Verafin – Senior Security Analyst

Job Description

We're looking for a Senior Security Analyst to join our Cloud team. In this role, you'll help shape how we secure and strengthen Nasdaq Verafin's cloud environment, ensuring robust protection for enterprise-level applications and systems.

You'll fit right in if you're technically strong, collaborative, and passionate about designing secure cloud solutions, love working across teams, and get energy from tackling challenges that make an impact on a global scale.

What You'll Do

Design, implement, and deploy AWS cloud security solutions using tools like Service Control Policies (SCPs), Resource Control Policies (RCPs), and IAM strategies.
Provide AWS cloud security guidance to internal teams, ensuring technical controls and mitigations are integrated into enterprise applications.
Stay ahead of emerging AWS security controls, introducing new measures to strengthen our environment.
Collaborate across teams to embed security into all stages of the application lifecycle.
Communicate complex security concepts effectively to technical and non-technical stakeholders.
Automate and support security tools such as Prisma Cloud, Cortex XSOAR, and AWS native security services to minimize infrastructure risks.
Remediate security vulnerabilities across AWS infrastructure to meet compliance requirements.
Perform advanced threat hunting through SIEM platforms to detect, analyze, and prevent potential security threats.

What You'll Bring

Bachelor's degree in Computer Engineering, Computer Science, or equivalent experience.
3–5 years of experience in cloud security operations, preferably in large-scale AWS environments.
Proven ability to design and implement cybersecurity solutions within multi-account AWS architectures.
Strong understanding of identity, data, and network boundaries in cloud environments.
Proven experience with Terraform, including investigating issues and developing secure, reusable module-based solutions.
DevSecOps experience, ensuring security is embedded throughout the development lifecycle and changes are safeguarded before reaching production.
Strong python scripting experience to manage AWS environment (e.g., boto3)
Excellent communication skills for conveying technical security concepts clearly.

Nice to Have:

Proficiency in Terraform, Network Security, Java, Jenkins, Linux, Python, and/or Bash.
Enterprise-level infrastructure management and system administration experience.
Certifications such as CCSP, AWS Solutions Architect, or AWS Security Specialty.
Experience in financial technology or regulated industries.

This position can be located in St. John's or Toronto, and offers the opportunity for a hybrid work environment (3 days a week in office), providing flexibility and accessibility for qualified candidates.

Come as You Are

Nasdaq is an equal opportunity employer. We positively encourage applications from suitably qualified and eligible candidates regardless of age, color, disability, national origin, ancestry, race, religion, gender, sexual orientation, gender identity and/or expression, veteran status, genetic information, or any other status protected by applicable law.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request an accommodation.

What We Offer

We're proud to offer a competitive rewards package that is meaningful, recognizes the unique needs of our employees and their families and incentivizes employees for their contribution to Nasdaq's overall success.

The base pay range for this role is $86,000 - $118,000. In addition to base salary, Nasdaq provides a generous annual bonus/commission (short-term incentive), and equity (long-term incentive), comprehensive benefits, and opportunity for growth. Exact compensation may vary based on several job-related factors that are unique to each candidate, including but not limited to: skill set, experience, education/training, business needs and market demands.