Senior IT security advisor protecting IT systems and advising on strategic projects at Desjardins. Leading initiatives and representing the unit in senior management committees.
About the role
- Information Security Officer creating security policies and managing security teams to protect Paytient. Collaborating with internal and external teams to ensure compliance and security posture.
Responsibilities
- Develop and implement security policies, standards, and procedures in collaboration with relevant teams to protect organizational data and systems.
- Document data architecture, integrations, and security controls, ensuring ongoing maintenance and adherence to security best practices.
- Manage and lead an Information Security team, partnering with key stakeholders in IT, Technologies and other parts of the business as needed.
- Continuously analyze and anticipate enterprise-wide security needs, including threat detection, incident response, and capacity planning.
- Manage organizational security tools, including zero-trust access tools, to support secure authentication (e.g., SSO, O-Auth) and access control across all applications.
- Oversee the management of MDM suites across Windows, Mac, and mobile devices, including inventory management, software deployment, and endpoint security policies.
- Conduct continuous analysis of security processes, technologies, and vendors to identify and implement improvements that enhance our security posture.
- Monitor vendors to ensure they meet security requirements and provide the best possible service and value via Third Party Risk Reviews and other needed processes.
- Develop and conduct security training for employees to promote a security-aware culture.
- Document support models for endpoints, cloud assets, mobile devices, and SaaS applications (e.g., Okta, Google Workspace), focusing on secure configuration and maintenance.
- Prepare cost-benefit analyses for security upgrades and new technologies.
- Ensure that our security measures and technical capabilities align with audit standards, such as SOC2 and NIST.
- Follow standards set for Information Security Officer as set forth in NIST 800-53.
- Efficiently manage our security software and hardware inventory, including licensing and cost management.
Requirements
- At least three years of experience in a role focused on information security, with a strong emphasis on endpoint management in a zero-trust environment.
- A proven track record of troubleshooting, documentation, and managing information security policies and best practices.
- Strong practical knowledge of scripting, programming, encryption, and digital security.
- In-depth understanding of network architecture and security principles, including cloud-based security (e.g., cloud access security brokers, firewalls, and security monitoring).
- Expertise in SaaS application operations, integrations, and secure onboarding, particularly with platforms like Google Workspace.
- Experience with and deep knowledge of security frameworks and compliance standards, such as ITIL, SOC2, NIST SP 800-171, PCI, and HIPAA.
- Excellent communication, interpersonal, and leadership skills, with the ability to manage conflict and provide effective guidance.
- Superior problem-solving, critical thinking, and decision-making abilities.
- Great project management skills, including organization, planning, time management, and prioritization.
- Excellent attention to detail and a customer service mindset.
Benefits
- Medical, dental and vision insurance
- $4,400 annual HSA contribution
- Paytient Health Payment Account (HPA)
- Monthly lifestyle spending stipend
- Five weeks of annual PTO
- Week-long fully paid 'summer break' for all employees!
- Ten weeks of bonding leave for new parents
- Two weeks of caregiver leave
- Employer paid short-term and long-term disability
- 401k plan access with a 4% employer match
- Stock options in Paytient
- ...and more!
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Manager in Cybersecurity focusing on identity and access management at PwC. Leading innovative solutions and building top - performing teams to tackle complex challenges.
Lead security functions across ClearBank’s regulated cloud banking platform. Ensure safety, resilience, and compliance while collaborating with engineering and product teams.
Business Exp Plan & Admin Spec Sr. collaborating with cross - functional teams for PNC's Enterprise Technology & Security Organization. Delivering business planning processes and value - add opportunities while managing projects across physical security.
Cloud Security Engineer focused on protecting Shipt applications and guiding engineering teams in cybersecurity best practices. Designing, developing, and maintaining secure security systems in a hybrid environment.
Apprentice Fire and Security Engineer installing, commissioning, and maintaining electronic protection systems for Johnson Controls. Collaborating in a team - based environment and gaining hands - on experience in fire and security technology.
Senior Security Architect providing security consulting and risk assessment at The Missing Link. Leading initiatives in security architecture and technology risk support within a hybrid work environment.
Construction Site Superintendent overseeing construction projects for Johnson Controls, ensuring timely completion and adherence to project scope, budget, and schedule. Collaborating with teams and managing site activities in the United States.
Teaching and research role in Cybersecurity and AI at De Vinci School. Engaging in course design and research projects in a collaborative academic environment.
Data Protection Security Engineer at Fiserv designing, implementing, and maintaining cybersecurity solutions. Collaborating with teams to safeguard client information and ensure regulatory compliance.