Senior Defensive Security Advisor at Desjardins identifying and mitigating threats across systems and networks. Leading complex initiatives and collaborating with stakeholders for effective security posture.
About the role
- Take ownership of the firm’s Information Security function and maintain/improve its security posture
- Take the lead in responding to customer security questionnaires or audit follow-ups
- Oversee our regular ISO27001 and SOC 2 Type II audits
- Research and choose technical tools to proactively detect and respond to weaknesses, threats and potential compromises
- Lead the development, implementation, and continuous improvement of information security practices across all teams
- Manage regular pentests by external consultants and coordinate with internal resources to remediate issues
- Information security risk assessment of third-party service providers
- Offer guidance, direction and approval on security solutions and approaches
- Advocate for secure engineering best practices throughout the company
- Manage the standards, policies and guidelines of the InfoSec frameworks
- Maintain an on-going information security awareness program
- Monitor our SIEM, and maintain useful reports and alerts in the system
Requirements
- Significant industry experience in a technical security role (Security Engineering or Application Security Engineering)
- Experience speaking to customers and establishing a good working relationship with infosec counterparts at major financial institutions
- Strong technical intuition, with an ability to partner with engineering to evaluate and develop good security standards
- Take a risk-based approach when suggesting improvements, or proposing fixes
- Ability to perform design reviews and/or technical assessments of software and infrastructure
- Excellent knowledge of InfoSec, risk management and governance, data protection
- Programming/scripting experience, especially to automate repetitive tasks
- Used to multi-tasking and working in a fast-paced environment
- Proven ability to identify and articulate information security requirements, risks and issues, and to make clear decisions / recommendations
- Ability to understand business drivers and risk appetite and align information security compliance accordingly
- Strong ability to communicate clearly and simply, both verbally and in writing
Benefits
- Annual discretionary performance bonus
- Hybrid working policy
- Office lunches twice a week
- Aviva private medical insurance + Unum dental cover
- Extended parental leave (up to 6 months of fully paid maternity leave)
- 25 days annual leave + bank holidays
- Enhanced company pension plan
- Salary sacrifice scheme
- 5 days study leave towards professional qualifications
- Cycle to Work & Techscheme
- Death in service coverage
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Location requirements
Life and health insurance financial security advisor serving clients by providing advice and maintaining business relationships. Focused on sales of insurance products and services based on client needs.
CE
Care New EnglandDirector, Security
Director of Security overseeing all safety and security operations for Women & Infants Hospital. Responsible for deterring crime, protecting premises, and managing transport services.
Responsable Pôle Sécurité Médiation Fraude managing security operations for public transport services in Metz. Ensuring safety and compliance while optimizing fraud prevention strategies.
RB
Cyber Security Engineer at Regions focusing on cloud and infrastructure security. Designs and implements cybersecurity solutions while providing technical support and guidance.
CA
Capital.comIAM Security Engineer
IAM Security Engineer focusing on identity and access management automation in a dynamic digital assets company. Contributing to scaling IAM infrastructure through automated solutions and secure user lifecycle management.
FC
Ford Motor CompanySecurity Systems Data Integration Specialist
Data Analyst joining Ford's team to focus on security technologies and data integration. Responsible for improving data operations across global infrastructure and complex requests.
FC
Ford Motor CompanyMobile App Product Manager, Vehicle Security
Digital Product Manager at Ford creating connected vehicle experiences through integrated hardware and software solutions. Collaborating with teams to enhance customer experience through new digital products.
Cybersecurity Engineer implementing Zero Trust Reference Architecture solutions at Mythics. Deploying and maintaining Forescout platform within secure environments.
WA
WattpadSecurity Governance Manager
Security Governance Manager at WEBTOON responsible for IT and Security governance framework. Collaborating with Legal, Product, and Engineering teams in Los Angeles headquarters.