Security Automation Engineer

 

Description:

The Security Automation Engineer designs, builds, and operates automated security capabilities across a hybrid enterprise environment spanning on-premises infrastructure and public cloud platforms. This is a hands-on, builder-oriented role focused on eliminating manual security effort by embedding security guardrails, detections, and remediation directly into platforms, pipelines, and operational workflows.

In this role, you will own the automation and orchestration layer of the security program , working closely with infrastructure, platform, data, and application engineering teams to ensure security is continuous, scalable, and enforced through code . You will have strong software engineering experience with deep security domain expertise across cloud, Kubernetes, CI/CD, data platforms, and modern AI workloads.

Vacancy Status

This is an existing job vacancy

What you will do

Security Automation & Engineering
 

  • Design and implement event-driven, API-first security automation for detection, response, and preventative controls.
  • Build reusable automation frameworks and libraries to enforce security standards across environments.
  • Replace manual security processes with code, workflows, and orchestration integrated into enterprise platforms.
     

Infrastructure as Code (IaC) & Policy Automation
 

  • Enforce security guardrails via policy ‑ as ‑ code (OPA/Gatekeeper, Terraform, Sentinel, cloud-native policy engines).
  • Automate scanning, validation, approval gates, and auto-remediation for IaC drift and misconfigurations.
  • Develop secure, IaC modules that embed security by default.
     

Container Security Automation
 

  • Automate cluster and workload hardening (RBAC validation, admission control, policy enforcement).
  • Integrate image scanning, signing, and deployment validation into CI/CD.
  • Automate runtime signal collection and response for container workloads CI/CD & Software Supply Chain Security
  • Embed security automation into CI/CD pipelines (SAST, SCA, DAST, secrets detection, IaC scanning).
  • Implement policy ‑ based gates and automated failure handling.
  • Automate SBOM generation, artifact signing, provenance checks, and attestation enforcement.
     

GitHub Security Engineering
 

  • Automate GitHub Enterprise security controls: including repository standards, branch protections, code scanning, secret scanning, and dependency management.
  • Enforce least ‑ privilege access and token hygiene via automation.
  • Integrate GitHub security telemetry into SIEM and SOAR pipelines.
     

Databricks & Data Platform Security
 

  • Automate Databricks workspace and cluster security (policies, permissions, secret scopes, token lifecycle).
  • Enforce data access guardrails and monitor for anomalous behavior.
  • Integrate Databricks telemetry into centralized logging and detection systems.
     

Vulnerability Automation & Remediation
 

  • Build automated pipelines that prioritize, route, and remediate vulnerabilities based on risk context.
  • Integrate vulnerability data with ticketing, CI/CD, and config management systems.
  • Develop self ‑ service remediation workflows for engineering teams.
     

Security Operations & Orchestration
 

  • Design and develop SOAR playbooks and automations for common and high ‑ impact security events.
  • Integrate signals from cloud platforms, endpoints, identity systems, Kubernetes, and CI/CD into SIEM.
  • Continuously tune detections to improve signal quality, reduce noise, and support analyst efficiency.
  • Embed automated security checks into change management workflows, including pre ‑ change validation and post ‑ change. verification.
     

What we are looking for

Primary Skills And Qualifications
 

  • Bachelor’s degree in Information Security, Computer Science, Information Technology, or equivalent practical experience.
  • 5–7+ years of experience in security engineering, site reliability engineering (SRE), or software engineering with a strong security focus.
  • Strong software engineering mindset with the ability to design, build, and operate production systems.
  • Proven ability to balance security rigor with delivery speed and business outcomes.
  • Experience operating production ‑ grade systems with uptime, telemetry, and reliability requirements.
  • Strong collaboration skills with a demonstrated ability to enable engineering teams rather than block delivery.
  • Excellent written and verbal communication skills, with the ability to clearly articulate complex technical concepts.
  • Ability to work effectively in a fast ‑ paced, global environment with shifting priorities.
  • Preferred Certifications
  • CCSP, CISSP, CKS
  • Azure or GCP Security Specialty
  • GIAC certifications relevant to cloud or automation security

Organization Kinaxis
Industry Other Jobs Jobs
Occupational Category Security Automation Engineer
Job Location Calgary,Canada
Shift Type Morning
Job Type Full Time
Gender No Preference
Career Level Experienced Professional
Experience 5 Years
Posted at 2026-06-04 3:57 pm
Expires on 2026-07-19