Cybersecurity Officer ensuring end-to-end cybersecurity for Growe Talents in a leadership role. Overseeing security operations, defining strategies, and managing security teams in a dynamic environment.
Responsibilities
Own end-to-end cybersecurity, information security, and IT security across the company, covering both internal security (breach attempts, internal network monitoring) and product security (product-related threats and risks);
Define, evolve, and execute the company-wide cybersecurity strategy and security roadmap aligned with business and product priorities;
Establish and enforce security policies, standards, procedures, and organization-wide security controls;
Lead security risk management, including risk assessments, risk register ownership, and mitigation planning;
Ensure compliance with regulatory and industry standards (e.g., GDPR, ISO 27001, SOC 2) and manage internal/external audits;
Oversee secure architecture across cloud infrastructure, applications, SDLC, and IAM, including review of critical architectural decisions;
Define and enforce security standards for encryption, key management;
Own security operations, including monitoring, detection, response capabilities, and incident response for critical (P0/P1) events;
Drive Application Security and DevSecOps practices (SAST, DAST, SCA, CI/CD security controls, threat modeling) in collaboration with engineering teams;
Oversee IAM, endpoint, and workforce security, including access control models, EDR strategy, device security, and joiner/mover/leaver processes;
Lead fraud prevention, vendor security, and internal/external abuse investigation processes, while managing security KPIs, reporting, budget, and team scaling;
Manage a cybersecurity team, including Cloud Security, SOC, Application Security / DevSecOps, Endpoint Security, IAM, and Information Security functions.
Requirements
7+ years of experience in cybersecurity, or similar role;
Experience in a leadership role;
Strong expertise in cloud security (AWS, GCP, or Azure);
Solid understanding of application security and secure SDLC practices;
Hands-on experience with SIEM, EDR, and incident response processes;
Deep knowledge of identity and access management models (RBAC, ABAC, least privilege);
Experience working with compliance frameworks such as ISO 27001, SOC 2, and GDPR;
Proven track record of building and scaling security programs in growing organizations;
English - upper-intermediate or higher (able to communicate in technical discussions).
Benefits
Health & Wellness Focus;
Global Medical Coverage;
Growth Opportunities;
Benefits Programs (compensation for the gym/stomatology/psychological service & etc.);
Hiring a Threat Modeler / Security Architect with development background for hybrid full - time role in Canada, focusing on application security, threat modeling, and DevSecOps.
Network and Perimeter Security IT Specialist I at Enbridge overseeing enterprise security architecture and leading large - scale security initiatives. Collaborating across teams to ensure secure solutions and compliance.
Network & Perimeter Security Specialist II - Firewall at Enbridge enhancing security architectures. Providing technical leadership and driving enterprise standards for firewall and network security.
Lead critical cybersecurity transformation programmes at Hewlett Packard Enterprise, ensuring alignment with enterprise priorities and delivering complex initiatives. Collaborate with IT, cybersecurity, and business leaders.
Staff Engineer responsible for designing scalable security solutions and collaborating with engineering at Twilio. Empowering security partnerships across products and platforms while mitigating risks.
Head of Infrastructure & Security responsible for cloud infrastructure on GCP and security programs. Leading SaaS development and technical teams at Rebus and Longbow Advantage.
Information Security Lead responsible for managing security programs at Dentons Canada. Overseeing security architecture, operations, incident response, and data protection initiatives.
Cybersecurity expert overseeing information defense, threat detection, and incident response at Investissement Québec. Leading security operations and leveraging AI for effective asset protection.
Lead cybersecurity initiatives and develop strategy for public broadcaster CBC/Radio - Canada. Shape technology road map, collaborate on enterprise architecture, and ensure policy compliance.