Cloud Security Engineer

McCormick Canada continues its long track record of growth and is a respected leader in the spice, seasoning, flavouring and specialty food industry.  Our consumer products division serves retail grocery customers and emerging channels with Club House, Billy Bee and McCormick products, while our Custom Flavour Solutions division serves food service distributors and other respected food manufacturers across Canada.  McCormick Canada is part of the world leader in spice and seasonings, McCormick & Company Inc.

The Power of People is one of our five pillars.  It has been the foundation for McCormick's success for decades.  There is something inspiring about working at McCormick.  We have created an unusually dedicated workforce by fostering a culture of respect, recognition, inclusion and collaboration based on the highest ethical values.  Without our employees, our success is not possible.  Our commitment to our customers, our consumers and our employees is unsurpassed. 

McCormick & Company, Inc., a world leader in the spice, flavor and seasonings industry, is seeking a full time Cloud Security Engineer – Technology and Engineering. This position will report to the Sr. Manager Cybersecurity - Technology and Engineering.

Position Overview:

The cloud security engineer role is a critical part of a global security team focused on enabling secure access to data, systems and services across cloud environments. This role contributes to designing, implementing and managing cloud security solutions that align with the organizational standards and risk framework.

As a key technical contributor, the cloud security engineer will serve as a security point of contact – working closely with engineers, analysts, IT teams and service providers to configure tools, support cloud initiatives, and process security requests. This role plays a hands-on part in maintaining a strong security posture, supporting compliance requirements, and continuously improving service delivery.

This position offers the opportunity to work with modern security technologies, influence secure architecture and drive real-world impact in a fast paced global environment.  

Key Responsibilities:

• Manage and fine-tune Cloud EDR, Security center and other native security tools — making sure we're protected and compliant.
• Monitor our cloud environment for misconfigurations, over-permissioned identities, and non-compliant resources—and work with teams to fix them.
• Apply secure configuration baselines to cloud assets, including storage, virtual machines, networking, and identity services.
• Help maintain strong governance in the cloud through Policy, tagging enforcement, and access reviews.
• Review and update NSGs, ASGs, firewalls, and other cloud-native controls to ensure proper segmentation and protection.
• Keep track of cloud security tool coverage and work to ensure all assets are onboarded and monitored.
• Assist in Investigation and resolution of alerts from Cloud EDR, SIEM, and other cloud tools —helping security operations team to implement corrective measures.
• Identify risks both operational and security during day-to-day activities and during specific, targeted efforts.  Make recommendations and/or take action to mitigate these issues as appropriate.
• Implements automation to reduce alert fatigue and improve signal-to-noise ratio in cloud alerts.
• Collaborate with cloud infrastructure, service providers, DevOps, and application teams to ensure secure deployment pipelines and environment hardening.
• Support vulnerability management in cloud environments —flag outdated configurations, missing patches, or identity risks.
• Stay current with evolving cloud threats and platform capabilities—bringing fresh ideas to how we improve our security posture.
• Contribute to sizing and budget estimation processes to align with application and solution life cycle/renewal schedules.
• Document configurations, exceptions, and workflows clearly so others can follow and maintain them.
• Participate in security projects, audits, and cloud-related compliance reviews.
• Provide guidance during the rollout of new services or migrations to make sure security is baked in from the start.
• Evaluates and integrates tools for CSPM, CIEM, and workload protection and drives improvements in governance and automation.
• Participate in internal workshops and architecture review boards for cloud platforms.
• Maintains certifications and hands on experience in evolving cloud technologies.

Required Qualifications:

• Bachelor's degree in information technology, Computer Science or relevant field.
• Two or More of: GIAC Certified, CCSK, OCSP, CISSP (Certified Information Systems Security Professional), Cloud Certified (AWS (Amazon Web Services), GCP, Azure), CEH, ITIL, CCNS, CISC, CPFA, RHCE, Microsoft Certification, Security+, or other related security certification
• 3–6 years of experience in endpoint/cloud security, systems administration, or security engineering broad and in-depth knowledge of cyber security technologies
• Strong experience with Microsoft OS platforms, Linux and cloud security technologies.
• Proficiency in secure baseline configuration and security architecture design
• Hands-on experience with core endpoint/cloud security tools and platforms
• Knowledge of control frameworks such as NIST CSF, CIS, ISO 27001
• Proficiency in scripting (e.g., PowerShell, Python) and automation tools
• Proven ability to drive security processes, remediation, and standards within a complex business environment while maintaining continuity of business operations.
• Comprehensive technical knowledge of all areas within IT plus a comprehensive understanding of all business functions and how their processes and resources interact is required.

Other skills and competencies:

• Must be able to multi-task and set priorities
• Must have experience leading and working in a collaborative, multi-disciplined, globally diverse team environment.
• Effective communication skills and the ability to communicate appropriately at all levels of the organization; this includes written and verbal communications as well as visualizations
• Positive approach to customer service with demonstrated ability to handle high pressure support needs in a calm, respectful, and efficient manner
• Must be able to provide sound, convincing arguments based on qualitative data.
• Can explain cloud risks and configurations to a range of stakeholders
• Attention to detail and follow through.
• Demonstrated ability to manage both technical and business relationships and liaise on the information needs of the business to IT and system constraints back to the business.
• Ability to maintain confidential and personal information.
• Demonstrated leader of continuous improvement ideas and implementations
• Ability to operate a multi-cultural and multi-lingual environment both with team members and internal customers (critical)
• Ability to discuss technical information with non-technical individuals across multiple cultures in multiple countries. (critical)
• English fluency (critical)

#LI-NP2

Throughout the selection process, accommodations for applicants with disabilities are available upon request.  Please notify H.R. if required.