Cloud Security / DevSecOps Specialist
Job Description
🚨 Hiring: Cloud Security / DevSecOps Specialist 🚨
📍 Location: Toronto
⏳ Contract: 6 months with possibility of extension
💰 Rate: $80/hr Incorp
I’m currently hiring for a Cloud Security professional who can support enterprise cloud transformation initiatives with a strong focus on CNAPP, CWPP, CSPM, cloud misconfiguration analysis, vulnerability triage, and secure remediation.
This role is ideal for someone who has worked across Cloud Security, DevSecOps, CI/CD, Application Security, and cloud-native environments, and is comfortable partnering with Development, Engineering, DevOps, Cloud, Application Security, and application owner teams.
What you’ll be working on:
✅ Reviewing and triaging CNAPP findings across cloud environments
✅ Supporting vulnerability and threat management for cloud-native applications
✅ Leveraging AI-assisted tooling to prioritize findings and reduce noise
✅ Analyzing cloud misconfigurations and recommending remediation strategies
✅ Reviewing CWPP vulnerabilities and CSPM findings
✅ Enhancing reporting for development teams and senior management
✅ Supporting security controls across application and cloud environments
✅ Documenting processes, procedures, and user guides
✅ Collaborating with DevOps, Cloud, AppSec, Engineering, and risk stakeholders
Must-have experience:
🔹 10+ years of relevant IT experience across development, DevOps, cloud security, or related areas
🔹 4+ years of CI/CD experience with tools such as GitHub, Bitbucket, Jenkins, Azure DevOps, GitLab CI/CD, JFrog Artifactory, or CircleCI
🔹 2+ years of Cloud Security experience across CNAPP, CWPP, CSPM, or tools such as Prisma Cloud, CrowdStrike, Aqua Enterprise, Microsoft Defender, SCCE, etc.
🔹 5+ years of experience documenting processes, procedures, and user guides
🔹 Strong triage, analysis, communication, and stakeholder collaboration skills
Nice to have:
⭐ GCP PCSE Certification
⭐ Experience with large-scale cloud transformation programs
⭐ DevSecOps engineering experience with security automation, risk assessment, and mitigation
⭐ GCP and/or Azure cloud experience
This is a great opportunity for someone who enjoys working at the intersection of cloud security, DevSecOps, automation, AI-assisted security triage, and enterprise risk management.
Interested or know someone who could be a good match?
Please DM me or send your resume to garyv@corgta.com with the subject line: Cloud Security / DevSecOps Specialist
No third parties, please.
