Senior Security Advisor

We are looking for a Senior Security Advisor to join BrokerLink in one of our offices in Alberta, Ontario, or Atlantic region on a Permanent FT Basis to serve as part of the Cybersecurity team. This role will be involved in leading, implementing and supporting various security objectives across the organization and serve as subject matter expert to support the overall security program.

As part of our employee promise, here are some of the many perks of working with us :

• Flexible health and dental insurance benefits package
• Personal Spending amount to invest in your healthy lifestyle
• RRSP - Registered Retirement Savings Plan with Company matching
• ESPP - Employee Share Purchase Plan (TSX : IFC) program with matching aspect
• Dress for your day’, dress according to your daily schedule
• Competitive compensation package with bonus aspect
• Employee discount program, including Apple, Bell, Rogers and more!
• Paid Time Off in the form of : Personal days, Volunteer days, Exam / Study Time, Jury Duty and starting at 3 weeks of vacation per year!
• Working for an employer who is regularly recognized as one of Canada’s best employers such as Kincentric 2024

What the Role Entails :

• Provide security engineering and support for projects, embedding security throughout the project lifecycle and collaborating with stakeholders to develop and implement security plans and processes.
• Lead and provide guidance on cloud security best practices, leveraging enterprise security solutions.
• Conduct security assessments for projects, third-party vendors, and acquisitions to ensure compliance with security policies.
• Prepare security reports and develop documentation to support risk mitigation efforts.
• Enhance the vulnerability management process, including detection and response activities.
• Support Identity and Access Management (IAM) programs using enterprise identity solutions.
• Integrate security into DevOps by ensuring secure coding, automated security scanning, and embedding security into the development pipeline.
• Assist Level 1 and Level 2 Security Analysts in investigating security incidents.
• Develop and implement information security metrics, measurement criteria, and reporting mechanisms to drive compliance and continuous improvement.
• Help design and test Disaster Recovery (DR) initiatives to ensure resilience against security threats.
• Support security audit requests, ensuring compliance with regulatory requirements and industry standards.
• Analyze threats, respond to incidents, remediate findings, and report security risks and remediation efforts to leadership.
• Contribute to the cybersecurity roadmap, helping prioritize security initiatives.
• Develop and maintain DLP rules and policies.
• Develop and maintain security policies, conduct risk assessments and monitor compliance.
• Design and manage network security solutions and enforce network security policies.
• Conduct comprehensive security gap analyses to identify vulnerabilities and areas of non-compliance within the organization's security posture.
• Continuously monitor and reassess the effectiveness of implemented security measures to ensure ongoing risk mitigation and compliance.

The Successful Candidate Will Have :

• Post-secondary education in IT, Computer Science, or a related field.
• 8+ years of experience in Information Security with hands-on technical experience
• Expertise in cloud security architecture and design.
• Strong background in security incident management, with the ability to lead investigations and coordinate response efforts to mitigate risk and ensure timely resolution of incidents.
• Experience implementing secure remote access solutions.
• Hands-on experience with endpoint security and threat detection solutions.
• Strong background in performing security assessments, documenting security findings, and providing actionable recommendations.
• Experience in vulnerability management, including threat prioritization and remediation.
• Expertise in Identity and Access Management (IAM).
• Strong knowledge of security standards and frameworks such as NIST and PCI DSS.
• Proven ability to guide and mentor junior team members.
• Strong communication skills to effectively convey complex security issues, risks, and strategies.

Preferred & Additional Skills :

• Certifications such as CISSP, CCSP, CISM
• CSP security certifications
• Incident Response and endpoint security certification(s) an asset
• Experience with SIEM platforms, including detection rule creation and log analysis.
• Experience with AI security tools and technologies.

BrokerLink is committed to providing an accessible environment. Accommodations are available on request for candidates taking part in the selection process.

BrokerLink is committed to creating and maintaining an inclusive environment which embraces our diversities and sees them as our strength! We want to foster a workplace that makes all our team members and customers feel welcome and appreciated.

At BrokerLink, we value diversity and are committed to creating an inclusive workplace that inspires each of us to be the best we can be. Join our team and make a difference!