Company Overview

DMG Blockchain Solutions Inc. is a diversified blockchain and data center technology company that manages, operates, and develops end-to-end solutions tomonetize the blockchain ecosystem.

In addition to our cryptocurrency mining operations, DMG has a software development team dedicated to building software products for digital custody, blockchain, and cryptocurrency mining.

Position Summary

We are looking for a Senior Security Engineer who can take ownership of DMGs IT infrastructure, software security, infrastructure security, and networking across our organization. This role is critical in ensuring that our applications, cloud infrastructure, and deployment pipelines are secure, resilient, and compliant with industry standards.

You will be responsible for identifying security risks, designing security strategies, and implementing best practices across application security, cloud security, and DevSecOps pipelines.

Key Responsibilities

Software & Application Security

• Conduct security assessments and threat modeling for applications.
• Identify and mitigate vulnerabilities in backend, APIs, and frontend applications.

IT Infrastructure & Cloud Security

• Ensure secure configurations for cloud environments (AWS or Azure).
• Implement and manage SSO, IAM, and role-based access control (RBAC) to secure IT systems and infrastructure.
• Lead incident response, threat detection, and security monitoring initiatives to mitigate risks proactively.
• Manage Google Workspace and Microsoft Entra / Intune environments.

Network Security & Security Automation

• Design and enforce firewall rules, intrusion detection, and network segmentation.
• Implement automated security testing (SAST, DAST, and vulnerability scanning).
• Write and maintain security scripts using Bash and Python for automation.
• Conduct penetration testing and recommend mitigation strategies.
• Oversee regular third party penetration testing, analyze results, make recommendations for remediation and improvements.

Security Governance & Compliance

• Ensure compliance with SOC2, ISO 27001, GDPR, PIPA, PIPEDA and other relevant standards.
• Develop and maintain security policies, guidelines, and best practices.
• Educate teams on security awareness.

Key Qualifications

• 5+ years of experience in Software Security, Infrastructure Security, or DevSecOps.
• Strong experience in application security, penetration testing, and secure coding.
• Solid understanding of network security, firewalls, VPNs, and encryption protocols.
• Proficiency in Python and Bash scripting for security automation.
• Hands-on experience with cloud security (AWS or Azure) and custom IAM policies.
• Experience with SIEM tools, intrusion detection, and vulnerability management.
• Knowledge of security compliance frameworks (SOC2, ISO 27001, and NIST).
• Familiarity with CI/CD security, container security (Docker, Kubernetes), and DevSecOps.
• Strong knowledge of zero-trust architecture and modern security paradigms.
• Ability to prioritize and manage multiple projects simultaneously.
• Experience managing and deploying policy enforcement using Google Workspace Enterprise and/or Microsoft Entra / Intune environments is an asset.
• Familiarity with DLP is an asset.

Preferred Certifications (Nice to Have)

Certifications: CISSP, OSCP, or equivalent.