This is a fully remote position, open to applicants in Canada.

• Assist in the upkeep and management of the organization-wide information security program, which includes policies, standards, and guidelines.

• Conduct IT risk assessments alongside business units and help establish acceptable levels of residual risk.

• Keep track of the external threat landscape and provide guidance to stakeholders on emerging risks.

• Oversee daily threat and vulnerability management, including detection, response, and remediation efforts.

• Coordinate incident management and aid in disaster recovery and business continuity planning.

• Collaborate with engineering, IT, and enterprise architecture teams to integrate security into system design and selection processes.

• Generate regular reports and metrics on the effectiveness of the program for leadership and stakeholders.

• Supervise security testing protocols and manage the remediation of identified risks.

• Ensure that audit trails and system logs meet policy and audit standards.

• Direct security awareness training initiatives throughout the organization.

• Over 5 years of experience in the field of Information Security.

• Practical experience with information security frameworks such as CIS Controls v8, NIST, ISO 27001, SOC 2, PIPEDA, or PCI.

• Proven experience in drafting cybersecurity policies and performing security gap analyses.

• Ability to translate the needs of business stakeholders into technical security requirements.

• Experience with cloud security controls, specifically AWS or equivalent platforms.

• Familiarity with security platforms like CrowdStrike and Mimecast.

• Experience in collaboration with legal, audit, and compliance teams.

• Excellent written and verbal communication skills — capable of engaging both technical and non-technical audiences.

• A university degree or college diploma in Information Security, Cybersecurity, or a related discipline (or equivalent experience).

• A remote-first work environment for enhanced flexibility.

• Home office funding to create a productive workspace.

• High-quality technology: "Office in a box" equipped with all necessary tech gear.

• Half days before public holidays: Enjoy shorter workdays before long weekends.

• Flexible health and dental plans for families, including mental health support.

• Health & personal spending accounts to support your wellness in your own way.

• Parental leave top-up to prioritize family needs.

• Education assistance reimbursement for courses, conferences, books, and memberships.

• Opportunities to learn from industry experts and advance your career.

• Weekly Friday huddles to share updates and foster connections across teams.

• Virtual and in-person team-building activities to enhance our culture.

Security Engineer

People also viewed