Posted 23 days ago
Security Engineer (Remote First)
AI Summary
Senior security engineer responsible for maintaining the company-wide information security program, conducting risk assessments, overseeing threat and vulnerability management, incident response, and security awareness training across the organization.
About this role
We are looking for a Security Engineer to join our IT Team! Reporting to the Associate Director, IT, you will support our company-wide information security management program to ensure information assets are adequately protected.
You will proactively work with Zensurance's business units to implement practices that comply with defined information security policies and standards. The role also assists with a variety of IT-related risk management activities and provides day-to-day support for information security programs and initiatives.
As a senior individual contributor, you will collaborate closely with the Associate Director of IT to coach and mentor colleagues across the organization. You'll play a key role in supporting the Technology Leadership Team with employee training and development initiatives, aiming to continuously improve the team's technical capabilities and delivery excellence.
Responsibilities:
Support and maintain the company-wide information security program, including policies, standards, and guidelines.
Facilitate IT risk assessments with business units and help define acceptable levels of residual risk.
Monitor the external threat environment and advise stakeholders on emerging risks.
Manage day-to-day threat and vulnerability management, including detection, response, and remediation.
Coordinate incident management and support disaster recovery and business continuity planning.
Liaise with engineering, IT, and enterprise architecture teams to embed security into system design and selection.
Produce regular reporting and metrics on program effectiveness for leadership and stakeholders.
Oversee security testing procedures and manage remediation of identified risks.
Ensure audit trails and system logs comply with policy and audit requirements.
Lead security awareness training across the organization.
Requirements:
5+ years of experience in Information Security.
Hands-on experience with information security frameworks: CIS Controls v8, NIST, ISO 27001, SOC 2, PIPEDA, or PCI.
Experience writing cybersecurity policies and conducting security gap analyses.
Experience translating business stakeholder needs into technical security requirements.
Experience with cloud security controls (AWS or equivalent).
Familiarity with security platforms such as CrowdStrike and Mimecast.
Experience working alongside legal, audit, and compliance teams.
Strong written and verbal communication skills — able to engage technical and non-technical audiences.
University degree or college diploma in Information Security, Cybersecurity, or a related field (or equivalent experience).
Nice to have:
Bachelor's in Information Systems; MBA or MS in Information Security preferred.
Security certifications: CISSP, CISA, CISM, GIAC, CBCP, MBCI, or similar.
Experience in an agile, fast-paced environment.
Skills
Explore related jobs
More jobs at Zensurance
- Senior Software Developer (Remote First)Toronto, ON
- Learning and Development Specialist (Contract, Remote First)Toronto, ON
- Tech Lead (Remote First)Toronto, ON
- Team Lead, Engineering (Remote First)Toronto, ON
- Senior Manager, Customer Operations (Remote First)Toronto, ON
- Email Marketing Manager (Remote First)Toronto, ON
Similar Audit/compliance Reporting jobs
Jobs in Toronto
Senior Customer Service Representative - medical sectorSecurian Canada · Toronto, ON- Claims Care RepresentativeSecurian Canada · Toronto, ON
- Compliance SpecialistSecurian Canada · Toronto, ON
- Actuary, Product and PricingSecurian Canada · Toronto, ON
Business Intelligence AnalystGS1 Canada · Toronto, ON- Governance CoordinatorGS1 Canada · Toronto, ON