IS Cloud Security Engineer

Why BCAA? Feel proud of what you do and help shape the future of BC at a BC Top Employer. We’re driven by purpose – delivering peace of mind to one in three BC households with insurance, roadside assistance, auto repair, Evo Car Share and Evolve E-Bike Share. With a long history of keeping roads safe and giving back in ways that build stronger communities, we offer a wide variety of meaningful, rewarding careers that move BC forward. We are currently hiring an IS Cloud Security Engineer based in our Head Office in Burnaby, reporting to the Manager, Security & Governance. As an IS Cloud Security Engineer, you will play a key role in securing BCAA’s cloud environments by implementing and maintaining security controls that support posture management, threat detection, and compliance. You will work closely with our Cloud Engineering and Insurance business teams to enable secure cloud adoption, ensuring that security is embedded throughout the development lifecycle and treated as a core enabler of innovation. This role is well suited for a hands-on security professional who thrives in a collaborative environment, enjoys solving complex challenges, and is passionate about strengthening cloud security practices across a modern technology landscape Who you are: An experienced cloud security professional with a strong technical foundation and a passion for protecting modern cloud environments. A collaborative partner who works effectively across engineering, security, and business teams. A proactive and curious problem solver who brings solutions, not just risks. Comfortable navigating ambiguity and making decisions based on risk and business impact. A strong communicator who can translate technical security concepts for diverse audiences. Detail-oriented with strong analytical and troubleshooting skills. A continuous learner who stays current with emerging threats, tools, and best practices. Once you’re here you’ll: Implement and maintain cloud security controls aligned with best practices and BCAA security standards. Support secure cloud adoption by partnering closely with Cloud Engineering and product teams to establish secure configuration baselines. Participate in architecture reviews and technical discussions to ensure security is embedded early in solution design. Integrate security practices into the software development lifecycle, including CI/CD security, secrets management, and vulnerability scanning. Lead and support cloud-related incident response activities, ensuring timely investigation and resolution. Define and implement cloud network security controls, including segmentation, routing policies, and access controls. Collaborate with network and infrastructure teams to strengthen end-to-end security across cloud environments. Translate security requirements into clear, actionable technical guidance for engineering teams. Support posture management, threat detection, and compliance monitoring using cloud security platforms. Evaluate emerging cloud security tools, technologies, and threats to continuously improve BCAA’s security posture. Identify security gaps and recommend practical, risk-based solutions that align with business objectives. Contribute to continuous improvement of cloud security practices, standards, and processes across the organization. What you bring: Bachelor’s degree in Computer Science, Engineering, or a related field, or equivalent certifications such as CISSP, CCSP, AWS SAA, or AWS Certified Security Specialty. Minimum 7 years of experience in a security-focused role, including at least 3 years in cloud security engineering. Experience working with multi-cloud platforms such as AWS, Azure, or Google Cloud. Strong hands-on experience with AWS security services, identity and access management, encryption, networking, and monitoring. Solid understanding of network security concepts including segmentation, firewalls, VPN, routing, and Zero Trust principles. Experience implementing cloud-native and third-party security tooling such as CASB, CSPM, or SSPM. Experience with Infrastructure as Code, CI/CD pipelines, and DevSecOps practices. Strong understanding of cloud security frameworks, including the shared responsibility model and secure SDLC practices. Proven ability to work independently and collaboratively across teams. Strong analytical, troubleshooting, and organizational skills. Excellent written and verbal communication skills with the ability to translate technical concepts. A proactive mindset with a focus on continuous improvement and innovation. Bonus Skills Experience securing large cloud migrations within complex or regulated environments. Experience working with leading insurance platforms. Familiarity with advanced cloud security architecture patterns and enterprise-scale environments. The salary range for this position is $121,381.08 to $151,726.44 and is determined via job-related knowledge, skills, experience, certifications, market demand and internal equity. In addition to base salary and BCAA benefits, this position is eligible for a performance bonus target of 9%, with the opportunity to earn up to 15%. Please note that this is a hybrid role based out of our Burnaby, BC office (3 on-site / 2 remote days). Applicants who are not located within commuting distance of our Head Office or are not looking to relocate to the Greater Vancouver/Lower Mainland/Fraser Valley region will not be considered.