Security Engineer

McCormick Canada continues its long track record of growth and is a respected leader in the spice, seasoning, flavouring and specialty food industry.  Our consumer products division serves retail grocery customers and emerging channels with Club House, Billy Bee and McCormick products, while our Custom Flavour Solutions division serves food service distributors and other respected food manufacturers across Canada.  McCormick Canada is part of the world leader in spice and seasonings, McCormick & Company Inc.

The Power of People is one of our five pillars.  It has been the foundation for McCormick's success for decades.  There is something inspiring about working at McCormick.  We have created an unusually dedicated workforce by fostering a culture of respect, recognition, inclusion and collaboration based on the highest ethical values.  Without our employees, our success is not possible.  Our commitment to our customers, our consumers and our employees is unsurpassed. 

Position Overview:

The security engineer role is responsible for the day-to-day management and support of core security technologies that protect endpoints, infrastructure, cloud and user access. This role plays a key part in strengthening the organization's security posture by ensuring visibility, response, and configuration of tools like SIEM, EDR, endpoint security baseline and remote access platform.

Serving as a trusted expert across IT and security teams, the security engineer handles technology lifecycle tasks, support for incident response, and policy enforcement while maintaining alignment with internal standards and compliance frameworks. The role is also involved in managing firewalls and VPN configurations, improving tool coverage, and supporting continuous service improvement.

This position provides a unique opportunity to work hands-on with leading security platforms and contribute directly to business resilience and secure operations.

Key Responsibilities:

Description

• Take ownership of SIEM and fine-tune alerting rules, manage connectors, and make sure data and logs are flowing as expected.
• Manage EDR for Endpoint and Cloud— ensuring they're properly configured, integrated, and monitored across all devices and environments.
• Help define, apply, and maintain security configuration baselines on endpoints using tools like Intune, Group Policy, and EDR policies.
• Keep track of where our security tools are deployed (and where they're not), and work to improve tool coverage and consistency across the enterprise.
• Participate in the investigation of alerts from security platforms—working with SOC, infrastructure, or endpoint teams to support the resolution quickly.
• Provide day-to-day support and configuration management for employee remote access solutions, ensuring secure and seamless access.
• Review, manage, and optimize endpoint firewall and proxy rules —making sure we minimize risk while supporting business needs.
• Handle security technology lifecycle tasks like patching, upgrades, migrations, and tool retirement planning.
• Monitor new vulnerabilities in our security technology stack and work with other teams to get them resolved.
• Collaborate with infrastructure team, service providers, DevOps and application teams to ensure secure deployment of solutions and environment hardening.
• Stay aligned with internal standards and compliance frameworks like CIS and NIST.
• Work with IT, cloud, and other infrastructure teams to integrate security controls into deployments and services.
• Maintain documentation like SOPs, configuration guides, and exception logs to support operational continuity.
• Provide on call and/or after-hours support occasionally as needed.
• Participate in tool evaluations, new security projects, and ongoing improvements to our tech stack.
• Share insights and updates with management—on tool performance, incidents, risks, and opportunities for improvement.

Required Qualifications:

• Bachelor's degree in information technology, Computer Science or relevant field.
• Two or More of: GIAC Certified, CCSK, OCSP, CISSP (Certified Information Systems Security Professional), Cloud Certified (AWS (Amazon Web Services), GCP, Azure), CEH, ITIL, CCNS, CISC, CPFA, RHCE, Microsoft Certification, Security+, or other related security certification
• 3–6 years of experience in endpoint/cloud security, systems administration, or security engineering Broad and in-depth knowledge of cyber security technologies
• Strong experience with Microsoft OS platforms, Linux and cloud security technologies.
• Proficiency in secure baseline configuration and security architecture design
• Hands-on experience with core endpoint/cloud security tools and platforms
• Knowledge of control frameworks such as NIST CSF, CIS, ISO 27001
• Proficiency in scripting (e.g., PowerShell, Python) and automation tools
• Proven ability to drive security processes, remediation, and standards within a complex business environment while maintaining continuity of business operations.

Other skills and competencies:

• Must be able to multi-task and set priorities
• Must have experience leading and working in a collaborative, multi-disciplined, globally diverse team environment.
• Effective communication skills and the ability to communicate appropriately at all levels of the organization; this includes written and verbal communications as well as visualizations
• Are hands-on and take ownership of tools and processes
• Positive approach to customer service with demonstrated ability to handle high pressure support needs in a calm, respectful, and efficient manner
• Conflict resolution skills.
• Attention to detail and follow through.
• Demonstrated ability to manage both technical and business relationships and liaise on the information needs of the business to IT and system constraints back to the business.
• Ability to maintain confidential and personal information.
• Demonstrated leader of continuous improvement ideas and implementations
• Ability to operate a multi-cultural and multi-lingual environment both with team members and internal customers (critical)
• Ability to discuss technical information with non-technical individuals across multiple cultures in multiple countries. (critical)

#LI-NP2

Throughout the selection process, accommodations for applicants with disabilities are available upon request.  Please notify H.R. if required.