Compliance Specialist assessing cybersecurity compliance for TC Energy. Collaborating with teams on security standards and regulatory requirements.
About the role
- Security Analyst overseeing vulnerability management within Intact Financial Corporation. Assessing risks and improving remediation processes through Python automation.
Responsibilities
- Join our vulnerability management team as an experienced security analyst.
- You will be an expert in assessing and tracking infrastructure vulnerabilities, technology obsolescence, and security configurations, leveraging Python automations to accelerate analysis, prioritization, and remediation.
- Your primary mission is to analyze risks, orchestrate remediation, and industrialize the process through Python scenarios and tools.
- Serve as the principal expert in infrastructure vulnerabilities, software obsolescence management, and configuration standards (CIS Benchmarks), with a focus on Python-based automation.
- Analyze, prioritize, and triage threats (CVE/CVSS, obsolescence, configuration drift) and develop Python workflows to correlate findings, enrich data (platform APIs), and generate reports.
- Collaborate closely with system administrators and application teams to interpret analysis results and validate remediation plans, enabling these steps through automation.
- Coordinate remediation with systems/network/cloud and application teams; remove technical blockers; manage exceptions and risk compensations, measuring progress via Python-generated dashboards.
- Ensure adherence to security timelines by setting up automated alerts, metrics, and tracking.
- Advise technical teams on remediation best practices and explain the impact of identified risks, relying on evidence and indicators from Python-developed tools.
- Continuously improve the process (lightweight automations and data pipelines), aligned with CIS Benchmarks, NIST CSF, ISO 27001, and internal governance.
Requirements
- Studies in computer science, cybersecurity, IT management, or equivalent experience.
- Minimum of 5 years of relevant experience in information security as a security analyst (vulnerability management, remediation coordination, risk prioritization).
- Mastery of CVE, CVSS, technology obsolescence, and configuration standards (CIS Benchmarks).
- Strong experience in Python development applied to security: scripting, platform APIs (Tenable, Qualys, Rapid7, CrowdStrike, Prisma Cloud), data transformation (CSV/JSON), automated reporting and dashboards.
- Proven experience in project coordination, priority management, and tracking complex cases involving multiple teams.
- Good understanding of operating systems and networks.
- No Canadian work experience required however must be eligible to work in Canada.
- For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country
Benefits
- Flexible work arrangements and a hybrid work model
- Possibility to purchase up to 5 extra days off per year
- Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more
- Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Cybersecurity Compliance Analyst at PCL Constructors Inc. developing and supporting cybersecurity compliance initiatives and governance activities in Edmonton.
Threat Intelligence Analyst role analyzing cyber threats and providing strategic recommendations. Working with cybersecurity teams at PwC Canada to safeguard client data and systems.
Cybersecurity Analyst monitoring security systems and mitigating threats at Vosyn, a pioneering AI firm. Engaging in hands - on experience and collaboration with senior management.
LP
InfoSec Analyst
LinkedIn Recruiter Post
InfoSec Analyst contract in Toronto (Hybrid). 8 years experience with ServiceNow, Splunk, risk frameworks, and vulnerability management required.
Senior Security Analyst at McCarthy Tétrault in Canada focusing on security and IT compliance initiatives. Collaborating with teams on incident response and vulnerability management in a hybrid workspace.
Security Analyst providing technical client support in Managed Security Services at CDW. Monitoring security alerts and incidents while fostering trust and loyalty with clients.
LP
CyberSecurity Coordinator
LinkedIn Recruiter Post
Cybersecurity Coordinator for a top 5 bank. 6 - month contract, 2 days/week on - site in GTA, requires 5 - 8 years technical/security experience.
LP
Security Specialist
LinkedIn Recruiter Post
Temporary Security Specialist supporting Microsoft security assessment for public sector client. Hybrid role focusing on security posture improvement and implementation planning.
LP
Junior Cybersecurity Analyst
LinkedIn Recruiter Post
Junior Cybersecurity Analyst role in Toronto, working with senior leadership in a growing Cyber division. Requires understanding of cyber principles, diligent personality, and some complex environment experience.