Security Platform Engineer, Security Automation (Python, Crowdstrike, SIEM)

Bring us your passion for digital or data analytics, and we’ll put you to work on exciting initiatives that answer the challenge: "How can we do that better?” Working with a dedicated team of energetic, forward-thinking innovators, you’ll stretch your imagination and sharpen your skills on the leading-edge projects that are keeping Sun Life Financial ahead of the curve. You want more than a job; you want a career - a career with a company that encourages learning and personal growth. You want to be “one of the best”.

Job Description:

What will you do?

• Developing automation workflows, the successful candidate will develop playbooks to within Splunk SOAR/Ansible environment to triage, alert or otherwise automate manual processes.
• The security platform engineer will be responsible for supporting and managing existing security technologies that are currently deployed globally across Sun Life.
• The successful candidate will work on security initiatives and enterprise level projects performing proof of technology/concept asks, implementing new security controls and capabilities into existing technologies and be responsible to deploy, support and maintain new security technologies and platforms.
• Meet with stakeholders to help refine the requirements for new automation workflows.
• The security platform engineer will be part of a 24x7 on-call support team and be required to join major incident management calls to provide support and consultation for technologies supported by the team.
• Continuously improve upon operational and security platform process activities.
• Smoothly transition and operationalize each project as the implementation phase ends. This includes developing roles & responsibilities (RACI) documents and educating the teams who will be performing BAU (Business as usual) the day-to-day work.
• Document, update and maintain cyber security playbooks, policies and knowledge base articles used to support the established Incident Management and CSIRT processes.

What you need to succeed?

• An Information Technology University degree/college diploma in related discipline(s) or equivalent work experience, and/or 5 years experience in Information Technology
• 2-3+ years in security IT industry experience
• Professional designation in IT security (such as CISM, CISSP, CISA, GIAC, AWS or CompTIA) preferred.

Preferred skills

• Experience with SOAR tools (Splunk SOAR, Cortex XSOAR, etc)
• Experience with Ansible development.
• Development experience (Python, YAML, JavaScript, etc)
• Experience planning, researching, and developing security policies, standards, and procedures.
• Knowledge of one or more:  end-point detection and response, intrusion detection, crypto technologies, certificate management, email security, web content filtering technologies, cloud security.
• Knowledge of Security Information and Event Management platforms including log types.
• Experience with Windows and Linux based operating systems.
• Experience in deploying enterprise level technology via managed projects.
• Knowledge of networking technologies, firewalls, web application firewalls and intrusion prevention systems.
• Knowledge of cloud technologies.
• Knowledge of disaster recovery, technologies, and methods.
• Strong communicator spoken and written with the ability to communicate technical issues to peers and management.

What’s in it for you?

• We’re honored to be recognized as a 2025 Best Workplaces in Ontario by Great Place to Work® Canada.
• We are thrilled to be recognized by Excellence Canada with their top-level certification, the Canada Order of Excellence for Mental Health at Work®,  for prioritizing employee well-being, fostering a positive work culture, and achieving excellence in mental health.
• We’re proud to be recognized as a company with a 2023 Most Trusted Executive team by Great Place to Work® Canada.
• Wellness programs that support the three pillars of your health – mental, physical, and financial
• The opportunity to move along a variety of career paths with amazing networking potential.
• As a hybrid organization, you and your leader use business and Client needs to choose where you work, at home or in the office

The Base Pay range is for the primary location for which the job is posted.  It may vary depending on the work location of the successful candidate or other factors. In addition to Base Pay, eligible Sun Life employees participate in various incentive plans, payment under which is discretionary and subject to individual and company performance. Certain sales focused roles have sales incentive plans based on individual or group sales results.

Diversity and inclusion have always been at the core of our values at Sun Life. A diverse workforce with wide perspectives and creative ideas benefits our Clients, the communities where we operate and all of us as colleagues. We welcome applications from qualified individuals from all backgrounds.

Persons with disabilities who need accommodation in the application process, or those needing job postings in an alternative format, may e-mail a request to thebrightside@sunlife.com.

We are proud to be a hybrid organization that offers our employees the choice and flexibility to work from both the office and virtually based on the needs of the business, our Clients and you! Several work options are available and can be discussed throughout the selection process depending on the role requirements and individual needs.

We may use artificial intelligence to support candidate sourcing, screening, interview scheduling.

We thank all applicants for showing an interest in this position. Only those selected for an interview will be contacted.

Salary Range:

65,000/65 000 - 105,000/105 000

Job Category:

IT - Technology Services

Posting End Date:

10/04/2026