Senior Cyber Security Specialist

Requisition ID : 190778

Career Group : Corporate Office Careers

Job Category : IT Cyber Security Operations

Travel Requirements : 0 - 10%

Job Type : Full-Time

Country : Canada (CA)

Province : Nova Scotia

City : Dartmouth

Location : Dartmouth Office

Embark on a rewarding career with Sobeys Inc., celebrated among Canada’s Top 100 employers, where your talents contribute to our commitment to excellence and community impact.

Our family of 128,000 employees and franchise affiliates share a collective passion for delivering exceptional shopping experiences and amazing food to all our customers. Our mission is to nurture the things that make life better – great experiences, families, communities, and our employees. We are a family nurturing families.

A proudly Canadian company, we started in a small town in Nova Scotia but we are now in communities of all sizes across this great country. With over 1,600 stores in all 10 provinces, you may know us as Sobeys, Safeway, IGA, Foodland, FreshCo, Thrifty Foods, Lawtons Drug Stores or another of our great banners but we are all one extended family.

Ready to Make an impact?

We are seeking a Senior Cybersecurity Specialist with a balanced expertise across application security, offensive security, and strategic risk leadership. This role is critical in supporting enterprise-wide penetration testing through vendor partnerships, leading internal attack surface management initiatives, and helping shape detection capabilities through purple teaming. The ideal candidate possesses in-depth technical skills, effective cross-team leadership, and the ability to translate offensive security insights into actionable, enterprise-wide risk reduction strategies.

Sobeys is full of exciting opportunities, and we are always looking for bright new talent to join our team! We currently have a full-time opportunity for a Senior Cyber Security Specialist. This role can be based out of one of our main offices including: Mississauga, ON, or Calgary, AB.

Here’s where you’ll be focusing :

Key Responsibilities :

1. Application Security Advisory

• Provide strategic oversight of SAST / DAST / SCA implementations across development environments.
• Advise engineering and DevOps teams on secure coding and practices.
• Coordinate secure SDLC improvements with development and product teams.

2. Penetration Testing

• Coordinate and lead third-party penetration testing efforts, including web app, cloud, infrastructure, and APIs.
• Collaborate with vendors on scoping, onboarding, and engagement execution.
• Triage, validate, and prioritize vulnerabilities; communicate risk and remediation plans to stakeholders.

3. Attack Surface Management

• Operate and manage tools for attack surface monitoring.
• Own the ASM strategy and exposure tracking across business units.
• Work directly with IT, cloud, and security teams to address high-risk exposures.

4. Purple Teaming and Threat Simulation

• Design and execute purple team exercises with defensive teams (SOC, IR).
• Use MITRE ATT&CK and threat intel to simulate real-world adversary behaviours.
• Support defence teams through rule creation, alerting, and threat-hunting methodologies based on purple teaming outcomes.

LI-Hybrid

What you have to offer :

Required Skills and Qualifications :

• 3+ years in offensive or application security roles with increasing responsibility.
• Hands-on experience in AppSec, pen test collaboration, red / purple teaming, and ASM tooling.
• Deep knowledge of OWASP, MITRE ATT&CK, NIST CSF, and modern threat landscapes.
• Understanding of OSINT.
• Programming / scripting experience.
• Proven ability to lead vendor engagements and translate technical results into business risk.
• Support strategic initiatives to improve risk posture and offensive readiness.
• Excellent collaboration, critical thinking, and communication skills.
• Mentor junior team members and help shape internal offensive security processes.

Preferred Certifications :

• OSEP, OSWE, GWAPT, GPEN, CRTP

At Sobeys, we require our teammates to have the ability to adhere to a hybrid work model that requires your presence at one of our office locations at least three days per week. This requirement is integral to our commitment to team collaboration and the overall success of our office culture.

We offer a comprehensive Total Rewards package, which varies by role and is designed to help our teammates live better – physically, financially, and emotionally.

Some websites share our job opportunities and may provide salary estimates without our knowledge. These estimates are based on similar jobs and postings for general comparison, but these numbers are not provided by our organization nor monitored for accuracy.

We will consider factors such as your working location, work experience, and skills, as well as internal equity and market conditions, to ensure the selected candidate is paid fairly and competitively. We look forward to discussing the specific compensation details relevant to this role with candidates who are selected to move forward in the recruitment process.

Our Total Rewards programs for full-time teammates go well beyond your paycheck :

• Competitive Benefits Package, tailored to meet your needs, including health and dental coverage, life, short- and long-term disability insurance.
• Access to Virtual Health Care Platform and Employee and Family Assistance Program.
• A Retirement and Savings Plan that provides you with the opportunity to build and add value to your savings.
• A 10% in-store discount at our participating banners and access to a wide range of other discount programs, making your purchases more affordable.
• Learning and Development Resources to fuel your professional growth.
• Parental leave top-up.
• Paid Vacation and Days off.

We are committed to accommodating applicants with disabilities throughout the hiring process and will work with applicants requesting accommodation at any stage of this process.