Senior IT Security Engineer at NEAR Foundation leading information security program and compliance initiatives. Partnering with IT teams for secure architectural design and risk management.
About the role
- Security Advisor Specialist responsible for identifying and mitigating information security risks. Providing guidance on security practices and collaborating with development teams to ensure compliance.
Responsibilities
- Identify security events that need to be monitored.
- Advise and support our team in all stages of development.
- Ensure key risk metrics/indicators are developed and implemented to systematically measure and report information-related risks.
- Identify and classify the risks then propose risk mitigation or remediation.
- Analyze the risks associated with the various options available and propose a security solution to the operational issue that offers a fair balance between potential losses and the cost of the solution.
- Identify gaps in IT compliance control and supervise the documentation, implementation and tests for the entire IT compliance control portfolio.
- Monitor the latest industry trends and, where appropriate, proactively propose the introduction of new security practises and technologies when they become profitable.
- Perform or coordinate application security tests for project teams.
- Interpret the results of application security tests (code scanning, application intrusions, etc.).
- Inform and educate development teams with regard to the application security development standards, methods and tools.
Requirements
- University degree in information security or any combination of equivalent education and experience
- Minimum 8 years of relevant experience in information technology, more specifically in information technology security
- Security certification would be an asset
- Strong knowledge of application security principles and practices
- Strong and practical knowledge of Cloud environment in terms of Security risk and tools available in AWS or other cloud environment
- Experience in a DevSecOps - CI/CD environment
- Good understanding of common security gaps in data and cloud applications and of operating techniques from sources such as SANS, OWASP Top 10 and Cloud Security Alliance (CSA)
- Good understanding of common security gaps in data/AI applications
- Team player / good collaboration skills set
- Strong ethical principles and understanding of business and information security ethics
- For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country.
- No Canadian work experience required however must be eligible to work in Canada.
Benefits
- Flexible work arrangements and a hybrid work model
- Possibility to purchase up to 5 extra days off per year
- Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more
- Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Bilingual Security Director for International SOS driving revenue growth of health security subscription services in Canada. Supporting consulting, training, and managed services with trusted client relationships.
Program Manager driving complex engineering projects within the Product Security organization at CrowdStrike. Collaborating cross - functionally to ensure timely delivery of security solutions across product portfolios.
Security Engineer focused on matching technology opportunities with customer business objectives at Tenable. Delivering technical presentations and driving successful customer engagements in cybersecurity solutions.
Business Development & Capture Lead for Global Spatial Technology Solutions driving revenue growth in defence sector. Engaging senior stakeholders and leading proposal development across global markets from a remote location.
IT & Security Specialist managing IT operations, security, and infrastructure for Senstar, a leader in security technology. Hands - on role blending end - user support, cybersecurity, and infrastructure management.
HR Systems Security Specialist responsible for design, configuration, and administration of security within Workday and SAP. Collaborating with HR and stakeholders to ensure effective access design and compliance.
Cybersecurity advisor working within the DCYB to develop IT security measures. Collaborating with teams to fortify cybersecurity posture and ensuring data protection for citizens.
Consultant in remuneration and occupational health and safety at the Quebec Federation of Municipalities. Ensuring employee needs match organizational requirements and promoting a safe work environment.
Cybersecurity Administrator providing operational support for compliance activities in information security. Assisting vendor risk management, audit coordination, and vulnerability tracking.