Back to Jobs
Vancouver, British Columbia, Canada Remote (Country) CAD 120,000 - 135,000 Yearly

Canada Life UK is hiring a Senior Application & Cloud Security Engineer

About the Role

Canada Life UK is seeking a Senior Application & Cloud Security Engineer to serve as the foundational security hire within our Technology organization, reporting to the VP of Data Engineering. You will own and drive security across our application portfolio and multi-cloud infrastructure (AWS and GCP), working hands-on to harden systems and operationalize the company's security roadmap.

What You'll Do

  • Lead application security for our Label Engine (PHP 8.x / Laravel / MySQL / Redis / Elasticsearch) and web applications across the portfolio.
  • Secure royalty processing, accounting, and payment workflows handling sensitive financial data.
  • Implement and manage SAST, DAST, and SCA tooling integrated into CI/CD pipelines.
  • Conduct code-level security reviews for OWASP Top 10 and Laravel-specific attack vectors.
  • Define and enforce API security standards, including OAuth 2.0, rate limiting, and input validation.
  • Secure and harden AWS infrastructure (EC2, RDS, S3, CloudFront, Lambda, IAM, VPC).
  • Secure GCP environments for our data and AI platform (BigQuery, Pub/Sub, Cloud Run/GKE, IAM).
  • Implement Cloud Security Posture Management across AWS and GCP, enforcing guardrails and compliance baselines.
  • Harden container/Kubernetes security, secrets management, and network policies.
  • Support identity federation and SSO implementation.
  • Build out security monitoring, SIEM, incident response, and vulnerability management.
  • Help operationalize the company's security roadmap across all security domains.

What We're Looking For

  • 5+ years of experience in application security, cloud security, or security engineering roles.
  • Strong PHP/Laravel application security expertise.
  • Deep AWS security knowledge (IAM, VPC, S3, KMS, CloudTrail, GuardDuty, Security Hub, WAF).
  • Solid GCP security experience (IAM, VPC Service Controls, Security Command Center, Cloud Armor).
  • Proficiency with SAST/DAST/SCA tools such as Semgrep, SonarQube, Snyk, Burp Suite, or OWASP ZAP.
  • Experience securing financial transaction or payment processing applications.
  • Container security experience with Docker and Kubernetes/GKE, including image scanning and runtime protection.
  • Strong IAM understanding, including SAML, OIDC, SCIM, MFA, and privileged access management.
  • Familiarity with SOC 2, ISO 27001, NIST CSF, and CIS Benchmarks.
  • SIEM/log management experience with detection and alerting rules.

Nice to Have

  • Bachelor's degree in Computer Science, Cybersecurity, or a related field preferred (not required with equivalent experience).
  • Experience with PCI-DSS compliance, Infrastructure as Code security (Terraform), or music/media industry experience.
  • Certifications such as AWS Security Specialty, GCSPE, OSCP, GWAPT, or CISSP.

Technical Stack

  • Languages/Frameworks: PHP 8.x, Laravel
  • Databases/Storage: MySQL, Redis, Elasticsearch
  • AWS: EC2, RDS, S3, CloudFront, Lambda, IAM, VPC, KMS, CloudTrail, GuardDuty, Security Hub, WAF
  • GCP: BigQuery, Pub/Sub, Cloud Run, GKE, IAM, VPC Service Controls, Security Command Center, Cloud Armor
  • Containers/Orchestration: Docker, Kubernetes/GKE
  • Security Tooling: SAST/DAST/SCA tools (Semgrep, SonarQube, Snyk, Burp Suite, OWASP ZAP), Terraform

Team & Environment

This role is the foundational security hire within the Technology organization, reporting directly to the VP of Data Engineering. You will be instrumental in building and shaping the security function.

Benefits & Compensation

  • Salary Range: $120,000 - $135,000 CAD per year.

Canada Life UK is an equal opportunity employer.

Required Skills
PHPLaravelAWS SecurityGCP SecurityKubernetesDockerSASTDASTSCAIAMVPCCloudTrailSecurity Hub PHPLaravelAWS SecurityGCP SecurityKubernetesDockerSASTDASTSCAIAMVPCCloudTrailSecurity Hub
Your first international client?

Don't lose them over invoicing

Clients ghost freelancers with unprofessional invoicing. Glopay gives you a real EU company partnership so they take you seriously from invoice #1.

Instant EU company partnership
Invoice builder with your branding
Automated payment reminders
Real-time payment tracking
Get EU company now
Ready in 24 hours
About company
Canada Life UK
Canada Life UK has helped individuals, families and businesses secure their financial futures for over 120 years.
All jobs at Canada Life UK Visit website
Job Details
Department Information Technology
Category security
Posted a month ago

Similar Jobs

Other opportunities you might be interested in

Kiefer

Senior Security Engineer

Kiefer

Athens Hybrid
SambaNova Systems

Security Architect

SambaNova Systems

Austin or Palo Alto or Remote - US
DNEG

Principal Security Architect

DNEG

Bangalore Remote (City)
Smartsheet

Senior Software Engineer, Platform Security (Remote from Bulgaria)

Smartsheet

Bulgaria Remote (Country)
Menlo Security

Security Engineer

Menlo Security

United States
AutoStore

Principal Security Engineer

AutoStore

Norway Hybrid

Related Articles

Insights related to this role

Remote data scientist working with Kubernetes through a low-code platform, enabling cloud-native tools without backend expertise
Remote Work

Platform Engineering: Kubernetes for All

3 min a month ago
A remote developer working in a well-lit, modern workspace, illustrating a productive environment enabled by a developer experience platform.
Remote Work

Developer Experience Platform: Lessons from Europe

5 min 15 days ago
Home office setup with dual monitors showing Kubernetes dashboards, representing the rise of Kubernetes remote jobs in AI and cloud-native careers 2026.
Job Search

Kubernetes Remote Jobs: AI & Cloud-Native Careers in 2026

5 min a month ago