooks that increase reliability and auditability.
• Partner with Security and Compliance to meet controls and audit needs (e.g., access reviews, evidence collection), improve access risk management, and unlock license savings via automated revocation and right-sizing.
• Mentor teammates, elevate documentation and operational excellence, and help shape the roadmap by prioritizing high-impact work in a rapidly evolving environment.

About You

Minimum Qualifications

• 7+ years of experience in corporate IT engineering or a related field with a focus on identity and access management (IAM) and enterprise networking.
• 3+ years of hands-on administration of Okta in production (1,000+ users), including SSO integrations (SAML/OIDC), SCIM provisioning, MFA, and policy design.
• 2+ years implementing identity governance and automation using Okta Workflows, Okta Identity Governance (OIG), or an equivalent IGA platform.
• Proficiency with Infrastructure-as-Code and automation: Terraform (required) and at least one scripting language (Python, Bash, or PowerShell).
• Demonstrated experience planning and executing certificate rotations and key management for SAML/TLS across multiple SaaS applications.
• Hands-on experience operating and troubleshooting office network infrastructure (switching, routing, wireless, firewalls) and VPN/zero-trust access using technologies such as Cisco/Meraki, Aruba, and Palo Alto.
• Proven track record leading critical incidents and executing structured change management, including authoring runbooks and conducting post-incident reviews.
• Working knowledge of endpoint management and device trust (e.g., Jamf, Kandji, Intune) and integrating device posture into access controls.
• Bachelor’s degree in Computer Science, Engineering, Information Systems, or equivalent practical experience.

Preferred Qualifications

• Okta certifications (Administrator, Professional, or Consultant) and/or networking/security certifications (e.g., CCNP, PCNSE).
• Experience building Git-based CI/CD pipelines for identity and network automation (e.g., GitHub Actions, CircleCI) and implementing policy-as-code.
• Familiarity with compliance frameworks and audits (SOX, SOC 2, ISO 27001) and hands-on experience running access reviews and evidence collection.
• Experience administering Google Workspace and/or Microsoft 365 identity and security configurations at scale.
• Exposure to secrets management and PKI (e.g., HashiCorp Vault, AWS KMS) and log/monitoring platforms (e.g., Datadog, Splunk).
• Strong cross-functional communication skills and experience leading complex, multi-stakeholder projects from scoping through delivery.

#LI-Remote

About the team + role

We are building an elite team, applying frontier technologies to the world’s biggest financial problems. We’re looking for bold thinkers. Sharp problem-solvers. Builders who are wired to make an impact. Robinhood isn’t a place for complacency, it’s where ambitious people do the best work of their careers. We’re a high-performing, fast-moving team with ethics at the center of everything we do. Expectations are high, and so are the rewards. 

The Corporate Systems team focuses on maintaining secure, reliable systems that support employees across the company. This team works closely with Security, IT, and Engineering partners to manage identity systems, endpoint devices, and cloud infrastructure. The goal is to ensure systems are scalable, dependable, and prepared to address evolving security risks.

As an Application Engineer, you will manage and improve systems that support identity, device management, and cloud infrastructure. You will build automation to streamline account and device lifecycle processes, respond to technical issues, and contribute to engineering standards through code reviews and documentation. You will also use AI-assisted tools to enhance development workflows and improve efficiency.

This role is based in our Menlo Park, CA office(s), with in-person attendance expected at least 3 days per week.

At Robinhood, we believe in the power of in-person work to accelerate progress, spark innovation, and strengthen community. Our office experience is intentional, energizing, and designed to fully support high-performing teams.

What you’ll do

• You manage endpoint devices, identity systems, Okta, Google Cloud infrastructure, and Google Workspace to maintain secure and reliable operations
• You design and build tools based on internal requirements to improve system functionality and efficiency
• You develop automation for device, account, and identity lifecycle management processes
• You support engineering teams by troubleshooting system issues and resolving escalations
• You review write and code, write clear documentation, and follow established engineering practices

What you bring

• You have experience as a Systems, Site Reliability, Infrastructure, or related engineer, typically with 5+ years in similar environments
• You have hands-on experience managing macOS or Windows devices using modern endpoint management tools
• You are familiar with AI-assisted development tools such as Claude Code or Gemini
• You have experience coding or scripting in languages such as Python, Swift, Go, Bash, or PowerShell
• You approach problems methodically, work well independently or with others, and focus on improving employee-facing systems

What we offer

• Challenging, high-impact work to grow your career.
• Performance-driven compensation with multipliers for outsized impact, bonus programs, equity ownership, and 401(k) matching.
• Best-in-class benefits to fuel your work, including 100% paid health insurance for employees with 90% coverage for dependents.
• Lifestyle wallet — a highly flexible benefits spending account for wellness, learning, and more.
• Employer-paid life & disability insurance, fertility benefits, and mental health benefits.
• Time off to recharge including company holidays, paid time off, sick time, parental leave, and more!
• Exceptional office experience with catered meals, events, and comfortable workspaces.

The Cloud Automation Engineer designs, builds, and operates automation-first cloud infrastructure platforms using Infrastructure-as-Code (IaC), CI/CD, and serverless automation. The role enables secure, repeatable, and resilient cloud environments through standardized automation, self-service capabilities, and codified governance primarily in Microsoft Azure, with tertiary exposure to AWS. 

This role partners closely with Cloud Platform Engineering, Security, Network, and Operations teams to ensure all automation solutions are secure-by-design, private-network-first, and resilient by default, including full lifecycle support for business continuity and disaster recovery (BC/DR) implemented through IaC. 

What will you do?

​​Infrastructure-as-Code (IaC) & Cloud Automation 

• Design, develop, and maintain Infrastructure-as-Code using Terraform, ensuring infrastructure is reproducible, testable, and auditable. 
• Build and maintain reusable IaC modules aligned with platform standards, security guardrails, and network architecture patterns. 
• Implement automated provisioning, configuration, scaling, and decommissioning workflows for cloud infrastructure and shared services. 
• Define and maintain code repositories following industry BEST PRACTICES and strong code repository governance 
• Design and maintain BC/DR capabilities and recovery environments using Infrastructure-as-Code.  
• Automate recovery environment deployment and support validation/testing routines to ensure recoverability and resilience. 

CI/CD Pipeline Engineering  

• Design, implement, and maintain CI/CD pipelines for infrastructure and platform automation. 
• Integrate testing, validation, and policy enforcement into pipelines to promote safe and consistent changes. 
• Enable repeatable deployments across environments using modern DevOps practices. 

​​​​Azure Automation & Serverless Engineering 

• Build automation solutions using PowerShell, Azure Logic Apps, Azure Automation Accounts, and Azure Functions. 
• ​Develop event-driven and scheduled automation for platform operations, governance processes, and operational workflows. 
• ​Implement robust secret management and secure runtime configuration practices. 
• ​Develop and maintain automation using PowerShell, Python, and Bash scripting.  
• ​Use appropriate scripting/tools to enable orchestration, integration, validation, and operational automation across platforms.

​​Collaboration and Support​ 

• Work closely with other IT teams to integrate cloud network solutions with existing systems and applications. 
• ​​Troubleshooting, diagnosing, and resolving hardware, software, and other network and system problems including router, switches, firewalls, wireless controllers and VPN concentrators. 
• ​Maximizing network performance by monitoring activity and utilizing observability tools such as Dynatrace and Azure monitoring. 
• ​Monitoring and maintenance of company-wide AV (Audio-Video) infrastructure – such as conference rooms, collaboration spaces etc.  
• ​Serve as the on-call network engineering for after-hours escalation issues as part of the company on-call rotation schedule.​ 

Modern Observability & Operational Telemetry ​ 

• Ensure automation solutions are observable and operationally supportable by integrating with modern observability platforms such as Dynatrace, Datadog, and Azure-native tooling including Azure Monitor and Azure Log Analytics. 
• Develop dashboards, alerts, and operational insights, enabling faster detection and root-cause analysis (RCA) by using telemetry (metrics/logs/traces) and platform standards. 
• Use modern query languages such as DQL (Dynatrace Query Language) and KQL (Kusto Query Language), with secondary knowledge of SQL, to support troubleshooting, insights, and automation-driven operations

Security & Compliance Engineering

• Embed cloud security and technology security best practices into all automation solutions (identity, secrets, least privilege, logging, secure configuration baselines). 
• Partner with Security teams to ensure automation aligns with enterprise security requirements and audit expectations. 
• Ensure changes are traceable and auditable through source control and deployment records. 
•  Apply a strong foundation in cloud network theory to ensure automation processes are designed with a private networking first priority.  
• Ensure automation supports secure connectivity patterns (segmentation, routing considerations, controlled ingress/egress, and service endpoint/Private Link-style design patterns where applicable). 

What will you need to succeed in this role?

• Undergraduate degree in Engineering or related field with ​​one of the Certifications: AZ-104, AZ-400, Terraform Associate or Terraform Authoring and Operations Professional​ 
• Minimum of 5 years of experience with batch scripting languages 
• ​Minimum 3 years of experience with technology process automation using tools such as Azure Functions, Logic Apps, Automation Accounts, Lambda or Power Platform 
• ​Minimum 2 years DevOps experience 
• ​Relevant certifications such as AZ-104, AWS CloudOps Engineer  
• ​AZ-400 certification is highly desirable  
• ​Minimum of 3 years of experience with Infrastructure as Code technologies such as Azure BICEP, ARM or Terraform. Preference to direct Terraform experience. 
• ​Minimum of 2 years of experience with private cloud networking concepts
• Technical Expertise: Proficiency in infrastructure technology automation, working within cloud platforms such as AWS, Azure, or Google Cloud.
•  In-depth understanding of system automation scripting technologies using common scripting languages such as PowerShell, Bash or Python.  
• ​​In-depth understanding of high availability, disaster recovery, multi-site architecture, serverless micro-service automation architecture, and hybrid cloud service integration is a must.​
• ​Infrastructure as Code Knowledge: Strong understanding of Infrastructure-as-Code concepts and technologies (e.g. Terraform, BICEP, ARM, Git).
• Ability to build Terraform code based on technology infrastructure architecture designs and service catalogue standards.
• Knowledge of Git repository branch strategies and code repo best practices.
• Automation and Integration Skills: Experience with serverless automation tools across hybrid cloud providers to build integration and automation processes based on business need.
• ​Hands-on experience with serverless automation tools such as Azure Automation Accounts, Logic Apps, Functions, AWS Lambda and Data Factory.
• Strong understanding of object-oriented scripting using common script languages like PowerShell, Bash or Python.
• Working experience with vendor API tools for use within automation and integration processes.
• ​Problem-Solving: Ability to diagnose and resolve complex micro-service and CI/CD issues.
• Ability to diagnose and resolve complex micro-service and CI/CD pipeline issues across a hybrid cloud environment.
• Act as SME and tier 3 support for troubleshooting of deployed automation and integration solutions.
• Solving and conducting disaster recovery operations when required
• Communication: Excellent verbal and written communication skills to collaborate effectively with team members and stakeholders.
• ​Project Management: Ability to manage multiple projects and prioritize tasks effectively. 

#LI-Hybrid

The expected base salary range for this position is $64,500 - $114,500. Depending on your relevant experience, skills, qualifications, market conditions and business needs, base compensation may vary. You have the potential to earn more through Gore Mutual’s discretionary bonus program which gives you an opportunity to increase your total compensation, provided the business meets its performance targets and you meet your individual goals.

Please note: This range reflects the expected base salary for this role but may not represent the full compensation range for all experience and skill levels. During the recruitment process, we will discuss and consider how your unique qualifications align with the broader range for this position.

Gore Mutual is proud to offer a comprehensive total rewards package which includes extended health and dental benefits, disability insurance, retirement plan matching, paid time off, recognition and perk programs.

#LI-Hybrid

We’re seeking an experienced Senior Security Engineer with a strong passion for Identity and Access Management(IAM) and proven expertise in cloud-native environments, particularly AWS. In this role, you’ll help shape and implement modern identity strategies to secure access across all of Marqeta’s systems and services—100% cloud-based, with no data center footprint.

Join us in building a secure, scalable, and frictionless IAM program where you’ll play a crucial part in:

• Building and evolving our Identity Governance and Administration (IGA) capabilities.
• Implementing & Operating Privileged Access Management (PAM) in a cloud-first (AWS-focused) environment.
• Designing and architecting a Certificate Lifecycle Management solution that supports cloud-native workloads.
• Driving integration of IAM across AWS services, SaaS platforms, and developer/DevOps pipelines.
• Designing identity and access controls to protect AI/ML systems—ensuring secure access to training data, models, and inference APIs.

The Impact You’ll Have

• Develop and lead implementation of robust IAM strategies aligned with cloud-native architecture and security principles.
• Expand and operationalize the IAM program across IGA, PAM, SSO, MFA, access management, secrets management, and certificate lifecycle.
• Automate identity provisioning, de-provisioning, and access reviews using AI tools and infrastructure-as-code.
• Design IAM integrations for AWS-native services (Lambda, EC2, S3, IAM, etc.), SaaS platforms, and third-party identity tools (e.g., Okta, CyberArk).
• Promote and enforce least privilege and zero-trust principles through scalable access controls and policy automation.
• Mentor junior engineers and serve as a technical lead for IAM-related projects.
• Collaborate with Security, DevOps, and Infrastructure teams to embed IAM controls across the engineering lifecycle.
• Stay ahead of emerging trends and continuously refine IAM strategy based on evolving cloud threats and compliance requirements.

Who You Are

• A minimum of 8 years related experience with a Bachelor’s degree; or 5 years and a Master’s degree; or a PhD with 3 years’ experience; or equivalent combination of related education and work experience.
• Strong experience with IAM tools (e.g., Okta, CyberArk, Ping, SailPoint).
• Deep knowledge of IAM in cloud-native environments, especially AWS IAM, roles, policies, permissions boundaries, and federation.
• Proficiency in infrastructure-as-code (e.g., Terraform, CloudFormation).
• Familiarity with authentication and authorization protocols (SAML, OAuth2, OpenID Connect, Kerberos).
• Strong grasp of directory services like Active Directory, LDAP, and cloud-based alternatives.
• Hands-on skills in scripting (e.g., Python, PowerShell) to automate IAM operations.
• Solid understanding of compliance standards: NIST, SOC 2, PCI DSS, etc.
• Proven experience integrating IAM into CI/CD pipelines, secrets management, and DevOps workflows.
• Excellent communication skills and ability to influence and lead cross-functional teams.

Nice to have

• Relevant certifications such as CISSP, CISM, or IAM-specific credentials (e.g., CIAM/CAMS, CyberArk Certified, Okta Certified Consultant).
• Experience with AWS technologies such as Lambda, S3, DynamoDB, RDS, Aurora, SNS, SQS, CloudTrail, CloudWatch, Code Pipeline, AWS Developer Tools, and IAM roles and permissions
• Experience with DevOps tools and practices, including secrets management and CICD pipelines

Manager

• Sandeep Chotwani

Recruiter for this role

• Kayla Osuna

Compensation and Benefits

Marqeta is a Flex First company which allows you to choose your best working environment, whether that be from home or at a company office. To support Flex First, we calibrate pay to a competitive value according to working location. 

When determining salaries, we consider several factors including, but not limited to, skills, prior experience, and work location. The new-hire base salary range for this position, reflected in CAD, is: 136,800 - 171,000

We also believe in recognizing the contributions of our people. That's why we award annual bonuses to eligible employees, rewarding both individual performance and the success of the entire company.

Along with monetary compensation, Marqeta offers

• Multiple health insurance options
• Flexible vacation time
• Retirement savings program with company contribution
• Equity in a publicly-traded company 
• Monthly stipend to support our remote work model
• Annual “development dollars” to support our people growth and development
• Family-forming benefits and up to 20 weeks of Parental Leave

We’re seeking an experienced Senior Security Engineer with a strong passion for Identity and Access Management(IAM) and proven expertise in cloud-native environments, particularly AWS. In this role, you’ll help shape and implement modern identity strategies to secure access across all of Marqeta’s systems and services—100% cloud-based, with no data center footprint.

Join us in building a secure, scalable, and frictionless IAM program where you’ll play a crucial part in:

• Building and evolving our Identity Governance and Administration (IGA) capabilities.
• Implementing & Operating Privileged Access Management (PAM) in a cloud-first (AWS-focused) environment.
• Designing and architecting a Certificate Lifecycle Management solution that supports cloud-native workloads.
• Driving integration of IAM across AWS services, SaaS platforms, and developer/DevOps pipelines.
• Designing identity and access controls to protect AI/ML systems—ensuring secure access to training data, models, and inference APIs.

The Impact You’ll Have

• Develop and lead implementation of robust IAM strategies aligned with cloud-native architecture and security principles.
• Expand and operationalize the IAM program across IGA, PAM, SSO, MFA, access management, secrets management, and certificate lifecycle.
• Automate identity provisioning, de-provisioning, and access reviews using AI tools and infrastructure-as-code.
• Design IAM integrations for AWS-native services (Lambda, EC2, S3, IAM, etc.), SaaS platforms, and third-party identity tools (e.g., Okta, CyberArk).
• Promote and enforce least privilege and zero-trust principles through scalable access controls and policy automation.
• Mentor junior engineers and serve as a technical lead for IAM-related projects.
• Collaborate with Security, DevOps, and Infrastructure teams to embed IAM controls across the engineering lifecycle.
• Stay ahead of emerging trends and continuously refine IAM strategy based on evolving cloud threats and compliance requirements.

Who You Are

• A minimum of 8 years related experience with a Bachelor’s degree; or 5 years and a Master’s degree; or a PhD with 3 years’ experience; or equivalent combination of related education and work experience.
• Strong experience with IAM tools (e.g., Okta, CyberArk, Ping, SailPoint).
• Deep knowledge of IAM in cloud-native environments, especially AWS IAM, roles, policies, permissions boundaries, and federation.
• Proficiency in infrastructure-as-code (e.g., Terraform, CloudFormation).
• Familiarity with authentication and authorization protocols (SAML, OAuth2, OpenID Connect, Kerberos).
• Strong grasp of directory services like Active Directory, LDAP, and cloud-based alternatives.
• Hands-on skills in scripting (e.g., Python, PowerShell) to automate IAM operations.
• Solid understanding of compliance standards: NIST, SOC 2, PCI DSS, etc.
• Proven experience integrating IAM into CI/CD pipelines, secrets management, and DevOps workflows.
• Excellent communication skills and ability to influence and lead cross-functional teams.

Nice to have

• Relevant certifications such as CISSP, CISM, or IAM-specific credentials (e.g., CIAM/CAMS, CyberArk Certified, Okta Certified Consultant).
• Experience with AWS technologies such as Lambda, S3, DynamoDB, RDS, Aurora, SNS, SQS, CloudTrail, CloudWatch, Code Pipeline, AWS Developer Tools, and IAM roles and permissions
• Experience with DevOps tools and practices, including secrets management and CICD pipelines

Manager

• Sandeep Chotwani

Recruiter for this role

• Kayla Osuna

Compensation and Benefits

Marqeta is a Flex First company which allows you to choose your best working environment, whether that be from home or at a company office. To support Flex First, we calibrate pay to a competitive value according to working location. 

When determining salaries, we consider several factors including, but not limited to, skills, prior experience, and work location. The new-hire base salary range for this position, reflected in CAD, is: 136,800 - 171,000

We also believe in recognizing the contributions of our people. That's why we award annual bonuses to eligible employees, rewarding both individual performance and the success of the entire company.

Along with monetary compensation, Marqeta offers

• Multiple health insurance options
• Flexible vacation time
• Retirement savings program with company contribution
• Equity in a publicly-traded company 
• Monthly stipend to support our remote work model
• Annual “development dollars” to support our people growth and development
• Family-forming benefits and up to 20 weeks of Parental Leave

Join Okta’s Defensive Cyber Engineering team as a Staff Engineer responsible for safeguarding Okta’s environments. You’ll work closely with the Security, Business Technology Engineering and Product teams to implement and manage security solutions and ensure that core infrastructure applications are protecting our workforce, endpoints, and corporate data. 

A strong desire to make tools and people work together to solve complex security problems is central to this role. This approach mandates an engineering-first approach: maximizing the utility of existing security tools before strategically building or buying new solutions to address any remaining security gaps. 

To execute this vision, you will combine your enterprise security expertise with your hands-on engineering skills, leveraging automation, policy-as-code, and cloud-native technologies to deliver scalable, resilient, and secure solutions. Your work will ultimately set standards for security best practices across the organization and influence the architecture of business-critical systems.

What you bring:

• Hands on experience with enterprise security tools such as Okta, Crowdstrike and Palo Alto suite covering EDR (Endpoint Detection and Response), CASB (Cloud Access Security Broker), DLP (Data Loss Prevention), MDM (Mobile Device Management), SASE (Secure Access Service Edge), and SSPM (SaaS Secure Posture Management) capabilities.
• Strong coding and scripting skills are required for building automation and custom tooling. Python experience is preferred, but proficiency in other languages (e.g., Bash, PowerShell, Go) is a plus.
• Proven track record automating security controls and workflows using a cloud-first approach
• Experience with Terraform and other infrastructure-as-code tools to orchestrate security infrastructure
• Familiarity with CI/CD pipelines for security automation and drift management
• Strong communication skills across technical staff, support teams, executive leadership, and external vendors.

What you’ll be doing

• Serve as a security subject matter expert (SME) for solution engineering, architecture reviews, security assessment, and vulnerability mitigation
• Lead technical efforts evaluating, designing, and implementing new enterprise security systems and feature enhancements
• Build, maintain, and enhance custom automation and cloud infrastructure using Terraform or similar tools to support team workflows and the enforcement of security controls
• Develop integrations with APIs, cloud platforms (AWS, GCP, Azure), and security infrastructure to improve detection, response, and remediation
• Collaborate with cross-functional teams to tackle global technology and security challenges
• Write and maintain scripts and automation to streamline security operations, with an emphasis on Python-based solutions
• Establish monitoring and alerting for security posture, misconfigurations, and threats across endpoints, SaaS, and cloud workloads
• Proactively identify and remediate security gaps; stay updated on emerging threats, solutions, and tooling across the industry

And extra credit if you have experience in any of the following!

• Working with advanced identity management technologies (MFA, SAML, OAuth, OIDC, WebAuthn)
• Deep understanding of Okta's ecosystem, including advanced configuration and integrations
• Experience with continuous compliance solutions (e.g., policy-as-code, automated evidence gathering)
  
  

What you can look forward to as an Full-Time Okta employee!

World-class benefits, flexibility, and growth opportunities

The chance to shape the security posture of a global leader in identity

Opportunities to make a social Impact through technology and innovation

Ready to join Okta and make security the foundation of our innovation? Apply today!

#LI-HYBRID

P24217

Position Summary

We are seeking an experienced and motivated Software Engineer to join our dynamic Site Reliability Engineering (SRE) team. As a Site Reliability Engineer,  you will play a crucial role in enhancing the reliability, performance, and scalability of our systems and services. You will be a part of a global “commando” team of highly skilled SREs, driving best practices and innovations  for optimal system operations, while protecting critical companies’ systems in real time. 

Why join Tipalti?

Tipalti is the AI-powered platform for finance automation, elevating how finance teams operate in the global economy. We empower our customers to scale faster and smarter by removing the complexities of doing global business and accelerating their finance operations efficiency. Our platform provides a comprehensive suite of finance automation solutions designed for mid-market businesses across accounts payable, global payouts, procurement, employee expenses, corporate cards, supplier management, tax compliance, and treasury. Tipalti partners with leading financial institutions such as Citi, Wells Fargo, J.P. Morgan, and Visa, enabling over 5,000 global companies to efficiently and securely pay millions of suppliers and payees across 200+ countries and territories, in 120 currencies.

At Tipalti, we pride ourselves on our collaborative culture, the quality of our product and the capabilities of our people. Tipaltians are passionate about the work they do, and keen to get the job done. Tipalti offers competitive benefits, a flexible workplace, career coaching, and an environment where diverse individuals can thrive and make an impact. Our culture ensures everyone checks their egos at the door and stands ready to reach for success together. 

Founded in Israel in 2010, Tipalti is a global business headquartered in the San Francisco Bay Area (Foster City) with offices in Tel Aviv, Plano, Toronto, Vancouver, London, Amsterdam, Tbilisi and Medellin.

In this role, you will be responsible for:

• Driving incident response and post-mortem processes, fostering a culture of continuous improvement. 
• Designing, building and improving internal tools and automation software to make maintaining production services easier and safer.
• Lead reliability-focused practices such as SLO (Service Level Objective) design and implementation, Failure Analysis, Load and Capacity Planning, Service Reviews, Architecture Designs, Incident Postmortems, and others. 
• Participate in the on-call rotation, providing expertise and support during critical system incidents and ensuring timely resolution.

About you 

Required:

• Minimum 4+ years of Software Engineering experience with .Net, Typescript.
• Knowledge of architecture and application design experience.
• Solid troubleshooting and debugging skills.
• Excellent verbal and written communication skills in English. 

Preferred:

• Experience working on large-scale, high-traffic platforms.
• Basic understanding of some of the lower levels of software frameworks and networking.
• Distributed monitoring experience with logging, metrics and tracing using OpenTelemetry and  Prometheus. 
• Additional scripting languages: bash, powershell, python
• Previous experience working as SRE
• Experience with working in a cloud driven environment (AWS, GCP, Azure)

Our benefits package includes:

• Hybrid working model that requires you to be in office Monday, Tuesday, and Thursday
• Competitive salary and equity
• Matching RRSP
• Extended benefits, Employee Assistance Program, life insurance, AD&D, LTD
• Maternity, Paternity and Fertility Treatment benefits
• 15 days of PTO
• Free lunch on office days
• Fresh fruit, snacks & drinks in office
• Phone/internet allowance 
• Regular company-wide social events
• Multiple ERG groups celebrating our diversity and creating an inclusive culture

Tech at Tipalti 

Our tech teams are the engine behind our business. Tipalti’s tech ecosystem is extremely rich and we continually add new features to our products, ensuring that we respond to our clients’ needs at scale. Our tech teams retain a fast-paced, start-up vibe that encourages innovation and critical thinking. At Tipalti, you’ll have the opportunity to work with a diverse, global team of engineers, developers and product leaders who are collectively building the future of our best-in-class product suite as we transform financial operations for the future.

Base Salary Range: $100,000 - $125,000 CAD annually.

The compensation information, above, reflects our reasonable expectation for this role based on several factors, including current market conditions. Final compensation will be determined through individual assessment of experience, skills, qualifications, and other job-relevant factors. Actual offers may vary within or, only in exceptional circumstances, outside the stated range based on the candidate's unique qualifications and our comprehensive evaluation process. We are committed to equitable compensation practices in compliance with applicable employment laws.

BeyondTrust is a place where you can bring your purpose to life through the work that you do, creating a safer world through our cybersecurity SaaS portfolio.

Our culture of flexibility, trust, and continual learning means you will be recognized for your growth, and for the impact you make on our success. You will be surrounded by people who challenge, support, and inspire you to be the best version of yourself.

The Role

We’re looking for an Endpoint Systems Engineer with a passion for AI & automation, within modern device management. In this role, you’ll design, deploy, and continuously improve endpoint solutions that are intelligent, scalable, and secure. You’ll move beyond reactive support by leveraging automation, data, and AI-driven tools to enhance user experience and operational efficiency across the enterprise.  This is a hands-on engineering role for someone who enjoys building smart systems, eliminating repetitive work, and shaping the future of endpoint management. 

What You’ll Do

• Design, deploy, and manage modern endpoint environments across Windows & macOS. 
• Implement and maintain endpoint management platforms (e.g., Intune, Jamf) with a strong automation-first mindset 
• Develop automation workflows using scripting, APIs, and orchestration tools to reduce manual effort and improve reliability 
• Integrate AI-powered tools for endpoint analytics, remediation, security, and user experience optimization 
• Build self-healing and self-service solutions for common endpoint issues 
• Collaborate with security teams to enforce compliance, patching, and endpoint protection strategies 
• Monitor endpoint health, performance, and telemetry to proactively identify and resolve issues 
• Evaluate emerging AI and automation technologies and recommend improvements to endpoint strategy 
• Create and maintain technical documentation, standards, and best practices 
• Act as a technical escalation point 

What You’ll Bring

• 4+ years of experience in endpoint engineering, desktop engineering, or EUC roles 
• Strong experience with modern endpoint management and MDM/MAM platforms 
• Proficiency in scripting and automation (PowerShell required; Python, Bash, or similar a plus) 
• Experience integrating systems via APIs and automating workflows 
• Experience in working with Claude AI 
• Solid understanding of endpoint security, identity, and device compliance 
• Comfortable working in cloud-first and zero-trust environments 
• Strong troubleshooting skills with the ability to think systemically 

Nice To Have

• Experience with AI-driven IT operations (AIOps), endpoint analytics, or autonomous remediation tools 
• Familiarity with tools such as Microsoft Copilot, Defender, Autopilot, Jamf Pro, or similar 
• Relevant certifications (Microsoft, Apple, Jamf, or cloud certifications) 

Who You Are

• A builder’s mindset: you love automating yourself out of repetitive work 
• Curiosity about how AI can improve IT operations and user experience 
• Strong communication skills and the ability to explain complex ideas clearly 
• A proactive, improvement-focused approach rather than reactive firefighting 
• Comfort working in fast-changing, modern IT environments 

Better Together

Diversity. Inclusion. They’re more than just words for us. They are the guiding values of how we build our teams, cultivate leaders, and create a culture where people feel connected.

We take care of our employees so they can take care of our customers. Customers who come from all walks of life just like us. We hire incredible people from diverse backgrounds because when we are different together, we are stronger together.

About Us

BeyondTrust is the global identity security leader protecting Paths to Privilege™. Our identity-centric approach goes beyond securing privileges and access, empowering organizations with the most effective solution to manage the entire identity attack surface and neutralize threats, whether from external attacks or insiders.

BeyondTrust is leading the charge in transforming identity security to prevent breaches and limit the blast radius of attacks, while creating a superior customer experience and operational efficiencies. We are trusted by 20,000 customers, including 75 of the Fortune 100, and our global ecosystem of partners.

Learn more at www.beyondtrust.com. 

#LI-BS1

What You’ll Do 

This is a hands-on Associate-level DevOps role focused on cloud automation, internal infrastructure, and maintaining an internal cloud-based application used across the company. 

You’ll work closely with our engineering teams and senior DevOps staff to maintain, improve, and evolve our internal cloud infrastructure and automation systems, contributing to tooling that supports every other team at Forma.ai. 

While your primary focus will be cloud automation and infrastructure, you will also serve as the primary IT presence in our Toronto office, supporting day-to-day IT operations as part of the role. 

The role’s key responsibilities are listed below: 

• Work with infrastructure defined using Terraform to support internal systems and automation workflows 

• Work with containerized workloads running in Kubernetes as part of our internal infrastructure 

• Assist with the deployment, troubleshooting, and maintenance of serverless functions and scheduled automation workflows 

• Manage IAM roles and permissions related to automation and internal tooling 

• Write and modify scripts (PowerShell, Bash, Python, or similar) to automate operational tasks 

• Help improve onboarding, offboarding, and access management automation 

• Participate in CI/CD workflows and infrastructure delivery processes as part of your growth in the role 

• Document automation workflows and operational runbooks 

• Act as the primary IT contact for the Toronto office 

• Manage device provisioning, enrollment, endpoint management (MDM), and hardware lifecycle processes 

• Administer Microsoft 365 and identity systems (e.g., Azure AD / Entra ID or similar) 

• Manage SaaS provisioning and deprovisioning across internal tools 

• Maintain least-privilege access and enforce access control best practices 

• Provide in-office and remote technical support for employees 

• Maintain hardware inventory and support office IT infrastructure 

What we’re looking for: 

• 2–3 years of experience in IT operations, CloudOps, DevOps, or systems administration 

• Hands-on experience with AWS services (e.g., IAM, EC2, Lambda) or equivalent services in another cloud platform 

• Exposure to containerization concepts and Kubernetes environments 

• Experience working with Infrastructure as Code tools (e.g., Terraform) 

• Experience writing or modifying scripts (PowerShell, Bash, Python, or similar) to automate operational tasks 

• Experience administering Microsoft 365 or similar productivity platforms 

• Familiarity with identity management, SSO, and SaaS provisioning workflows 

• Strong troubleshooting and root-cause analysis skills across both cloud systems and end-user environments 

• Ability to work independently in an in-office setting while collaborating with a distributed technical team 

• Clear communication skills and a strong sense of ownership 

• Comfort leveraging modern tooling (including AI-assisted development tools) to improve productivity and automation 

Nice to have: 

• Experience working with REST APIs or integrating SaaS platforms through automation 

• Experience with monitoring and observability tools (e.g., CloudWatch, Datadog, or similar) 

• Exposure to CI/CD tooling or GitHub administration 

• Experience working in a SaaS or high-growth technology company 

• Exposure to AWS EKS or cluster autoscaling tools (e.g., Karpenter) 

Additional Job Info:

• This position is for an existing vacancy
• Salary range: $100K - $140K CAD
• This job requires 5 days onsite at our downtown Toronto office

An overview of this role

As a Senior Corporate Security Engineer, you'll help secure the systems GitLab team members rely on every day across a fully remote environment. This role sits within Corporate Security Engineering and focuses on building secure-by-default controls for endpoints and the SaaS platforms that support them, with a strong emphasis on macOS. You'll own meaningful technical decisions around endpoint hardening, automation, and detection, and you'll help turn security requirements into scalable engineering systems that are measurable, auditable, and designed to reduce friction for end users.

This is a strong fit if you're motivated by solving security problems with code. You will work across endpoint management, identity, and security operations to improve how GitLab manages macOS, iOS, Windows, and Linux devices through Infrastructure-as-Code, Terraform, and GitOps workflows. In your first year, you'll be expected to strengthen endpoint security architecture, expand automation, and improve the reliability and auditability of how controls are deployed and maintained.

What you’ll do

• Lead the security architecture of GitLab's endpoint fleet and related infrastructure, with a primary focus on macOS.
• Design and support automation for secure endpoint deployment, configuration, and lifecycle management using code-based workflows.
• Manage endpoint and SaaS security configuration through Terraform, version control, merge requests, continuous integration pipelines, and automated rollouts.
• Define and enforce security baselines across macOS, iOS, Windows, and Linux endpoints.
• Develop patching and software distribution approaches that align with security, compliance, and operational requirements.
• Partner with Information Technology, Security Operations, and Detection and Response teams to improve endpoint telemetry, detections, and response models.
• Drive process improvements that reduce manual work and lower risk by favoring automation, policy-driven controls, and auditable change management.
• Mentor engineers across Corporate Security and Information Technology, and serve as a senior escalation point for complex endpoint security issues.

What you’ll bring

• Experience designing and delivering endpoint, systems, or corporate security solutions in environments that require scalable, durable controls.
• Deep knowledge of endpoint management platforms such as Jamf Pro or FleetDM, especially for architecting and securing macOS environments.
• Strong hands-on ability with Terraform and Infrastructure-as-Code practices, including module design, state management, and pipeline-based deployment.
• Experience working with GitOps workflows where changes are managed through Git repositories, merge requests, code review, and automated pipelines.
•  Strong proficiency in scripting or programming for automation and security tooling, such as bash, Python, PowerShell, or Go.
• Familiarity with cloud identity providers and directories, including platforms such as Okta, Google Workspace, LDAP.
• Ability to communicate clearly, collaborate across distributed teams, and work independently in an all-remote environment.
• Openness to bringing transferable experience from adjacent security, systems, or platform engineering backgrounds, along with a practical and security-focused approach to problem solving.

About the team

The Corporate Security Engineering team secures the internal environment GitLab team members use every day, including endpoints, identity systems, SaaS applications, and platforms that store sensitive internal data. It's a small, high-leverage team that treats security work as engineering work: building with code, operating through Git, and using reviewable, testable, and auditable workflows by default. The team partners closely with Information Technology, Security Operations, and Engineering across regions, collaborating asynchronously to build controls that scale across GitLab's all-remote workforce while reducing friction for end users.

About the Role

We are seeking a highly technical and creative Product Enablement Engineer to design and deliver compelling product experiences through a combination of high-quality technical content, and creating the lab components and realistic data simulations to support this content creation.

This is a unique hybrid role that blends:

• Cybersecurity and networking expertise
• Cloud-based lab and data environment creation
• Technical storytelling and content production

You will be responsible for creating end-to-end enablement assets — from generating realistic traffic and attack simulations, to building demo-ready environments, to producing polished video content and guided product walkthroughs.

This role is highly visible and requires someone who is comfortable operating independently, including comfort with being on camera while recording technical content for internal and external audiences.

What You’ll Do

Technical Content Creation

• Create high-quality technical content, including:
  • Recorded product demos
  • Feature walkthrough videos
  • UI-guided tutorials and overlay walkthroughs
  • Demo narratives for new product releases
• Translate complex cybersecurity and networking concepts into clear, engaging content.
• Present confidently on camera for recorded and live enablement content.
• Collaborate with Product, Marketing, and Enablement teams to align messaging and technical accuracy.

Demo Environment & Lab Development

• Design and build demo-ready lab environments to support product storytelling.
• Develop and maintain demo scenarios that highlight key product capabilities.
• Create lightweight, repeatable environments for internal and partner use.
• Configure SaaS environments and ensure demo stability and reliability.

Data & Threat Simulation

• Generate realistic network traffic and SaaS application behavior (e.g., collaboration tools, web traffic).
• Simulate cybersecurity threats and attack scenarios aligned with frameworks such as MITRE ATT&CK, including:
  • Lateral movement
  • Command-and-control traffic
  • Data exfiltration
  • Network degradation scenarios
• Simulate network conditions such as latency, jitter, and packet loss.
• Build modular, reusable data scenarios for demos and enablement use cases.

Cloud & Infrastructure Setup

• Deploy and manage virtual environments in Azure (and/or AWS) to support demo and simulation needs.
• Configure:
  • Virtual machines
  • VPN clients
  • Networking components
• Ensure environments are properly connected to SaaS platforms and functioning as intended.

Automation & Tooling

• Use scripting and automation to streamline:
  • Environment setup
  • Data generation
  • Scenario execution
• Work with APIs to configure SaaS environments and retrieve telemetry.
• Build repeatable workflows for demo and content creation environments.

What You Bring

Required Qualifications

• 10+ years of experience in networking, cybersecurity, or related technical roles.
• Strong background in networking fundamentals (TCP/IP, DNS, HTTP/S, VPNs).
• Solid understanding of cybersecurity concepts (threat detection, intrusion techniques, zero trust).
• Experience working with cloud platforms (Azure preferred, AWS acceptable).
• Strong scripting and automation experience using:
  • Python
  • PowerShell
  • Linux command-line environments (bash)
• Experience interacting with REST APIs for automation and configuration.
• Proven ability to work independently across multiple domains (cloud, networking, SaaS, automation).

Content & Enablement Experience

• Experience creating technical content such as:
  • Product demos
  • Training videos
  • Walkthroughs or tutorials
• Comfortable presenting technical material on camera.
• Ability to clearly explain complex technical concepts to varied audiences.

Preferred Qualifications

• Experience in Sales Engineering, Technical Enablement, or Product Enablement roles.
• Experience supporting pre-sales or partner enablement programs.
• Familiarity with MITRE ATT&CK or similar frameworks.
• Experience generating network traffic using tools such as Scapy, tcpreplay, iperf, etc.
• Experience simulating network conditions (tc, netem).
• Exposure to cybersecurity tools (Wireshark, Nmap, SIEM platforms, etc.).
• Relevant certifications (e.g., CCNA, CCNP, Security+, CISSP) — nice to have but not required.

What Success Looks Like

• High-quality, engaging video content that clearly demonstrates product capabilities.
• Realistic and reliable demo environments that replicate customer scenarios.
• Effective simulation of threats and network conditions to showcase product value.
• Strong adoption of enablement materials by Sales Engineers and partners.
• Seamless integration of technical accuracy with compelling storytelling.

Ideal Candidate Profile

• A technical storyteller who enjoys explaining complex systems simply and effectively.
• A hands-on builder who can create demo environments, simulate real-world scenarios, and troubleshoot independently.
• Comfortable switching between engineering work and content creation.
• Confident, clear communicator who is comfortable being the face of technical content.
• Experience in customer-facing roles (e.g., Sales Engineer, Enablement Engineer) is highly valued.

Why This Role Is Unique

This is not a traditional engineering or content role — it sits at the intersection of both.

You will directly influence how customers, partners, and internal teams understand and experience our product, combining deep technical expertise with high-impact storytelling.

Cato provides a competitive salary and comprehensive benefits plan. Benefits for this role include health/vision/dental insurance, 401(k), stock options, Health Savings/Flexible Spending Accounts, flexible time-off, paid parental leave and disability benefits. 

As an EEO/Affirmative Action Employer all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status.

#LI-GG1

Who you are:

We are always looking for amazing talent who can contribute to our growth and deliver results! Geotab is seeking a Senior Cloud Automation Engineer who will be responsible for managing and monitoring the performance of the server infrastructure on the public cloud—specifically Google Compute Engine—as part of the Cloud Automation team. The projects will vary in scope, complexity, and affected business area. If you love technology, and are keen to join an industry leader — we would love to hear from you!

What you’ll do:

As a Senior Cloud Automation Engineer, your key area of responsibility will be creating automated infrastructure management systems, written primarily in Python and Powershell, while overseeing complex Cloud Automation/DevOps projects. You will be responsible for the implementation of the project tasks, such as designing and building software to maintain IaaS solutions, as well as managing day-to-day activities like system-level tuning and debugging. You will also need to provide regular status reports to key partners to ensure the project is on time and meeting expectations. You will need to work closely with internal technical teams, such as Software, Engineering Support, and Database Administration, as well as collaborate in a cross-functional team with senior engineers.

To be successful in this role you will be a strong team-player with strong written and verbal communication skills, and have the ability to quickly understand complex, technical concepts. In addition, the successful candidate will have strong analytical and project management skills with an ability to identify needs, develop effective solutions, and manage projects through completion. The successful candidate will also be able to manage multiple timelines and contrasting priorities to ensure timely results.

How you’ll make an impact:

• Design and build software to deploy, configure, and maintain IaaS solutions for internal and customer-facing applications.

• Build out automation tools and work with public cloud APIs to enhance infrastructure efficiency.

• Review Cloud Automation/DevOps monitoring tools and develop rapid detection and response systems.

• Perform system-level tuning and debugging in public cloud or containerized environments.

• Create and maintain documentation regarding configuration, processes, and security while contributing to the departmental WIKI.

• Utilize Big Data tools for large-scale log collection, analysis, and dashboard creation.

What you’ll bring to this role:

• 5+ years of experience in software development.

• Specialized expertise in programming languages (Python, C#, or Java) and scripting languages (Powershell or Bash).

• Proven experience with cloud computing platforms such as GCP, AWS, or Azure.

• Working knowledge of databases, SQL, and Big Data tools; experience with Postgres or Google BigQuery is a strong asset.

• Highly organized self-starter able to work well under pressure and manage multiple tasks simultaneously.

• Entrepreneurial mindset with the flexibility to adapt to growing technology and market demands.

• Professional certifications such as Google Cloud Certified, Professional Cloud Architect, or AWS Certified are considered an asset.

Why job seekers choose Geotab:

Help us keep our network reliable, secure and running smoothly!

Do you thrive in environments where secure, high-performance networks are the top priority? As a Senior Network Administrator, your primary focus will be managing and strengthening our network infrastructure. You will oversee the configuration and operation of firewalls across cloud and on-premises environments, ensuring reliable and secure network operations. 

You will also contribute to the improvement and optimization of our network infrastructure, including routing, hybrid connectivity, segmentation, and overall performance, helping ensure reliability, scalability, and resilience across our infrastructure.

As our Senior Network Administrator, you will: 

• Manage and configure enterprise firewalls (e.g. Palo Alto) across cloud and hybrid environments to ensure strong perimeter and internal network security.
• Support automation of network-related tasks where relevant, using scripting or infrastructure tools. 
• Monitor system health, optimize performance, and ensure high availability across compute, storage, and networking resources.
• Support incident response and disaster recovery planning, and collaborate on security activities.
• Document infrastructure designs, operational processes, and security controls.

Here is what will qualify you for the role: 

• 5+ of experience in network and firewall configuration and maintenance.
• Experience with network related automation and scripting
• Strong working knowledge of firewall configuration and design (policies, zones, VPNs), Wi-Fi and network authentication (Aruba, ClearPass), and advanced troubleshooting.
• Experience working with cloud networking (AWS, Azure, or equivalent)

Here is what would make you stand out:

• Excellent communication, documentation, and cross-functional collaboration skills.
• Relevant networking or cloud certifications (e.g. AWS Advanced Networking, Palo Alto, or equivalent).
• Experience with scripting (Python, Bash, or PowerShell) to support network administration tasks.

Do you think you can bring this role to life? Send us your application, we want to hear from you!

Join the Coveolife!

We encourage all qualified candidates to apply regardless of, for example, age, gender, disability, gaps in CV, national or ethnic background.

This job description was written by humans, assisted by AI. We may leverage technology in our hiring process to help us see the person behind the resume.

Coveo is committed to providing accessible employment practices. If you require accommodation due to a disability at any point during the recruitment process, please contact HR@Coveo.com to discuss your needs.

Help us keep our network reliable, secure and running smoothly!

Do you thrive in environments where secure, high-performance networks are the top priority? As a Senior Network Administrator, your primary focus will be managing and strengthening our network infrastructure. You will oversee the configuration and operation of firewalls across cloud and on-premises environments, ensuring reliable and secure network operations. 

You will also contribute to the improvement and optimization of our network infrastructure, including routing, hybrid connectivity, segmentation, and overall performance, helping ensure reliability, scalability, and resilience across our infrastructure.

As our Senior Network Administrator, you will: 

• Manage and configure enterprise firewalls (e.g. Palo Alto) across cloud and hybrid environments to ensure strong perimeter and internal network security.
• Support automation of network-related tasks where relevant, using scripting or infrastructure tools. 
• Monitor system health, optimize performance, and ensure high availability across compute, storage, and networking resources.
• Support incident response and disaster recovery planning, and collaborate on security activities.
• Document infrastructure designs, operational processes, and security controls.

Here is what will qualify you for the role: 

• 5+ of experience in network and firewall configuration and maintenance.
• Experience with network related automation and scripting
• Strong working knowledge of firewall configuration and design (policies, zones, VPNs), Wi-Fi and network authentication (Aruba, ClearPass), and advanced troubleshooting.
• Experience working with cloud networking (AWS, Azure, or equivalent)

Here is what would make you stand out:

• Excellent communication, documentation, and cross-functional collaboration skills.
• Relevant networking or cloud certifications (e.g. AWS Advanced Networking, Palo Alto, or equivalent).
• Experience with scripting (Python, Bash, or PowerShell) to support network administration tasks.

Do you think you can bring this role to life? Send us your application, we want to hear from you!

Join the Coveolife!

We encourage all qualified candidates to apply regardless of, for example, age, gender, disability, gaps in CV, national or ethnic background.

This job description was written by humans, assisted by AI. We may leverage technology in our hiring process to help us see the person behind the resume.

Coveo is committed to providing accessible employment practices. If you require accommodation due to a disability at any point during the recruitment process, please contact HR@Coveo.com to discuss your needs.

Job Summary:

As the Sr. Manager, Infrastructure, you’ll manage and secure our Azure/AWS cloud infrastructure while supporting onboarding, offboarding, and advanced help desk escalations. You’ll oversee compute, networking, identity, automation, and reliability, assisting with IaC, cost optimization, hybrid connectivity, and incident response. This role blends hands-on operations with governance, modernization, and continuous improvement.

Key Responsibilities:

• Manages daily cloud infrastructure operations across Azure/AWS, including compute, storage, networking, and identity.
• Oversees hybrid cloud environments, connectivity, firewalls, VPNs, ExpressRoute/Direct Connect, and VNet/VPC architectures.
• Ensures uptime, reliability, performance, and capacity planning for all cloud-hosted systems.
• Oversees infrastructure automation using Terraform, Bicep/ARM, CloudFormation, PowerShell, and CI/CD pipelines.
• Create and configure user identities in Entra ID/Azure AD and assign appropriate RBAC roles.
• Deploy required applications, security tools, and profiles using Intune, Mosyle, or equivalent MDM/endpoint platforms.
• Designs and maintains landing zones, resource hierarchies, networking topologies, and enterprise cloud architecture.
• Implements monitoring, alerting, and observability using tools like Azure Monitor, Grafana, and Sentinel.
• Owns backup/restore strategies, disaster recovery planning, high availability configurations, and resilience engineering.
• Partners with security teams on identity, access control, network security, vulnerability remediation, and compliance.
• Leads troubleshooting and root-cause analysis for cloud infrastructure issues and major incidents.
• Applies cost-optimization and FinOps strategies, including right-sizing, lifecycle policies, and reserved instance planning.
• Manages cloud infrastructure engineers, assigns work, coaches staff, and sets operational standards.
• Coordinates with DevOps, networking, platform engineering, and application teams on deployments and infrastructure changes.
• Evaluates cloud services, tools, and vendors; supports roadmap planning and infrastructure modernization initiatives.
• Supports large-scale migrations, re-platforming initiatives, and infrastructure lifecycle upgrades.

Required Qualifications:

• Bachelor’s degree in IT, Computer Science, Engineering, or equivalent professional experience.
• 7–10+ years of experience in cloud infrastructure, systems engineering, or cloud operations.
• Strong hands-on expertise with Azure (preferred) and/or AWS cloud infrastructure services.
• Deep knowledge of compute, storage, networking, identity, and monitoring in cloud and hybrid environments.
• Experience managing virtual networks, load balancers, firewalls, routing, VPN/ExpressRoute, and cloud network security.

• Experience managing or mentoring engineers; able to set operational standards and drive team performance.
• Strong communication skills with the ability to work across security, DevOps, networking, and application teams.
• Experience leading cloud migration or modernization projects at scale.

Preferred Qualifications:

• Certifications like Microsoft Azure Administrator, Microsoft Azure Solutions Architect.
• Experience securing containerized applications (Docker, Kubernetes) and serverless environments.
• Knowledge of Infrastructure as Code (Terraform, CloudFormation) and its security implications.
• Prior experience working with HRIS (Human Resources Information Systems) or similar data-sensitive platform.

Job Summary:

As the Sr. Manager, Infrastructure, you’ll manage and secure our Azure/AWS cloud infrastructure while supporting onboarding, offboarding, and advanced help desk escalations. You’ll oversee compute, networking, identity, automation, and reliability, assisting with IaC, cost optimization, hybrid connectivity, and incident response. This role blends hands-on operations with governance, modernization, and continuous improvement.

Key Responsibilities:

• Manages daily cloud infrastructure operations across Azure/AWS, including compute, storage, networking, and identity.
• Oversees hybrid cloud environments, connectivity, firewalls, VPNs, ExpressRoute/Direct Connect, and VNet/VPC architectures.
• Ensures uptime, reliability, performance, and capacity planning for all cloud-hosted systems.
• Oversees infrastructure automation using Terraform, Bicep/ARM, CloudFormation, PowerShell, and CI/CD pipelines.
• Create and configure user identities in Entra ID/Azure AD and assign appropriate RBAC roles.
• Deploy required applications, security tools, and profiles using Intune, Mosyle, or equivalent MDM/endpoint platforms.
• Designs and maintains landing zones, resource hierarchies, networking topologies, and enterprise cloud architecture.
• Implements monitoring, alerting, and observability using tools like Azure Monitor, Grafana, and Sentinel.
• Owns backup/restore strategies, disaster recovery planning, high availability configurations, and resilience engineering.
• Partners with security teams on identity, access control, network security, vulnerability remediation, and compliance.
• Leads troubleshooting and root-cause analysis for cloud infrastructure issues and major incidents.
• Applies cost-optimization and FinOps strategies, including right-sizing, lifecycle policies, and reserved instance planning.
• Manages cloud infrastructure engineers, assigns work, coaches staff, and sets operational standards.
• Coordinates with DevOps, networking, platform engineering, and application teams on deployments and infrastructure changes.
• Evaluates cloud services, tools, and vendors; supports roadmap planning and infrastructure modernization initiatives.
• Supports large-scale migrations, re-platforming initiatives, and infrastructure lifecycle upgrades.

Required Qualifications:

• Bachelor’s degree in IT, Computer Science, Engineering, or equivalent professional experience.
• 7–10+ years of experience in cloud infrastructure, systems engineering, or cloud operations.
• Strong hands-on expertise with Azure (preferred) and/or AWS cloud infrastructure services.
• Deep knowledge of compute, storage, networking, identity, and monitoring in cloud and hybrid environments.
• Experience managing virtual networks, load balancers, firewalls, routing, VPN/ExpressRoute, and cloud network security.

• Experience managing or mentoring engineers; able to set operational standards and drive team performance.
• Strong communication skills with the ability to work across security, DevOps, networking, and application teams.
• Experience leading cloud migration or modernization projects at scale.

Preferred Qualifications:

• Certifications like Microsoft Azure Administrator, Microsoft Azure Solutions Architect.
• Experience securing containerized applications (Docker, Kubernetes) and serverless environments.
• Knowledge of Infrastructure as Code (Terraform, CloudFormation) and its security implications.
• Prior experience working with HRIS (Human Resources Information Systems) or similar data-sensitive platform.

Who We Are

At Momentum Financial Services Group, we help people move forward by reimagining how money works for those who need it most. With more than 40 years of experience, we’re the team behind Money Mart—Canada’s largest non-bank branch network—and a leader in financial solutions for underserved communities.

From short-term loans to money transfers and prepaid cards, we power the products, technology, and operations that connect over a million customers a year to the money they need, when they need it.

At MFSG, we come together across teams and departments to create something bigger than ourselves: solutions that remove barriers and give people access to money they might not get anywhere else. Whether you're solving problems, building systems, or shaping strategy, your work fuels real support for real people.

We’ve Got You Covered

Compensation Philosophy: We regularly review industry standards to ensure our total rewards package is competitive and fair. This commitment helps us attract and retain talented individuals who share our purpose.

Discretionary Annual Bonus: Enjoy the opportunity for a discretionary bonus based on individual performance and company success.

Comprehensive Benefits: Our benefits include health and dental plans with 100% of the premiums covered. We also offer an Employee Assistance Program to support your mental well-being and provide resources for personal challenges.

Retirement Plans: Plan for your future with our robust retirement savings options, ensuring you’re set for the long haul.

Hybrid Work Environment: Experience the best of both worlds with our hybrid work model, allowing you to balance remote work with in-office.

Perks and Rewards: Enjoy reimbursement for tuition assistance and professional development, discounts through Perkopolis and participate in our rewards and recognition programs to celebrate your contributions.

The Job: Senior Cloud Engineer

We’re looking for a Senior Cloud Engineer to act as a senior technical expert within our IT Infrastructure team. This is a hands-on role focused on Microsoft 365, Entra ID, and hybrid cloud environments, with a strong emphasis on automation, infrastructure-as-code, and cloud-native engineering.

You’ll lead complex infrastructure initiatives, shape architectural decisions, and help standardize how infrastructure is built, secured, and operated across the organization.

What You’ll Do

Infrastructure Design & Engineering

• Design and implement infrastructure across on-premises, Azure, and AWS environments
• Build scalable, secure systems using modern hybrid and cloud-native architectures
• Architect and govern identity solutions across hybrid environments (Entra ID, SSO, directory sync)
• Develop CI/CD pipelines, golden images (AMI), patching strategies, and monitoring frameworks

Identity, M365 & Endpoint Management

• Administer Microsoft 365 services including Exchange Online, SharePoint, Teams, OneDrive, Intune, and Defender
• Implement identity security controls such as Conditional Access, PIM, RBAC, and Zero Trust
• Manage endpoint solutions (Intune, Autopilot, device compliance, SCCM co-management)
• Automate identity lifecycle and access management processes

Cloud & Infrastructure Automation

• Design and manage Azure and AWS environments (IaaS/PaaS)
• Build and enforce infrastructure-as-code practices using Terraform, Bicep, and CloudFormation
• Automate provisioning, configuration, and operations using PowerShell and APIs
• Support enterprise-wide cloud adoption and ensure consistent, compliant infrastructure standards

Operations & Lifecycle Management

• Manage storage, backups, monitoring, and disaster recovery across environments
• Support VDI environments and overall infrastructure reliability and performance
• Coordinate vendor support for system lifecycle management and optimization

Leadership & Collaboration

• Provide technical leadership and act as an escalation point for complex issues
• Collaborate with DevOps, Security, and IT Operations teams on cross-functional initiatives
• Represent infrastructure in architectural discussions and ensure smooth transition to operations

What You’ll Bring to the Table

• Strong experience in infrastructure engineering across hybrid and cloud environments
• Deep expertise in Microsoft 365, Entra ID, and identity management
• Hands-on experience with Azure and AWS in enterprise environments
• Strong background in infrastructure automation and infrastructure-as-code
• Experience building CI/CD pipelines and cloud-native infrastructure solutions
• Strong problem-solving and troubleshooting capabilities
• Ability to influence technical decisions and work across teams

Education + Experience

• Bachelor’s degree in Computer Science, Information Technology, or related field
• 7+ years of experience in IT infrastructure engineering, with strong focus on cloud and identity in recent years
• Extensive experience with M365, Entra ID, Intune, Windows Server, and cloud platforms
• Strong hands-on experience with Terraform and automation tools
• Experience designing secure AWS environments in multi-account setups is an asset
• Relevant certifications (Microsoft, AWS, ITIL, etc.) are preferred

Ready to lead

If you’re passionate about building modern, automated, and secure infrastructure—and want to play a key role in driving cloud transformation—this is an opportunity to make a significant impact.

Committed to Equal Opportunity:

MFSG is committed to accommodating applicants up to the point of undue hardship during the recruitment, assessment and selection process. If you are selected for an interview, please notify MFSG if you require accommodation in respect of the materials or procedures used at any time during this process. If you require accommodation, MFSG will work with you to determine how to meet your needs.

Please note: The salary range for this position is between C$145k to C$160k.

WHO WE ARE 

Headquartered in New York City, Take-Two Interactive Software, Inc. is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. We develop and publish products principally through Rockstar Games, 2K, and Zynga. Our strategy is to create hit entertainment experiences, delivered on every platform relevant to our audience through a variety of sound business models. Our pillars - creativity, innovation, and efficiency - guide us as we strive to create the highest quality, most captivating experiences for our consumers. The Company’s common stock is publicly traded on NASDAQ under the symbol TTWO. For more corporate and product information please visit our website at http://www.take2games.com.

While our offices (physical and virtual) are casual and inviting, we are deeply committed to our core tenets of creativity, innovation and efficiency, and individual and team development opportunities. Our industry and business are continually evolving and fast-paced, providing numerous opportunities to learn and hone your skills. We work hard, but we also like to have fun, and believe that we provide a great place to come to work each day to pursue your passions.

THE CHALLENGE

We are looking for a Lead Security Operations Engineer to design, implement, and lead our Security Orchestration, Automation, and Response (SOAR) platform. In this role, you'll be the technical leader responsible for building and optimizing our security automation capabilities. You will work with a diverse set of technologies, including various security tools, APIs, and cloud services, to streamline our security operations and enhance our incident response efficiency. Your expertise will directly contribute to safeguarding Take-Two and its labels systems, networks, and data.

You will work with Take-Two's Information Security teams, reporting to the Director of Security Operations Engineering. 

WHAT YOU’LL TAKE ON

• SOAR Platform Management: Lead the design, development, and maintenance of SOAR playbooks, workflows, and integrations with other security tools.
• Automation and Optimization: Identify and implement automation opportunities to improve the speed and accuracy of security operations and incident response.
• Technical Leadership: Act as a domain expert for SOAR, providing technical guidance, mentorship, and support to the security team.
• Collaboration and Strategy: Partner with other security teams to ensure SOAR capabilities align with the overall security strategy.
• Documentation and Reporting: Create and maintain comprehensive documentation for workflows and integrations, and develop reports to measure program success.
• Change Management and Maintenance: Assist with SOAR tool migrations, document all system changes, and stay ahead of the latest SOAR and automation trends

WHAT YOU BRING

• Experience: 5+ years’ experience as a SOAR Engineer. Previous experience as a Security Engineer or as a Security Operations analyst is a plus.
• Technical Expertise: Deep expertise in designing, building, and maintaining automated security workflows and playbooks using a SOAR platform to integrate and orchestrate security tools like SIEM, EDR, and threat intelligence platforms.
• Analytical Skills: The ability to analyze complex security challenges, find opportunities to automate repetitive manual tasks, and develop data-driven solutions that enhance efficiency and accelerate incident response.
• Communication Skills: Excellent written and verbal communication skills, with the ability to present technical information clearly to both technical and non-technical audiences.
• Tool Proficiency: Hands-on experience with a leading SOAR platform (Palo Alto Networks Cortex XSOAR, Tines or Splunk Enterprise Security) coupled with advanced scripting skills in Python to create custom integrations and sophisticated automation workflows.

Great to Have

• Certifications: Relevant industry certifications such as GCED, GCIH, GMON, CEH, etc. or other certifications from organizations like ISC2 or CompTIA.
• Scripting Skills: Proficiency in programming and scripting languages common to security such as Python, Go, Bash, or Powershell, Javascript.
• Security Frameworks: Knowledge of security frameworks including MITRE Att&CK, NIST, etc.
• Leadership Experience: Prior experience leading a small team or a project.

WHAT WE OFFER YOU

• Great Company Culture. Ranked as one of the most creative and innovative places to work, creativity, innovation, efficiency, diversity and philanthropy are among the core tenets of our organization and are integral drivers of our continued success.
• Growth. As a global entertainment company, we pride ourselves on creating environments where employees are encouraged to be themselves, inquisitive, collaborative and to grow within and around the company.
• Work Hard, Play Hard. Our employees bond, blow-off steam, and flex some creative muscles – through corporate boot camp classes, company parties, game release events, monthly socials, and team challenges.
• Benefits. Medical (HSA & FSA), dental, vision, 401(k) with company match, employee stock purchase plan, commuter benefits, in-house wellness program, broad learning & development opportunities, a charitable giving platform with company match and more!
• Perks. Fitness allowance, employee discount programs, free games & events and stocked pantries.

The pay range for this position in Ontario, Canada at the start of employment is expected to be between $114,300 and $164,300 CAD per Year. However, base pay offered is based on market location, and may vary further depending on individualized factors for job candidates, such as job-related knowledge, skills, experience, and other objective business considerations. Subject to those same considerations, the total compensation package for this position may also include other elements, including a bonus and/or equity awards, in addition to a full range of medical, financial, and/or other benefits. Details of participation in these benefit plans will be provided if an employee receives an offer of employment. If hired, employee will be in an 'at-will position' and the company reserves the right to modify base salary (as well as any other discretionary payment or compensation or benefit program) at any time, including for reasons related to individual performance, company or individual department/team performance, and market factors. The use of Artificial Intelligence is not being used to screen candidates. The position is for an existing vacancy.

Please be aware that Take-Two does not conduct job interviews or make job offers over third-party messaging apps such as Telegram, WhatsApp, or others. Take-Two also does not engage in any financial exchanges during the recruitment or onboarding process, and the Company will never ask a candidate for their personal or financial information over an app or other unofficial chat channel. Any attempt to do so may be the result of a scam or phishing exercise. Take-Two’s in-house recruitment team will only contact individuals through their official Company email addresses (i.e., via a take2games.com email domain). If you need to report an issue or otherwise have questions, please contact Careers@take2games.com

As an equal opportunity employer, Take-Two Interactive Software, Inc. (“Take-Two”) is committed to fostering and celebrating the diverse thoughts, cultures, and backgrounds of its talent, partners, and communities throughout its organization. Consistent with this commitment, Take-Two does not discriminate or retaliate against any employee or job applicant because of their race, color, religion, sex (including pregnancy, sexual orientation, and gender identity), national origin, age, disability, and genetic information (including family medical history), or on the basis of any other trait protected by applicable law. If you need to report a concern or have questions regarding Take-Two’s equal opportunity commitment, please contact Careers@take2games.com

WHO WE ARE 

Headquartered in New York City, Take-Two Interactive Software, Inc. is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. We develop and publish products principally through Rockstar Games, 2K, and Zynga. Our strategy is to create hit entertainment experiences, delivered on every platform relevant to our audience through a variety of sound business models. Our pillars - creativity, innovation, and efficiency - guide us as we strive to create the highest quality, most captivating experiences for our consumers. The Company’s common stock is publicly traded on NASDAQ under the symbol TTWO. For more corporate and product information please visit our website at http://www.take2games.com.

While our offices (physical and virtual) are casual and inviting, we are deeply committed to our core tenets of creativity, innovation and efficiency, and individual and team development opportunities. Our industry and business are continually evolving and fast-paced, providing numerous opportunities to learn and hone your skills. We work hard, but we also like to have fun, and believe that we provide a great place to come to work each day to pursue your passions.

THE CHALLENGE

We are looking for a Lead Security Operations Engineer to design, implement, and lead our Security Orchestration, Automation, and Response (SOAR) platform. In this role, you'll be the technical leader responsible for building and optimizing our security automation capabilities. You will work with a diverse set of technologies, including various security tools, APIs, and cloud services, to streamline our security operations and enhance our incident response efficiency. Your expertise will directly contribute to safeguarding Take-Two and its labels systems, networks, and data.

You will work with Take-Two's Information Security teams, reporting to the Director of Security Operations Engineering. 

WHAT YOU’LL TAKE ON

• SOAR Platform Management: Lead the design, development, and maintenance of SOAR playbooks, workflows, and integrations with other security tools.
• Automation and Optimization: Identify and implement automation opportunities to improve the speed and accuracy of security operations and incident response.
• Technical Leadership: Act as a domain expert for SOAR, providing technical guidance, mentorship, and support to the security team.
• Collaboration and Strategy: Partner with other security teams to ensure SOAR capabilities align with the overall security strategy.
• Documentation and Reporting: Create and maintain comprehensive documentation for workflows and integrations, and develop reports to measure program success.
• Change Management and Maintenance: Assist with SOAR tool migrations, document all system changes, and stay ahead of the latest SOAR and automation trends

WHAT YOU BRING

• Experience: 5+ years’ experience as a SOAR Engineer. Previous experience as a Security Engineer or as a Security Operations analyst is a plus.
• Technical Expertise: Deep expertise in designing, building, and maintaining automated security workflows and playbooks using a SOAR platform to integrate and orchestrate security tools like SIEM, EDR, and threat intelligence platforms.
• Analytical Skills: The ability to analyze complex security challenges, find opportunities to automate repetitive manual tasks, and develop data-driven solutions that enhance efficiency and accelerate incident response.
• Communication Skills: Excellent written and verbal communication skills, with the ability to present technical information clearly to both technical and non-technical audiences.
• Tool Proficiency: Hands-on experience with a leading SOAR platform (Palo Alto Networks Cortex XSOAR, Tines or Splunk Enterprise Security) coupled with advanced scripting skills in Python to create custom integrations and sophisticated automation workflows.

Great to Have

• Certifications: Relevant industry certifications such as GCED, GCIH, GMON, CEH, etc. or other certifications from organizations like ISC2 or CompTIA.
• Scripting Skills: Proficiency in programming and scripting languages common to security such as Python, Go, Bash, or Powershell, Javascript.
• Security Frameworks: Knowledge of security frameworks including MITRE Att&CK, NIST, etc.
• Leadership Experience: Prior experience leading a small team or a project.

WHAT WE OFFER YOU

• Great Company Culture. Ranked as one of the most creative and innovative places to work, creativity, innovation, efficiency, diversity and philanthropy are among the core tenets of our organization and are integral drivers of our continued success.
• Growth. As a global entertainment company, we pride ourselves on creating environments where employees are encouraged to be themselves, inquisitive, collaborative and to grow within and around the company.
• Work Hard, Play Hard. Our employees bond, blow-off steam, and flex some creative muscles – through corporate boot camp classes, company parties, game release events, monthly socials, and team challenges.
• Benefits. Medical (HSA & FSA), dental, vision, 401(k) with company match, employee stock purchase plan, commuter benefits, in-house wellness program, broad learning & development opportunities, a charitable giving platform with company match and more!
• Perks. Fitness allowance, employee discount programs, free games & events and stocked pantries.

The pay range for this position in Ontario, Canada at the start of employment is expected to be between $114,300 and $164,300 CAD per Year. However, base pay offered is based on market location, and may vary further depending on individualized factors for job candidates, such as job-related knowledge, skills, experience, and other objective business considerations. Subject to those same considerations, the total compensation package for this position may also include other elements, including a bonus and/or equity awards, in addition to a full range of medical, financial, and/or other benefits. Details of participation in these benefit plans will be provided if an employee receives an offer of employment. If hired, employee will be in an 'at-will position' and the company reserves the right to modify base salary (as well as any other discretionary payment or compensation or benefit program) at any time, including for reasons related to individual performance, company or individual department/team performance, and market factors. The use of Artificial Intelligence is not being used to screen candidates. The position is for an existing vacancy.

Please be aware that Take-Two does not conduct job interviews or make job offers over third-party messaging apps such as Telegram, WhatsApp, or others. Take-Two also does not engage in any financial exchanges during the recruitment or onboarding process, and the Company will never ask a candidate for their personal or financial information over an app or other unofficial chat channel. Any attempt to do so may be the result of a scam or phishing exercise. Take-Two’s in-house recruitment team will only contact individuals through their official Company email addresses (i.e., via a take2games.com email domain). If you need to report an issue or otherwise have questions, please contact Careers@take2games.com

As an equal opportunity employer, Take-Two Interactive Software, Inc. (“Take-Two”) is committed to fostering and celebrating the diverse thoughts, cultures, and backgrounds of its talent, partners, and communities throughout its organization. Consistent with this commitment, Take-Two does not discriminate or retaliate against any employee or job applicant because of their race, color, religion, sex (including pregnancy, sexual orientation, and gender identity), national origin, age, disability, and genetic information (including family medical history), or on the basis of any other trait protected by applicable law. If you need to report a concern or have questions regarding Take-Two’s equal opportunity commitment, please contact Careers@take2games.com

Who We Are

At Momentum Financial Services Group, we help people move forward by reimagining how money works for those who need it most. With more than 40 years of experience, we’re the team behind Money Mart—Canada’s largest non-bank branch network—and a leader in financial solutions for underserved communities.

From short-term loans to money transfers and prepaid cards, we power the products, technology, and operations that connect over a million customers a year to the money they need, when they need it.

At MFSG, we come together across teams and departments to create something bigger than ourselves: solutions that remove barriers and give people access to money they might not get anywhere else. Whether you're solving problems, building systems, or shaping strategy, your work fuels real support for real people.

We’ve Got You Covered

Compensation Philosophy: Our strategy is designed to attract and retain top talent by offering competitive, fair, and performance-driven rewards. We benchmark against the market, recognize strong performance and continuously evolve to meet the needs of our people and our business.

Discretionary Annual Bonus: Enjoy the opportunity for a discretionary bonus based on individual performance and company success.

Comprehensive Benefits: Our benefits include health and dental plans with 100% of the premiums covered. We also offer an Employee Assistance Program to support your mental well-being and provide resources for personal challenges.

Retirement Plans: Plan for your future with our robust retirement savings options, ensuring you’re set for the long haul.

Hybrid Work Environment: Experience the best of both worlds with our hybrid work model, allowing you to balance remote work with in-office.

Perks and Rewards: Enjoy reimbursement for tuition assistance and professional development, discounts through Perkopolis and participate in our rewards and recognition programs to celebrate your contributions.

The Job: Senior IAM Engineer

We’re looking for a Senior IAM Engineer to design, implement, and manage identity and access management solutions across the organization. This role will play a critical part in securing systems, enabling seamless access for users, and ensuring compliance across internal and customer-facing platforms.

What You’ll Do

IAM Architecture & Engineering

• Design, implement, and maintain IAM solutions across platforms such as Azure Entra ID, AWS IAM, Active Directory, and Okta
• Support the rollout and optimization of centralized IAM platforms
• Partner with security, infrastructure, and application teams to strengthen IAM architecture

Access Lifecycle Management

• Manage end-to-end user lifecycle including provisioning, de-provisioning, and access reviews
• Implement role-based access controls and enforce least privilege and zero-trust principles
• Ensure secure and efficient access for both internal and external users

Governance, Risk & Compliance

• Define and enforce IAM policies, standards, and procedures
• Conduct access reviews and support audit readiness (e.g., SOX, GDPR, ISO)
• Monitor IAM environments for compliance and control effectiveness

Security Monitoring & Incident Response

• Monitor IAM logs and alerts to detect suspicious activity
• Support investigation and resolution of access-related security incidents

Integration & Collaboration

• Integrate IAM solutions with enterprise applications and systems
• Collaborate with IT, cybersecurity, and business teams to improve identity security posture

Automation & Continuous Improvement

• Automate IAM processes using scripting and APIs
• Improve operational efficiency and reduce manual intervention

Documentation & Knowledge Sharing

• Maintain clear and up-to-date documentation of IAM systems and processes
• Support knowledge sharing and training across teams

What You’ll Bring to the Table

• Strong experience in Identity and Access Management within complex environments
• Hands-on expertise with Azure Entra ID, AWS IAM, Active Directory (On-Prem), and Okta (SSO, MFA, Provisioning, Federation).
• Deep understanding of IAM concepts including RBAC, PAM, authentication, and authorization
• Experience implementing zero-trust and least privilege access models
• Familiarity with compliance frameworks and security standards
• Strong problem-solving skills and ability to work across technical and business teams
• Experience with automation and scripting (e.g., PowerShell, Python)

Education + Experience

• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience)
• 5+ years of experience in Identity & Access Management
• Experience working in regulated environments (e.g., financial services) is an asset
• Relevant certifications (e.g., Microsoft Identity, Okta, or security certifications) are preferred

Ready to lead

If you’re passionate about securing identities, improving access controls, and building scalable IAM solutions, this is an opportunity to make a critical impact on enterprise security.

Committed to Equal Opportunity:

MFSG is committed to accommodating applicants up to the point of undue hardship during the recruitment, assessment and selection process. If you are selected for an interview, please notify MFSG if you require accommodation in respect of the materials or procedures used at any time during this process. If you require accommodation, MFSG will work with you to determine how to meet your needs.

Please note: The salary range for this position is between C$ 125,000 to C$ 135,000.

The Role:

Combining business and security expertise, the Solutions Architect role will demonstrate the value of Halcyon’s cyber resilience solution to customers by advising, educating, and redefining the next generation of cybersecurity and recovery. This includes conducting ransomware readiness assessments and aligning customer expectations with the Halcyon cyber resilience solution. The role will align closely with our sales team and require close partnership with other internal teams to ensure customer satisfaction and meaningful product development. The Solutions Architect will actively contribute to quarterly and annual quota objectives by facilitating discussions, coordinating technical demonstrations, and representing Halcyon as the market-leading solution. Our ideal candidate will have practical experience in account and channel management, engineering, and product implementation, and can offer relevant and actionable recommendations that differentiate Halcyon in the market.

Territory:

This region covers Eastern Canada. Candidates must reside in one of these states and be located within approximately one hour of a major metropolitan area to support customer travel requirements (up to 40%), but we would prefer that this person live in Toronto.

Responsibilities:

• Work with multiple stakeholders across the executive branch (CxO), as well as other relevant stakeholders, to demonstrate the value of Halcyon’s solution.

• Advise and educate customers and channel partners on the Halcyon platform and its capabilities.

• Assist account and channel management to drive revenue and move opportunities throughout the sales cycle.

• Interface and partner with customer success and threat intelligence liaisons to align customer expectations with Halcyon to ensure service delivery excellence and customer satisfaction.

• Interface and partner with product management and engineering to align customer requests for features and functionality.

• Attain quarterly and annual quota objectives, working in partnership with sales using Halcyon sales operating processes by adding value throughout the entire sales motion with such activities as:

  • Facilitating new discussions by leveraging peer and industry network contacts.

  • Telling the Halcyon story and detailing the value proposition.

  • Performing requirements analysis and qualification of opportunities.

  • Coordinating and managing demonstrations and POV efforts, including endpoint testing, virtual environment lab configuration, and responding to customer questions.

  • Seamlessly transitioning engagements for delivery to the customer success team.

  • Staying current on industry trends.

  • Maintaining advisory relationships with key stakeholders at customers by providing thought leadership, support, information, and guidance in conjunction with sales teams.

  • Supporting marketing to build Halcyon brand awareness through speaking at corporate-sponsored events, writing industry articles, and leveraging social media to properly represent Halcyon.

  • Actively pursuing personal development by maintaining and obtaining technical capabilities, soft skills, and security-specific knowledge through formal education, certification, and other avenues.

• Perform additional duties as directed or needed.

Skills and Qualifications:

• 5+ years of experience in a pre-sales role within the cybersecurity industry (e.g., Solutions Architect, Sales Engineer, Channel Engineer, or Technical Advisor).

• Proven success supporting strategic and enterprise customers, driving complex technical evaluations and achieving consistent technical wins.

• Deep knowledge of modern security architectures — endpoint protection, ransomware resilience, incident response, identity protection, and cloud security.

• Demonstrated success leading POCs, demos, and technical evaluations with enterprise customers.

• Exceptional presentation and communication skills, with the ability to influence both technical and executive stakeholders.

• Experience collaborating cross-functionally with sales, product, and engineering teams.

• Familiarity with APIs, scripting, and integrations for ecosystem interoperability.

• Must reside within one hour of a major metro area and be willing to travel up to 40% within assigned territory.

• Bachelor’s or Master’s degree in a relevant technical field, or equivalent experience.

Preferred Skills and Qualifications:

• Scripting experience in PowerShell, VBScript, Bash and/or Python.

• CISSP, CEH, GIAC GCFA, GCIH, or similar certifications.

#LI-Remote