Senior Cloud Application Security Engineer

Are you ready to embark on a career that truly affects people around the world? Trulioo invites you to be a catalyst for change in the dynamic realm of digital identity verification. As the global front-runner in our industry, we are redefining how businesses grow, innovate and comply online.

Picture yourself at the forefront of innovation, contributing to our award-winning platform that enables organizations worldwide to quickly onboard customers, optimize costs and combat fraud. Fueled by Silicon Valley support, Trulioo stands as the trusted platform that can verify more than 5 billion people and 700 million business entities spanning 195 countries.

But Trulioo is more than a tech company. We are a united force of dedicated experts committed to establishing trust online - and we’re proud to be recognized as a BC Top Employer for the second consecutive year, reflecting our commitment to an inclusive, collaborative, and people-first workplace.

Headquartered in Vancouver and with strategic hubs in San Diego and Dublin, we foster a culture of collaboration and open communication. Our offices support a hybrid model and staff typically work three days per week at a hub location. Join us where excitement meets innovation and contribute to a world where trust and technology unite.

What We Offer

• Comprehensive Benefits: We provide a robust benefits package for full-time, permanent employees, including health, dental, and vision coverage, retirement plans with company match, paid time off, parental leave, and an annual education & training stipend (equivalent to $1,000 in local currency). Specific benefits may vary by location and will be discussed further during the interview process.
• Flexible Hybrid Working Environment: Our offices are designed to support both collaboration and flexibility. Enjoy weekly lunches, quality coffee, and regular social events. Many locations also feature parent rooms, on-site gyms, comfortable lounges, and adaptable workstations to support your comfort and productivity.
• Wellness: We care about your well-being. Team members have access to wellness workshops and events, as well as a complimentary Headspace subscription to help you stay focused, grounded, and energized.
• Employee Resource Groups: Belonging is an important part of doing your best work. Our ERGs provide an inclusive space, support and community for employees of diverse backgrounds and allies. We host informative, fun sessions and celebrations that are often open to the entire organization.

Position Summary

We are seeking a Senior Cloud Application Security Engineer to join our ISC team and own the cloud application security posture for Trulioo’s SaaS platform. Reporting to the Sr. Director, Technology Infrastructure and Security, you will play a key role in securing applications and infrastructure hosted in AWS. You will work closely with Engineering and DevOps teams to design, implement, and operate security controls across our platform. This role focuses on building scalable, automated security solutions that balance strong protection with developer productivity. This is a hands-on role within a 24/7 environment that includes participation in on-call escalation coverage for security incidents.

This will be a full-time, permanent position working out of the Vancouver office on a hybrid model (3-days per week in the office).

What You'll Be Doing

You will be a key resource within the Trulioo security team, driving security capabilities across our cloud platform and application environment. The ideal candidate is a self-starter with strong experience in cloud and platform security, and a focus on building scalable, automated security solutions in AWS.

• Collaborate with DevOps, Engineering, and other stakeholders to design, implement, and operate cloud and application security capabilities across CI/CD pipelines and production environments
• Lead and support application security reviews and threat modeling, including code review, static, and dynamic testing
• Own and improve vulnerability management processes across application and infrastructure layers, including CI/CD-integrated workflows
• Establish and maintain AWS security guardrails, ensuring services are properly configured with effective monitoring, visibility, and alerting
• Design and implement Kubernetes and container security controls, including configuration standards, access controls, and runtime considerations
• Drive automation of security workflows to reduce manual effort and improve response times
• Support Infrastructure as Code (IaC) security practices, including Terraform-based deployments
• Monitor systems for irregular behavior, improve detection capabilities, and assist in incident response and investigation
• Track and report on the effectiveness of security controls and continuously improve security posture
• Research and evaluate emerging technologies and security trends to improve platform security and operational efficiency

What You'll Bring

• Strong experience in cloud security, preferably AWS, with hands-on implementation of security controls and guardrails
• Experience securing containerized environments and Kubernetes platforms (RBAC, network policies, workload security), including designing and implementing controls in production environments
• Strong experience implementing security controls within CI/CD pipelines and influencing developer workflows
• Experience with vulnerability management across application and infrastructure layers, including prioritization and remediation workflows
• Hands-on experience with AWS security services such as SecurityHub, GuardDuty, IAM, Config, Control Tower, CloudWatch, and related tooling
• Strong DevSecOps experience with a cloud provider, ideally AWS (bonus points for AWS certifications)
• Strong scripting and automation experience (Python, Terraform, or similar), with a focus on reducing manual operational work
• Experience with monitoring and logging platforms (e.g., Sumo Logic or equivalent)
• Knowledge of security frameworks and standards (e.g., OWASP Top 10, ISO 27001, SOC 2)
• Strong technical background in Linux and cloud-based systems
• Ability to operate independently and prioritize effectively in a dynamic environment
• Strong problem-solving and critical thinking skills, with a focus on practical, scalable solutions
• Excellent communication and collaboration skills across engineering and security teams
• 5+ years of experience in cloud, application, or platform security, with demonstrated depth in AWS and modern cloud-native environments
• Bachelor’s degree in computer science, engineering, or equivalent experience

Thriving at Trulioo

At Trulioo, you’re not just an employee. You’re a valued member of our Trulicrew on a journey of professional and personal growth with a world-class organization. With Trulioo, you have the power to revolutionize the intersection of technology, digital trust and online identity to open the global economy to everyone. Together, we can shape the digital future.

We’re on the lookout for exceptional people to empower with trust, autonomy and the freedom to cultivate their potential. Your curiosity, meticulous attention to detail and passion to contribute are highly valued. If that resonates with you, apply today to become a part of our team. Join us in shaping a future where your career isn’t just a journey but also a boundless exploration into the possibilities of technology and digital identity verification.

Get an inside look at life at Trulioo by following us on LinkedIn https://ca.linkedin.com/company/trulioo, or learn more about us at www.trulioo.com http://www.trulioo.com

If you don’t see yourself fully reflected in every job requirement listed on the posting above, we still encourage you to reach out and apply. Research has shown that minorities and underrepresented groups often only apply when they feel 100% qualified. We are committed to creating a more equitable, inclusive and diverse company and we strongly encourage applicants of all genders, ages, ethnicities, cultures, abilities, sexual orientations, and life experiences to apply.

Trulioo welcomes applications from people with disabilities. Support is available upon request for candidates taking part in all aspects of the selection process. Finally, we know from time-to-time emergencies happen and you may need to reschedule an interview - we understand and encourage you to be in communication without worrying about losing the opportunity or your credibility.

Privacy Notice

As part of our job application process, Trulioo collects, processes, and discloses personal data for the purpose of identifying suitable candidates for our job openings. For more detail, please visit Trulioo’s Website Privacy Policy https://www.trulioo.com/website-privacy-policy in the section “When you apply for a job”.