← Back to Citylink Systems Reach a recruiter
Share this job
Senior DevOps Security Engineer
Toronto, ON
Apply for this job

Senior Security & Compliance Engineer (Payment Systems)


Role Overview

In the world of payment systems, security isn't just a feature—it’s the foundation. We are looking for a highly skilled Security & Compliance Engineer to lead the charge in defending our infrastructure and ensuring we meet the highest global standards. You will bridge the gap between high-level governance and hands-on technical execution, securing everything from our Kubernetes clusters to our long-term compliance strategies.

Qualifications & Skills

Education & Certification

  • Degree: Bachelor’s degree in Computer Science, Systems Analysis, or a related field (equivalent experience also considered).
  • CISSP Required: Must be CISSP certified with the Endorsement phase fully completed.
  • Domain Expertise: 5+ years of demonstrable experience spanning at least four different CISSP domains.

Compliance & Governance

  • Regulatory Knowledge: Direct experience working with compliance programs such as PCI-DSS or SOC2.
  • Standards & Policy: Proven experience developing and adopting information security standards, governance policies, and procedures.
  • Risk Strategy: Strong understanding of defense-in-depth strategies and the implementation of technical controls, with the ability to assess gaps and risks across computing systems and operations.
  • Frameworks: Familiarity with security industry standards such as ISO 27001, NIST, CVE databases, and vulnerability scoring systems (CVSS).

Technical Security & Engineering

  • Cloud & Containers: Advanced experience in cloud-native technologies, specifically Kubernetes, is a must.
  • Testing & Remediation: Experience conducting successful vulnerability assessments across infrastructure tiers, including penetration testing and scanning.
  • Networking: Strong understanding of networking concepts, protocols, and architectures.
  • Cryptography: Deep knowledge of security concepts surrounding PKI, TLS, and encryption.
  • Identity Management: Experience with IAM, SSO, RBAC, and other AuthN/AuthZ management technologies.
  • Assessment Tools: Proficiency with network and security assessment tools at both the host and network tiers.

Engineering & Scripting

  • Operating Systems: Strong proficiency in Linux/Unix-based environments.
  • Development: Solid experience with Python programming and Shell scripting for security automation.

Bonus Points (Nice to Have)

  • Additional industry certifications: CISA, CISM, CGRC, or CRISC.
  • Experience acting as a Team Lead or mentor.


Apply for this job
© 2026 Citylink Systems Inc. · Toronto, Canada · citylinksystems.com