Senior Security Engineer

The world of payment processing is rapidly evolving, and businesses are looking for loyal and strategic partners, to help them grow.  

WE ARE NUVEI. Nuvei (NASDAQ: NVEI) (TSX: NVEI) is a Canadian fintech company accelerating the business of clients around the world. Nuvei’s modular, flexible, and scalable technology allows leading companies to accept next-gen payments, offer all payout options, and benefit from card issuing, banking, risk, and fraud management services. Connecting businesses to their customers in more than 200 markets, with local acquiring in 47 markets, 150 currencies, and 586 alternative payment methods, Nuvei provides the technology and insights for customers and partners to succeed locally and globally with one integration.  

At Nuvei, we live our core values, and we thrive on solving complex problems. We’re dedicated to continually improving our product and providing relentless customer service. We are always looking for exceptional talent to join us on the journey!  

We are seeking a highly skilled and motivated Senior Security Engineer to join our dynamic Technical Security Operations team. In this role, you will be responsible for designing, implementing, and maintaining robust security systems across a variety of platforms, protecting the company’s digital assets, and continuously evolving our security posture. You will collaborate closely with the CISO and other key stakeholders to ensure that security is deeply integrated into all aspects of the company’s infrastructure and operations. You will be reporting to the Technical Security Operations team leader. 

Key Responsibilities: 

• Lead the implementation, configuration, and ongoing maintenance of a variety of advanced security technologies, including but not limited to EDR, Proxy, DLP, email protection, and other critical security solutions. 

• Collaborate with the CISO and security leadership to align security strategies with business objectives, ensuring security requirements are properly designed and executed across the company’s infrastructure. 

• Continuously monitor and analyze security systems, firewalls, logs, and relevant data sources to detect, analyze, and respond to potential security threats in real time. 

• Regularly assess and refine the security architecture to ensure it meets current and emerging threats while aligning with best practices. 

• Conduct thorough market research and spearhead proof of concept (POC) evaluations for new security tools, identifying opportunities to improve the organization’s overall security posture. 

• Identify and assess emerging security threats through continuous monitoring, vulnerability assessments, and log analysis, proactively addressing risks before they materialize. 

• Enhance internal security controls, including identity and access management (IAM), key management, security monitoring, and cloud security posture management (CSPM). 

• Ensure security best practices and policies are adhered to across all systems and services. 

Required Qualifications: 

• 5+ years of hands-on experience in security engineering, with deep expertise in multiple IT security domains. 

Proven expertise in the following areas: 

• Data Loss Prevention (DLP) 

• Endpoint Protection (EDR/XDR) 

• Proxy Solutions (Forcepoint, Netskope) 

• Identity Providers (Okta, Entra ID) 

• Email Protection 

• SIEM  

• Threat Intelligence and Vulnerability Management 

• Network Security (firewalls, VPNs, WAF, NAC) 

• Directory Services (Active Directory, Azure AD) 

• Sandbox Solutions 

• Vulnerability Assessment Solutions (VAS) 

• Cloud Security Posture Management (CSPM) 

• Data Security Posture Management (DSPM) 

• Static Application Security Testing (SAST) 

• Dynamic Application Security Testing (DAST) 

• Strong experience securing Windows, Linux, and macOS environments, with a comprehensive understanding of system security controls. 

• Demonstrated expertise in both on-premises and cloud architecture security, with experience securing public cloud platforms (AWS, GCP, Azure). 

• Advanced knowledge of network security, protocols, and the ability to secure complex network environments. 

• Familiarity with host-based forensics, OS artifacts, and exploitation methods, with the ability to respond to security incidents effectively. 

• Hands-on experience with scripting languages such as Bash, Python, or PowerShell, along with proficiency in infrastructure-as-code tools (Terraform, CloudFormation). 

• Familiarity with compliance frameworks and certification programs (PCI-DSS, SOC II, ISO27001), with the ability to manage security audits and maintain compliance. 

• Proven ability to lead cross-functional security initiatives, driving collaboration and widespread adoption of security best practices across teams. 

• Passionate about staying ahead of the curve in cybersecurity trends, emerging threats, and security technologies. 

Preferred Qualifications: 

• Experience with security design, threat modeling, and conducting security audits. 

• Familiarity with containerization and cloud-native technologies (Kubernetes, Docker). 

• Strong analytical and problem-solving skills, with attention to detail and a proactive approach to addressing complex security challenges

• SOAR solutions.