View All Jobs 166826

Senior Security Operations Engineer

Implement automated security detection and response workflows using GCP services and Terraform
Toronto
Senior
$130,600 – 163,200 CAD / year
3 weeks ago
League

League

A health-focused platform offering digital and in-person healthcare services to employers and employees for wellness and benefits management.

Senior Security Operations Engineer

Founded in 2014, League is the leading healthcare consumer experience (CX) platform, powered by artificial intelligence (AI), reaching more than 63 million people around the world and delivering the highest level of personalization in the industry. Payers, providers, and consumer health partners build on League's platform to deliver high-engagement healthcare solutions proven to improve health outcomes. League has raised over $285 million in venture capital funding to date, powering the digital experiences for some of healthcare's most trusted brands, including Highmark Health, Manulife, Medibank, and Shoppers Drug Mart.

League's Security Engineering teams are responsible for scaling security in the development lifecycle and managing security incident management. We believe in security by design and follow a paved road philosophy by building or buying tools that we can integrate into our platform to ultimately make it easier for our engineers to do the right thing. As a Senior SecOps Engineer you will care deeply about "what goes bump in the night". You have peers in Security Engineering who care about "build it secure" at League, your role is to ensure both validation and response occurs when inevitable challenges arise. This role will focus on detection, response, tuning, and refinement. Security Engineers and Analysts on our SecOps team take pride in response.

As always, if this is your skillset we encourage you to apply. We also accept and encourage applicants who have existing software engineering experience and want to explore security and applicants who may have done a security program in a post-secondary institution. There are people across the engineering organization who are ready to help grow technical skills and who want to learn more about security.

About the Role

  • Security Monitoring and Incident Response:
    • Monitors security events and alerts from various sources (SIEM, endpoint detection, SASE, etc.) and analyzes them to identify potential security incidents.
    • Leads security incident response efforts, including investigation, containment, eradication, and recovery.
    • Develops and maintains incident response plans, playbooks, and procedures.
    • Coordinates with cross-functional teams (IT, Engineering, Legal, etc.) during security incidents.
    • Performs root cause analysis of security incidents and recommend preventive measures. Independently analyzes complex security incidents, identifying root causes and developing solutions and drives them to completion.
    • Participates in an on-call rotation.
  • Security Tooling and Automation:
    • Manages and maintains security tools and technologies, such as SIEM, EDR, and SASE platforms.
    • Develops and implements automation scripts and workflows to improve security operations efficiency and effectiveness.
    • Demonstrated ability to leverage GCP services (e.g., Cloud Functions, Cloud Run) to host and automate security scripts and tools for event enrichment and response.
    • Proficiency in utilizing GCP services like Pub/Sub, Dataflow, BigQuery, and Cloud Storage for data processing, analysis, and enrichment.
    • Evaluates and recommends new security tools and technologies to enhance our security posture.
    • Manages and maintains infrastructure through Terraform.
  • Threat Management:
    • Conducts threat research and analysis to identify emerging threats and vulnerabilities.
    • Develops and implements threat detection rules and use cases.
  • Security Engineering and Architecture:
    • Contributes to the design and implementation of security systems architectures and solutions.
    • Evaluates and recommends security controls for new and existing systems.
    • Ensures security best practices are followed in system development and implementation.
  • Collaboration and Communication:
    • Collaborates with other teams to ensure security is integrated into all aspects of the organization's operations.
    • Communicates security risks and issues to technical and non-technical audiences, including leadership.
    • Mentors and provides guidance to junior security analysts and engineers to develop their technical growth.
  • Compliance and Reporting:
    • Ensures compliance with relevant security standards and regulations (e.g., HITRUST, NIST, GDPR).
    • Prepares and presents security reports to management.
    • Participates in routine audits within the organization.

About You

  • Bachelor of Science degree (BS) in Computer Science (or a related field)
  • 5+ years of experience in security operations, incident response, or a related role.
  • Deep and broad technical understanding of security concepts, principles, and technologies.
  • Experience with security monitoring tools (e.g., SIEM, EDR), including configuration and administration of these tools.
  • Proven leading and coordinating incident response processes and methodologies.
  • Proficiency in scripting languages (e.g., Python, Go).
  • You have some Infrastructure as Code (Terraform, Ansible) experience or a strong desire to learn.
  • Experience with threat intelligence platforms and implementing these in security operations.
  • Strong analytical and problem-solving skills.
  • You are a collaborator at your core
  • Excellent communication and interpersonal skills.

Nice to Haves

  • Security certifications (e.g., OffSec Certifications, GIAC Certifications).
  • Experience with digital forensics
  • Experience with cloud security (AWS, Azure, GCP).
  • Experience with Security Orchestration, Automation and Response (SOAR).
  • Knowledge of networking protocols and security.
  • Contributions to the security community at League, and more broadly (eg. blog posts, conference presentations, etc.)

Security-Related Responsibilities

  • Compliance with Information Security Policies
  • Compliance with League's secure coding practice
  • Responsibility and accountability for executing League's policies and procedures
  • Notification of HR, Legal, Compliance & Security of any incidents, breaches or policy violations

Compensation range for Canada applicants only

$130,600 - $163,200 CAD

Our employees come from different backgrounds, and we celebrate those differences. We are looking for the best candidates for our open roles, but do not expect applicants to meet every qualification in order to be considered. If you are excited about what you could accomplish at League and believe you can add value to our team, we would love to hear from you.

We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. If you are an individual in need of assistance at any time during our recruitment process, please contact us at recruitinginfo@league.com.

Our Application Process:

Applying to a role you love can be exhausting, and understanding the next steps can feel vague and uncertain. You have done the hard part of submitting your application; let's do ours by sharing potential next steps.

  • You should receive a confirmation email after submitting your application.
  • A recruiter (not a computer) reviews all applications at League.
  • If we see alignment with League's needs, a recruiter will reach out to learn more about your goals. The recruiter will also share the team-specific interview process depending on the roles you are exploring.
  • The final step is an offer, which we hope you will accept!
  • Prior to joining us, we conduct reference and background checks. Additional checks could be required for US Candidates, depending on the role you are exploring.
+ Show Original Job Post
























Senior Security Operations Engineer
Toronto
$130,600 – 163,200 CAD / year
Engineering
About League
A health-focused platform offering digital and in-person healthcare services to employers and employees for wellness and benefits management.