Engineer, Cyber Security Operations

What you will do:

Job Summary

As the Cyber Security Operations Engineer, you will take a lead role in protecting the organization’s data, systems, and services, partnering closely with the Director of Cyber Security to drive daily incident response, threat management, and risk reduction initiatives. You will design, implement, and manage security controls across enterprise IT, cloud platforms, and customer‑facing environments, playing a key role in strengthening defenses, enabling secure operations at scale, and reducing cyber risk across digital commerce and media platforms.

This is a hybrid position (3 days in the office per week). Office location is 1303 Yonge Street, Toronto.

• Design, deploy, and optimize security tooling across EDR/XDR, SIEM/SOAR, WAF, IAM, DLP, and NDR, improving visibility, detection, and response through automation, logging, and telemetry.
• Design and implement secure solutions across cloud, on‑prem, and hybrid environments, embedding security by design and hardening networks, endpoints, and servers.
• Identify and remediate risk through vulnerability assessments, patching, and support for penetration testing and bug bounty programs.
• Strengthen cloud and application security by implementing controls and securing APIs, microservices, and web platforms, while integrating Dev Sec Ops  practices across CI/CD pipelines and infrastructure.
• Serve as an escalation point for security incidents, leading root cause analysis, driving remediation, and improving detection and prevention capabilities through automation.
• Support compliance and audit readiness by aligning controls to standards such as PCI DSS, ISO 27001, and NIST, maintaining documentation, and enabling secure business operations.
• Assess and manage third‑party risk, ensuring secure vendor and SaaS integrations and ongoing monitoring of external partners.
• Implement and manage identity and access controls including RBAC, MFA, conditional access, and PAM, enforcing least privilege across all systems.

• Bring 8+ years of hands‑on experience in IT security, with a strong foundation in protecting enterprise environments.
• Demonstrate 5+ years of experience in systems and network administration, including managing Windows client and server environments.
• Experience maintaining firewall rule hygiene and ransomware resilient backup practices, with exposure to PCI environments and knowledge of Canadian privacy regulations.
• Proven experience across IT security and information security advisory roles, with a strong foundation in technology risk management.
• Experience in areas such as application security, with Information Security Architecture expertise considered an asset.
• Relevant certifications such as CISSP, CRISC, CCSP, GCFA, GCIH, CEH, CISM, CISA, PCI QSA or ISA, and PMP are considered an asset.

$85,000 - $110,000 CAD.

Cineplex, its subsidiaries, and affiliates are equal‑opportunity employers with a commitment to hiring and retaining a diverse workforce. We encourage and welcome applications from all intersectional walks of life. The collective sum of our individual differences, experiences, knowledge, innovation, self‑expression, unique capabilities, and talent represents a significant part of our culture. By valuing a diverse workforce, we enforce hiring practices that are fair and equitable.

We are committed to improving access and opportunities for all individuals, including those with disabilities by identifying and removing barriers that may prevent, inhibit, or restrict their access to employment opportunities. If you require accommodation at any stage of our hiring process (application, interviews, assessments, and placement), please contact us at  or via email at