Senior IT Security Engineer (BCP)

Join to apply for the Senior IT Security Engineer (BCP) role at goeasy Ltd.

Join one of Canada’s fastest-growing companies and be part of something extraordinary – welcome to goeasy! Our people and culture are at the heart of everything we do, recognized through awards like Waterstone Canada’s Most Admired Corporate Cultures, Canada’s Top Growing Companies, and the TSX30. We are committed to fostering an inclusive, high-performance culture where talent thrives and innovation drives us forward.

As a Senior IT Security Engineer, reporting to the Director of Cyber Defence, you'll play a key role in protecting our digital assets. Responsibilities include supporting our Business Continuity Planning (BCP) program, developing SOC playbooks, managing security tools like Sentinel One and Splunk, conducting vulnerability assessments, and collaborating with cross-functional teams to ensure robust security operations. If you're passionate about cybersecurity, join us and make a significant impact.

• Administer and support the BCP program.
• Develop BCP processes, activities, and support.
• Provide support and guidance during crises or disruptions.
• Develop and maintain SOC playbooks and execute BCP policies, procedures, and plans.
• Utilize SOC tools, including EDR/MDR, SIEM, ticketing, and vulnerability management tools (preferably Sentinel One, Splunk, Tenable).
• Configure and manage Sentinel One policies, rules, and alerts.
• Monitor and analyze endpoint security events, identify incidents, and respond accordingly.
• Manage event correlation and decision-making tools like Splunk, Tenable, and Sentinel One.
• Collaborate to ensure effective integration of security tools.
• Conduct vulnerability assessments and endpoint security audits.
• Manage and enhance DLP policies in Azure and O365.
• Manage phishing and spam policies.
• Support and guide junior engineers in managing security tools.

• Bachelor’s degree in Information Technology or Cyber Security.
• Relevant certifications such as SentinelOne Certified Engineer (preferred).
• Certifications: CISSP (preferred), CCSP, CISM, CISA, and scripting knowledge (PowerShell/Python) are good to have.
• Experience with BCP development and support.
• Familiarity with Azure Advisor, Mx Tool, Tenable, Zero Fox, Splunk is highly desirable.
• Cyber incident response experience is a plus.
• Experience with Azure data-lakes, Windows SQL, or PostgreSQL is beneficial.
• Prior experience as an Information Security Architect is a significant asset.
• Experience working in PCI DSS and SOC 2 compliant environments is highly valued.
• On-call rotation availability, 24/7, one week/month.

We offer a Flexible Work Program allowing work three days onsite per week at our Mississauga office.