Skip to content

Security Engineer

Compunnel, Inc.



We are seeking an experienced Security Engineer to help design and build the firm’s next-generation Policy Based Access Control (PBAC) solution. This role is positioned within the Cybersecurity organization on the Identity & Access Management (IAM) team. The successful candidate will partner with internal infrastructure, cloud, and SaaS platform teams to drive integration with the enterprise-wide PBAC architecture, leveraging modern policy-as-code and GitOps methodologies.

Key Responsibilities

  1. Collaborate with internal engineering teams to design and implement a PBAC framework across diverse infrastructure platforms and services.
  2. Develop, test, and deploy PBAC integrations for both in-house developed and vendor-supplied applications.
  3. Implement secure policy-as-code using GitOps-based workflows.
  4. Create and maintain detailed technical design documentation, including architectural diagrams and data flows.
  5. Present and articulate design decisions to technical and non-technical stakeholders via governance forums.

Required Qualifications

  1. Bachelor’s degree in Computer Science, Information Security, or a related field.
  2. 5+ years of experience with Python development in production environments.
  3. Hands-on experience with CI/CD pipelines, containerization tools (Docker, Podman), and deploying to Kubernetes platforms (OpenShift or Azure Kubernetes Service).
  4. Familiarity with policy-as-code frameworks (e.g., Rego, Prolog).
  5. Knowledge of secure authentication protocols such as OIDC, SAML, and mTLS.
  6. Experience with shell scripting and SQL, including schema design with PostgreSQL or MongoDB.
  7. Understanding of major IAM platforms and cloud service providers (Azure, AWS, GCP).

Preferred Qualifications (Nice to Have)

  1. Professional certifications such as CISSP, CISM, or equivalent.
  2. Cloud security certifications (e.g., Microsoft Certified: Identity and Access Administrator Associate, AWS Certified Security – Specialty).
  3. Experience implementing PBAC frameworks or application-level authorization solutions.
  4. Familiarity with SailPoint IdentityNow or IdentityIQ IGA platforms.
  5. Excellent technical writing and documentation skills.

Certifications (if any)

  1. CISSP, CISM, or equivalent security certification (preferred)
  2. Microsoft or AWS cloud security certifications (preferred)


#J-18808-Ljbffr

To apply, please visit the following URL:

THISJOB.CA