Engineer II; Cloud Security AI Test Automation Engineer

Work Location

Toronto, Ontario, Canada

37.5

Technology Solutions

$96,900 - $136,800 CAD

This role is temporarily eligible for a pay premium above the posted salary range that is reassessed annually. You are encouraged to have an open dialogue with your recruiter who can provide more specific pay details for this role.

TD is committed to providing fair and equitable compensation opportunities to all colleagues. Growth opportunities and skill development are defining features of the colleague experience  compensation policies and practices have been designed to allow colleagues to progress through the salary range over time as they progress in their role. The base pay actually offered may vary based upon the candidate's skills and experience, job-related knowledge, geographic location, and other specific business and organizational needs.

As a candidate, you are encouraged to ask compensation related questions and have an open dialogue with your recruiter who can provide you more specific details for this role.

We are looking for a detailed-oriented Cloud Security and AI Test Engineer to join our team. This individual will focus on automating and validating Compliance-as-Code (CaC) policies across multi cloud environments including GCP, Azure and AWS. In this role you will blend your expertise in cloud security with advanced AI tools to enhance compliance, security and test automation, ensuring continuous validation within multi cloud environments.

• Design, develop, implement and maintain AI-driven automated test frameworks for the behavior of existing compliance as a code policy across cloud environments (GCP/AWS/Azure) in alignment with banking regulations.
• Implement AI- driven test environments using Azure Foundry and Azure ML to create realistic, mock cloud setups, including network and IAM configurations to simulate and test policies effectively.
• Utilize Azure AI Search, Azure OpenAI, and Azure Machine learning to build intelligent validation routines that can predict policy compliance issues and recommend remediation steps.
• Develop comprehensive positive negative and edge exception test cases to validate policy enforcement logic.
• Maintain a test suite library and ensure traceability between compliance requirements validation cases and artifacts.
• Collaborate with CaC policy developers and security architects and Cloud Service Owners to understand intended behavior and failure conditions.

• Integrate AI- assisted compliance validation into CI/CD pipelines Git Hub actions Git Hub workflows using Git Hub Copilot for scripting efficiencies and M365 Copilot studio for creating streamlined policy validation templates.
• Automate security scanning and validation of terraform deployments with Python.
• Validate the enforcement of banking cloud security policies by embedding automated compliance checks into Dev Sec Ops  workflows and actions.

• Work closely with security, Dev Sec Ops  teams, and Cloud Compliance governance teams to define and enforce cloud security controls in accordance with regulatory mandates.
• Validate cloud resource configurations against financial industry standards, (NIST, ISO 27001, SOC
  2).

• Implement/test logging and monitoring solutions to detect compliance violations in real time.
• Automate/validate the generation of compliance reports and dashboards using tools like Sonar Qube, Wiz.
  
  IO, Splunk, Dynatrace, App Omni.
• Ensure that all TD Standards & STIG requirements for IAAS, PaaS, SaaS CaC development, and testing activities are traceable and auditable for internal risk assessments and external regulatory audits.

• University or post-graduate degree in Computer Engineering, Software Engineering, Computer Science, Data Science (BS/MS).
• 7 + years relevant experience
• 4+ years in Cloud Security, Dev Sec Ops , AI or Cloud Engineering roles.
• Strong Knowledge of GCP, Azure, AWS.
• Cloud infrastructure as a code - Experience with Terraform, Helm, ARM, JSON, YAML, REGO.
• Compliance as…