Senior Cyber Security Specialist
Description:
Requisition ID: 182850
Career Group: Corporate Office Careers
Job Category: IT Cyber Security Operations
Travel Requirements: 0 - 10%
Job Type: Full-Time
Country: Canada (CA)
Province: Nova Scotia; Alberta; British Columbia; Ontario
City: Stellarton / Calgary / Vancouver / Mississauga
Embark on a rewarding career with Sobeys Inc., celebrated among Canada’s Top 100 employers, where your talents contribute to our commitment to excellence and community impact.
Our family of 131,000 employees and franchise affiliates share a collective passion for delivering exceptional shopping experiences and amazing food to all our customers. Our mission is to nurture the things that make life better – great experiences, families, communities, and our employees. We are a family nurturing families.
A proudly Canadian company, we started in a small town in Nova Scotia but we are now in communities of all sizes across this great country. With over 1,600 stores in all 10 provinces, you may know us as Sobeys, Safeway, IGA, Foodland, FreshCo, Thrifty Foods, Lawtons Drug Stores or another of our great banners but we are all one extended family.
Ready to Make an impact?
We’re expanding our Cyber Security team as we embark on a five-year transformation to bring our Security capabilities to the next level.
Location - This role can be based out of one our main offices including: Stellarton, NS; Mississauga, ON; Calgary, AB.
In this exciting role, your main responsibilities and/or function within the Cyber Security Operations team will be to possess the technical acumen to successfully execute threat modeling & related tools, DevSecOPS integration, and expert knowledge in SAST / DAST tooling/processes/procedures. This means that you will have intimate knowledge and experience regarding the software development life cycle (SDLC) and integration of application security into the Along with co-ordinating Penetration Testing activities with external Vendors. This will account for at least 70-80% of your day-to-day activities / responsibilities.
In addition to the above, you will be working alongside a team of high performing, 24x7 on-call Cyber Security Operations professionals who are skilled and knowledgeable regarding all facets of Cyber Security and technology. You will be performing investigative research, analysis and troubleshooting to identify, resolve, and report complex Cyber Security related issues and/or incidents. This includes carrying out risk analysis and evaluating mitigation strategies for Cyber Security vulnerabilities all while conducting threat simulations to detect possible risks and provide recommendations.
Lastly, you are skilled at understanding and following written risk and compliance policies /procedures to provide proper guidance to the business and our stakeholders.
Here’s where you’ll be focusing:
We are on a journey to completely transform how we do business, and we offer a hybrid work model with the opportunity for additional flexibility.
Join us and you’ll be working with:
Excited about developing cyber security requirements into multi-year, complex programs / projects to ensure security is embedded at the onset of any project.
Take pride in your ability to protect complex technology ecosystems from increasingly sophisticated threats.
Are confident in your ability to learn new technologies and easily adapt to a constantly evolving threat risk environment.
This is an outstanding opportunity to join a leading Canadian company with a clear vision of their future in Cyber Security. Are you ready to be part of this success story? #cyberatsobeys #DigitalatSobeys #LI-Hybrid
What you have to offer:
What you bring to the table:
Collaboration with development and project teams to assess application security requirements and define security controls.
Ability to co-ordinate penetration testing activities to identify application security vulnerabilities.
Ensure secure deployment practices are followed during the release and deployment phases.
Provide security guidance and recommendations to development teams on secure coding practices and vulnerabilities.
Expert in all facets of application security including: SAST/DAST testing, threat modeling and working with the development team/s on the remediation plans of known vulnerabilities
Expert in the continuous monitoring and improvement of an organization's security posture while preventing, detecting, analyzing
Experienced in supporting the evolution of a Cyber Security Operations program through continuous updates to Cyber-related documentation including incident playbooks, policies, standards, procedures, and guidelines
Technical expertise working in multi-cloud (Azure, GCP etc.) security environments.
Ability to understand emerging Cyber Security threats and risks to our cloud and on-prem environments and develop solutions to mitigate.
Excellent communication skills, analytical thinking skills and ability to work in a fast-paced environment.
Enjoys working in collaboration with our internal Cyber Security teams to constantly improve and evolve our Cyber Security Operations program to be best of breed.
What you have to offer:
Mandatory:
An undergraduate degree or diploma in computer science, engineering, or related technical discipline.
4-5+ years of industry experience working in Cybersecurity operations.
3+ years of experience with SAST and DAST, DevSecOps and SDLC.
Nice To Have:
CSSLP, OSCP, or GIAC are preferred.
Experience creating scripts (ie. Python) to automate manual processes.
Knowledge working in a complex retail technology environment, is desired.
1+ year securing multi-cloud (Azure, GCP…etc.) environments.
Familiarity providing Cyber operations sustainment criteria and provide input as part of large-scale business-related projects.
At Sobeys we require our teammates to have the ability to adhere to a hybrid work model that requires your presence at one of our office locations at least three days per week. This requirement is integral to our commitment to team collaboration and the overall success of our office culture.
We offer a comprehensive Total Rewards package, which varies by role and designed to help our teammates to live better – physically, financially and emotionally.
The salary range for this position in British Columbia is $91,666.00 - $119,000.00 . We will consider factors such as your working location, work experience and skills as well as internal equity, and market conditions to ensure that you are paid fairly and competitively.
Our Total Rewards programs, for full-time teammates, goes well beyond your paycheque:
Competitive Benefits Package, tailored to meet your needs, including health and dental coverage, life, short- and long-term disability insurance.
Access to Virtual Health Care Platform and Employee and Family Assistance Program.
A Retirement and Savings Plan that provides you with the opportunity to build and add value to your savings.
A 10% in-store discount at our participating banners and access to a wide range of other discount programs, making your purchases more affordable.
Learning and Development Resources to fuel your professional growth.
Parental leave top-up
Paid Vacation and Days-off
We are committed to accommodating applicants with disabilities throughout the hiring process and will work with applicants requesting accommodation at any stage of this process.