Cloud Security AI Test Automation Engineer

Cloud Security AI Test Automation Engineer at TD Securities

We are seeking a highly detail-oriented Cloud Security AI Test Automation Engineer to join our team at TD Securities. In this pivotal role, you will be instrumental in automating and validating Compliance as Code (CaC) policies across diverse multi-cloud environments, including Google Cloud Platform (GCP), Microsoft Azure, and Amazon Web Services (AWS). Your expertise will be crucial in designing, implementing, and maintaining automated test cases to ensure these policies function flawlessly and meet stringent banking regulations. You will integrate these robust tests into GitHub-based CI/CD pipelines, leveraging GitHub Workflows, GitHub Actions, Terraform, Python, and PowerShell.

Key Responsibilities

• Automated Testing for Cloud Policies: Design, develop, implement, and maintain automated test frameworks to validate existing Compliance as Code policies across GCP, AWS, and Azure, ensuring alignment with banking regulations. Develop comprehensive positive, negative, and edge exception test cases to validate policy enforcement logic. Build automated test pipelines integrated with CI/CD workflows for continuous validation of CaC changes.
• Collaboration & Simulation: Collaborate closely with CaC policy developers, security architects, and Cloud Service Owners to deeply understand intended policy behavior and potential failure conditions. Implement mock cloud environments, services, and IAM configurations to simulate realistic scenarios for thorough policy testing. Maintain a comprehensive test suite library, ensuring clear traceability between compliance requirements, validation cases, and artifacts.
• Continuous Testing & CI/CD Integration: Integrate compliance validation tests into CI/CD pipelines using GitHub Actions, GitHub Workflows, and Terraform to enforce continuous compliance checks before deployment. Automate security scanning and validation of Terraform deployments using PowerShell and Python. Validate the enforcement of banking cloud security policies by embedding automated compliance checks into DevSecOps workflows and actions.
• Cloud Security and Regulatory Compliance Enforcement: Work closely with Banking security, DevSecOps teams, and Cloud Compliance governance teams to define and enforce cloud security controls in accordance with regulatory mandates. Validate cloud resource configurations against financial industry standards, including NIST, ISO 27001, and SOC 2.
• Reporting & Audit Readiness: Implement and test logging and monitoring solutions to detect compliance violations in real-time. Automate and validate the generation of compliance reports and dashboards using tools like SonarQube, Wiz.IO, and Splunk. Ensure all TD Standards & STIG requirements for IAAS, PaaS, SaaS CaC development, and testing activities are traceable and auditable for internal risk assessments and external regulatory audits.

Required Skills And Experience

• Strong knowledge of GCP, Azure, AWS.
• 4+ years of experience in Cloud Security, DevSecOps, or Cloud Engineering roles.
• Proficiency with Cloud infrastructure as code, including Terraform, Helm, ARM, JSON, and YAML.
• Hands-on experience with Compliance as Code (CaC) tools such as HashiCorp Sentinel, Azure Policy, Wiz Policy, GCP Org Policy, Open Policy Agent, and Kubernetes.
• Experience with CI/CD Pipelines, specifically GitHub Actions and Jenkins.
• Proficiency in scripting and automation with Python, Bash, Go, PowerShell, and Terraform, alongside experience in building automated testing frameworks.
• Solid understanding of Cloud Security & Compliance, including CIS benchmarks, NIST standards, and other security frameworks.

Preferred Qualifications

• Azure Fundamentals, Azure Security Engineer Associate, or GCP Fundamentals certification.
• Experience with multi-cloud security testing across GCP, Azure, and AWS.
• Experience with Container security and Kubernetes policy enforcement.
• University degree.
• Information security certification/accreditation is an asset.
• 5+ years of relevant experience.

Why Join Us?

Work on cutting-edge cloud security and compliance automation. Be part of a DevSecOps-driven culture with CI/CD integrated security testing. Collaborate with global teams to secure multi-cloud environments.

Who We Are

TD is one of the world's leading global financial institutions and the fifth largest bank in North America by branches/stores. We are committed to making every interaction, product, and experience remarkably human and refreshingly simple for over 27 million households and businesses globally. Our more than 95,000 colleagues foster deeper relationships, ensure disciplined execution, and build a simpler, faster banking experience. TD is dedicated to being a leader in client experience, believing that all colleagues are client-facing, working together to reimagine banking for our clients, colleagues, and communities.

Our Total Rewards Package

Our Total Rewards package reflects our investment in colleagues, supporting their financial, physical, and mental well-being goals. This includes base salary, variable compensation, health and well-being benefits, savings and retirement programs, paid time off, banking benefits, career development, and reward and recognition programs.

Colleague Development

We support your career path and skill building through regular development conversations, training programs, an online learning platform, and various mentoring programs to unlock future opportunities. TD offers diverse career paths for those passionate about helping clients and building lasting relationships, allowing you to grow expertise and make a meaningful impact. We foster a respectful workplace valuing diverse perspectives and fair growth opportunities.

Training & Onboarding

We provide comprehensive training and onboarding sessions to ensure you have everything needed to succeed in your new role.

Interview Process

We will contact candidates of interest to schedule an interview and strive to communicate outcomes to all applicants via email or phone call.

Accommodation

Your accessibility is important to us. Please inform us if you require accommodations (e.g., accessible meeting rooms, captioning for virtual interviews) to help remove barriers and ensure your full participation throughout the interview process.

Key skills/competency

• Cloud Security
• Compliance as Code (CaC)
• Multi-Cloud Environments (GCP, Azure, AWS)
• Test Automation
• CI/CD Pipelines (GitHub Actions/Workflows)
• Terraform
• Python
• DevSecOps
• Regulatory Compliance (NIST, ISO 27001, SOC 2)
• Security Auditing & Reporting