Product Owner driving evolving proactive security services portfolio across Risk Advisory, Application Security, and Cloud & AI Security. Collaborating with technology stakeholders to deliver high-value outcomes.
Responsibilities
Own and communicate the product/service vision, objectives, and success measures for proactive security services; translate strategy into a clear, sequenced roadmap.
Partner with technology stakeholders and security leads to shape, break down, and prioritise threat modelling, risk advisory, application security, and cloud security work based on risk, impact, urgency, complexity, and customer value.
Manage intake and backlog end-to-end: triage and qualify requests, define acceptance criteria, maintain a healthy backlog, set service-level expectations, and make priority trade-offs explicit.
Coordinate delivery planning with delivery leads/teams: ensure work is ready, aligned to capacity, and delivered against objectives and definitions of done.
Where needed, lead agile planning for development initiatives: define epics and user stories, align on scope and outcomes, support estimation, and keep delivery focused on the highest-value increments.
Establish and maintain trusted reporting: track demand, throughput, cycle/lead time, predictability, volumes, and SLA/SLO performance; provide regular updates on progress, risks, dependencies, and decisions required.
Partner with management on capacity and funding conversations: communicate assumptions, highlight constraints early, and propose options to meet objectives.
Drive continuous improvement across the service (e.g., reduced lead times, improved SLA attainment, reduced backlog aging, increased predictability, reduced risk, improved stakeholder satisfaction).
Maintain visibility of key risks, vulnerabilities, and issues; connect work to risk registers and delivery governance; and drive mitigation plans through to completion.
Support Monthly Business Reviews (MBRs) by preparing service performance insights, trends, priorities, key risks, and improvement actions.
Build, maintain, and continuously improve knowledge bases (e.g., operating procedures, templates, playbooks, and intake/runbooks,) to ensure consistent, repeatable delivery.
Requirements
5+ years of experience as a Product Owner, Product Manager, Delivery Lead, Scrum Master, or similar role supporting technology or security teams.
Degree in computer science, engineering, project management, or an equivalent combination of education and experience.
Asset: security or risk-focused certifications (e.g., CISSP, CRISC, CISA, CCSK, CCSP, Security+, GSEC, GDSA, GCLD, CSSLP, or similar).
Strong working knowledge of Scrum and/or Kanban, and continuous improvement practices (Lean, Lean Six Sigma, flow/WIP management).
Strong analytical capability in service management metrics, forecasting, and prioritisation.
Experience building and maintaining dashboards and metrics (throughput, cycle/lead time, WIP aging, SLA/SLO performance).
Experience applying data-driven forecasting methods (e.g., Monte Carlo, capacity/scenario planning) to improve predictability and prioritisation.
Proven ability to align stakeholders and drive outcome-focused delivery in a service-based environment.
Excellent communication, facilitation, and stakeholder management skills; comfortable making and explaining priority decisions.
Comfortable operating in a fast-paced, changing environment and adapting plans while keeping stakeholders aligned.
Strong problem-solving, negotiation, and conflict-resolution skills, with the ability to surface and resolve blockers through influence and escalation as needed.
Practical experience with tools such as Jira, Confluence, and ServiceNow (or equivalent) to manage intake, backlogs, dashboards, and reporting.
For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country.
No Canadian work experience required however must be eligible to work in Canada.
Benefits
Flexible work arrangements and a hybrid work model
Possibility to purchase up to 5 extra days off per year
Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more
Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)
Head of Infrastructure & Security responsible for cloud infrastructure on GCP and security programs. Leading SaaS development and technical teams at Rebus and Longbow Advantage.
Information Security Lead responsible for managing security programs at Dentons Canada. Overseeing security architecture, operations, incident response, and data protection initiatives.
Cybersecurity expert overseeing information defense, threat detection, and incident response at Investissement Québec. Leading security operations and leveraging AI for effective asset protection.
Lead cybersecurity initiatives and develop strategy for public broadcaster CBC/Radio - Canada. Shape technology road map, collaborate on enterprise architecture, and ensure policy compliance.
Senior Product Security Consultant at CENSUS LABS evaluating software security and threats. Responsible for validating security compliance and reporting on risks in complex systems.
Container Security Consultant needed for 12 - month contract with enterprise bank in Toronto. Must have strong container security experience with OpenShift, Docker, Kubernetes.
Technical Program Manager managing security programs aligned with security strategy at Guidewire. Collaborating with various stakeholders to enhance security maturity and efficiency.
Senior IT Architect specialized in Security & Networking infrastructure technologies leading architecture development for technology projects. Collaborating with multiple teams to ensure alignment with strategic objectives.
Director of IT Security leading the cybersecurity strategy for a remote workforce at Directive Consulting. Responsible for risk management, incident response, and compliance initiatives.