Cloud and Application Security Engineer

Join to apply for the Cloud and Application Security Engineer role at CanCap Group Inc. The CanCap Group (“CanCap”) is a privately‑owned Canadian national financial services company with multiple verticals across automotive, consumer, and merchant lending portfolios. We manage the entire lifecycle of finance receivables from credit adjudication through contract administration, customer service, default management, and post‑charge‑off recoveries. We are a company of innovators. We learn from each other, respect each other, and create together. We strive to inspire our customers by continually understanding them, meeting their needs, and keeping them happily surprised. And we always do so with integrity. When it comes to our customers, partners, and each other, we are always motivated by doing the “right thing”. We are always looking to find the best people and the right methods that allow us to meet this goal and look to the future for growth. What your day and week could look like As an Cloud and Application Security Engineer, you'll be a key player in protecting our infrastructure and our customers' data. We're not just looking for someone to check boxes; we need a proactive problem‑solver who can identify risks, harden our systems, and build security into our development lifecycle. You'll be the “eyes and ears” of our security posture, working hands‑on to analyze threats, respond to incidents, and champion a culture of security across the company. If you're passionate about application and cloud security and want to make a tangible impact in a fast‑paced fintech environment, this role is for you What You’ll Do Apply information security principles to assess risks and strengthen security controls across systems and applications. Conduct hands‑on security reviews of our cloud infrastructure and applications. Identify vulnerabilities and work directly with our engineering teams to implement hardening measures and secure our software development lifecycle. Take ownership of our vulnerability management process. Review findings, prioritize risks based on their business impact, and track remediation efforts to ensure our systems remain secure. Evaluate, deploy, and optimize a wide range of security controls, including endpoint protection, firewalls, and monitoring tools. Help us get the most out of our security investments. Assist in maintaining the security of end‑user environments by reviewing configurations, recommending improvements, and monitoring implementation. Support the operation of SIEM/SOC services. Monitor security events, alerts, and logs to detect and analyze suspicious activity. Investigate incidents and support our incident response efforts to quickly contain and resolve threats. Create and maintain security documentation, including risk reports and incident response playbooks. Present findings and recommendations to both technical and non‑technical teams. What You’ll Bring 5 years of professional experience in information security or related domains. Strong foundation in information security principles, threat analysis, and risk management. Hands‑on experience conducting security reviews in cloud environments. Familiarity with application security practices, including secure software development lifecycle (SDLC). Working knowledge of vulnerability management and patching processes across both infrastructure and applications. Experience with endpoint security, firewalls, identity and access management, and security monitoring solutions. Understanding of Microsoft 365 and SaaS platform security features. Knowledge of incident response processes. Bachelor’s degree minimum in Information Security, Computer Science, or a related field. Preferred / Advantage Practical experience with Microsoft Sentinel or other SIEM platforms. Familiarity with cloud security best practices in GCP. Certifications such as CISSP, CCSK, or relevant vendor‑related credentials. Experience in regulated industries (e.g., financial services, fintech). Soft Skills Natural problem‑solver who is always looking for ways to improve security and reduce risk. Ability to clearly explain complex technical risks and solutions to diverse audiences, from engineers to senior leadership. Ability to work independently and collaboratively across teams. What you can expect from us Our Employee Experience is designed to support and inspire our team through: A collaborative, growth‑oriented engineering culture. Encouragement to innovate, experiment, and continuously learn. Comprehensive health and dental benefits. Work Location & Remote Flexibility This role follows a hybrid model, requiring employees to work 50% in‑office, with flexibility to work remotely or from the office on other days. The company has two office locations: Downtown Toronto (Church Street) – The tech team is primarily based here. Mississauga – Another office location, but less frequently used by the tech team. Next Steps We take hiring seriously and have designed this process to be thoughtful and transparent. Please take time to do the same with your application — tell us how your skills and experience align with this role and what excites you about joining our team. Diversity & Inclusion The CanCap Group and our subsidiaries are equal opportunity employers and value diversity. We are committed to building and evolving a team reflecting a variety of backgrounds, perspectives, and skills. We appreciate your interest — only candidates selected for next steps will be contacted. #J-18808-Ljbffr