cover image
OceanMD, a WELL Health Company

DevSecOps Engineer

Hybrid

Toronto, Canada

Full Time

19-12-2025

Share this job:
Score my CV

Skills

Incident Response Firewalls Cloud Security CI/CD DevOps Monitoring Jenkins Ansible Networking Organization AWS AWS Cloud CI/CD Pipelines Terraform Infrastructure as Code

Job Specifications

Join us as we change healthcare for the better.

OceanMD, a WELLSTAR Company, is the leading provider of EMR-integrated Patient Engagement and eReferral tools in Canada, playing a critical role in millions of patient visits and thousands of referrals every week. Our digital healthcare solutions empower patients and physicians to overcome the barriers preventing the timely delivery of healthcare services. By replacing paper forms with digital tools, we give patients and providers secure ways to connect, share health information, and update patient records. Our tools:

Empower patients to share health information with their physician before, during, and after visits, helping to ensure health records are up to-date and accurate while improving patient care.
Meet the growing demand for digital solutions with online booking and secure messaging that improves the patient’s experience, reduces the need for unnecessary phone calls, and makes clinics more efficient.
Improve access to care by replacing faxes, displaying wait times, and reducing the time to process and access specialist referrals.

Who we need

Reporting to the Senior Director, Cloud Operations and Security, we are looking for a DevSecOps Engineer to join our cloud engineering and security-focused team. In this role, you will lead initiatives to embed security into every layer of our AWS environments and delivery pipelines, while also contributing to the day-to-day operations that ensure our platform remains stable, performant, and highly available.

You will play a critical role in designing secure infrastructure, implementing automation, and promoting security-first practices across the organisation. In addition, you will be actively engaged in supporting operations, infrastructure, and tooling, ensuring the resilience, scalability, and protection of our cloud-based SaaS platform that serves Canadian healthcare practitioners.

You will combine deep technical expertise and a proactive mindset to contribute to key platform areas such as:

AWS Cloud Security and Operations
Infrastructure as Code (Terraform, Ansible, Jenkins)
Secure Networking (VPC, firewalls, VPNs, IAM)
Security tools (CSPM, DSPM, ASPM, Vulnerability Management)
CI/CD Pipeline Security and Automation
Monitoring, Alerting, and Incident Response
Governance, Compliance, and Policy-as-Code

This is a full-time hybrid role working 3 days per week on site in our Toronto office.

What’s in it for you

Impact. You will directly build, optimize, and influence the security and reliability of a national healthcare platform, protecting sensitive patient data and ensuring practitioners have uninterrupted access to the tools they depend on.

Cutting-edge technology. You will work with the latest AWS services, DevSecOps tooling, and Infrastructure as Code practices, building automated pipelines that integrate security from the start. You will gain exposure to advanced cloud security frameworks, compliance automation, and modern observability tools.

Career growth. You will join a collaborative team that values accountability and integrity. As a senior member, you will have opportunities to lead critical cloud infrastructure and security projects, take ownership, and leverage AI tools. At OceanMD, your aspirations will be supported with access to education, certification and increased accountability in this individual contributor role.

How you will make an impact

Secure by design. You will implement security controls across AWS environments, Infrastructure as Code, and CI/CD pipelines, embedding best practices into daily operations.
Enable compliance. You will help maintain ISO 27001 and SOC 2 alignment, supporting audit readiness and implementing governance-as-code to enforce compliance.
Be proactive. You will improve monitoring and alerting systems to detect and mitigate risks before they impact customers. You will lead incident response efforts and post-mortems, driving a culture of continuous improvement.
Collaborate. You will partner with developers, Product, and operations to eliminate barriers, share knowledge, and foster a security-first culture across the organization.

What you bring

The experience. You have honed your expertise in DevSecOps, DevOps, Site Reliability, or Cloud Engineering, in progressively autonomous and complex roles. You have led or significantly contributed to cloud security initiatives. You have worked in a SaaS environment and ideally have exposure in healthcare technology.
The technical skills. You are an expert in AWS cloud services and security models. You are fluent in Infrastructure as Code (Terraform, Ansible, Jenkins) and have advanced experience with CI/CD, monitoring, networking and container security. You are familiar with tools such as SIEM, CSPM, DSPM, ASPM and IaC security scanners.
The collaborative approach. You are a strong communicator and mentor. You build trust across teams and excel at breaking down complex security concepts into actionable soluti

About the Company

OceanMD is the leading provider of EMR-integrated Patient Engagement and eReferral tools in Canada. Our digital healthcare solutions are replacing paper forms, giving patients and providers secure ways to connect, share health information, and automatically update patient records. From appointment reminders and check-in kiosks to website forms, secure messages, and eReferrals, the Ocean Platform is transforming patient care across the country every day. Over the past 12 years, the Ocean Platform has been adopted by tens of t... Know more