Roche – Cloud Security Engineer – Mississauga, ON

Company: Roche

Location: Mississauga, ON

Expected salary:

Job date: Mon, 10 Feb 2025 23:11:58 GMT

Job description: Roche fosters diversity, equity and inclusion, representing the communities we serve. When dealing with healthcare on a global scale, diversity is an essential ingredient to success. We believe that inclusion is key to understanding people’s varied healthcare needs. Together, we embrace individuality and share a passion for exceptional care. Join Roche, where every voice matters.The PositionAnd as the world evolves, so do we. For over 125 years, we have taken on some of the most complex challenges in healthcare.At Roche, we foster a diversity of scientific approaches and embrace innovative ideas. Combining that with the seamless integration of our capabilities in Roche Pharma and Roche Diagnostics, we are uniquely positioned to achieve medical breakthroughs for patients and society. With our global spread of research, diagnostics and pharma development, data analytics and genomic insight teams, we are all working to translate science and research into groundbreaking therapies and diagnostics.The Opportunity:As a Cloud Security Engineer, you will be part of the Information Systems Security team at Roche. We are a team of 40 engineers distributed across the globe with expertise in Cloud Security, Endpoint Protection, Network Security, Remote Access Management, etc.In your day to day work, you will collaborate with a cross-functional product team to develop, operate and improve the platform and security capabilities needed to support the variety of solutions Roche is building in the Cloud. You will also work with the wider engineering team to bring solutions to challenges, while ensuring security is met at all times. You will work closely with the engineering teams to explain potential attack vectors and provide remediation recommendations.Collaborate with the team to enhance the security features and engineering capabilities of the Roche Cloud Platform, including automated deployment pipelines, secure controls, and abstraction layers to facilitate Cloud adoption.Utilize coding skills to implement automated security solutions and reduce manual operations.Participate in all stages of the software development lifecycle, from gathering requirements and discussing with the Product Owner/Customer to implementing and deploying security features using CI/CD.Serve as a security consultant and advocate for the Roche Cloud Platform.Contribute to software security architecture and provide insights for propositions, product designs, and service enhancements.Apply standard security frameworks for gap analysis and collaborate with the platform team and customers for resolution.Work with engineering teams to enhance security across the platform.Engage with the broader Security teams to continuously improve data protection within the platform.Assist the team in making decisions regarding technologies, development patterns, automation frameworks, and new approaches to enhance security adoption in the future.Who you are:Required qualifications (Cloud, Security and Development):Minimum 4 year Bachelor’s degree in IT or related fieldA minimum of 3 years of experience in security and a minimum of 3 years of experience in AWS Cloud (or familiar with GCP, Azure or Alicloud).Hands on experience with fundamental AWS cloud services such as networking, storage, database, and computing.Understanding of AWS security architecture design and the capability to develop reference implementations.Demonstrated hands-on experience in creating and implementing security features at a large scale in multi-tenant platforms using AWS native security services like GuardDuty, Security Hub, as Code etc.Understanding of the software development lifecycle, including CI/CD for deploying security mechanisms.Proficiency in Git, Terraform, and Python, and familiarity with Jenkins orand Rundeck.Excellent collaboration skills and the ability to collaborate with engineering teams to improve security practices.Problem-solving and decision-making skills.Experience with agile methodologies.Relocation benefits are not available for this posting.Who we areAt Roche, more than 100,000 people across 100 countries are pushing back the frontiers of healthcare. Working together, we’ve become one of the world’s leading research-focused healthcare groups. Our success is built on innovation, curiosity and diversity.Roche Pharma Canada has its office in Mississauga, Ontario and employs over 850 employees. The Mississauga facility is bright, vibrant, fosters collaboration and teamwork, and is reflective of Roche’s truly innovative culture.Roche is an Equal Opportunity Employer.

Securiguard – Lead Security Trainer/Instructor – Toronto, ON

Company: Securiguard

Location: Toronto, ON

Expected salary:

Job date: Mon, 10 Feb 2025 23:20:45 GMT

Job description: At Securiguard, we make people feel safe. Beyond cutting-edge security and safety services, we provide leading-edge customer service, all while caring for our people, our community, and our environment and for almost 50 years, and thousands of companies, that answer is Securiguard. Every day, our customers trust us with billions of dollars’ worth of property, and in many cases, their lives. Our philosophy is simple. We Make People Feel Safe. Our people believe they can make a difference, and they do.As part of our ongoing dedication to excellence, we are seeking a highly skilled full-time Lead Security Trainer/Instructor to design and deliver comprehensive training programs for security personnel across these diverse environments. Lead Security Trainer, will play a key role in developing, managing, and delivering training programs that equip our security officers with the critical skills and knowledge needed to excel. You’ll ensure all team members are fully prepared to tackle security challenges, emergencies, and customer service interactions with professionalism.Key Responsibilities:

  • Design and implement engagement, comprehensive training for both new recruits and experienced security personnel.
  • Lead hands-on, classroom, and scenario-based training in critical areas including:
  • Security procedures & emergency protocol
  • Emergency response and crisis management
  • Conflict de-escalation & verbal intervention
  • Defensive tactics and use of force
  • Report writing and incident documentation.
  • Customer service in security roles
  • Workplace violence prevention, HIPAA compliance (Healthcare), and more
  • Ensure all officers meet provincial and industry certification requirements.
  • Maintain training and certification records, conduct regular refresher courses.
  • Stay current on regulatory changes to keep training programs compliant.
  • Observe security officers in action to assess skills and professionalism.
  • Provide constructive feedback and implement performance improvement plans.
  • Use evaluations to fine-tune and optimize training programs.
  • Work closely with management and clients to customize training based on unique site needs.
  • Represent Securiguard at training seminars, conferences, and professional events.

Qualifications & Skills:

  • Minimum 2 years of experience as a security trainer/instructor.
  • Preferred experience in security, law enforcement, or military service.
  • Experience as a trainer in retail and healthcare environments would be considered an asset.
  • In-depth knowledge of security protocols, risk management, and emergency response within retail and healthcare environments.
  • Strong communication, public speaking, and instructional skills.
  • Proven leadership and mentoring abilities to train security personnel effectively.
  • Ability to assess threats, make quick decisions, and manage high-pressure situations.
  • Proficiency in incident documentation, report writing, and compliance with industry regulations.
  • Flexible availability, including occasional evenings, weekends, or on-call training.
  • Valid driver’s license and reliable transportation.
  • You must pass a background check to meet industry standards.

Security industry certifications & licenses:

  • Defensive Tactics – Tactical Baton (required)
  • Subject Restraint – Active/Passive (Handcuffing) – (required)
  • Managing Resistant Behavior (M.O.R.B) / Non-Violent Crisis Intervention (NVCI)- (required)
  • First Aid/CPR Instructor Certification & Notetaking/Report Writing
  • Guard Safety and Situational Awareness Training
  • Mental Health Awareness and Response (M.H.A.R.)
  • 2023 Public-Police Interactions Training Aid
  • Criminal Code Applications – TPA
  • Sharp-Edged Weapons Defense (SEWD)
  • Hospital Restraint (Pinel Restraints)

Who we are:At Securiguard we believe in living and acting by our values: R.E.A.C.H.Respect · Empathy · Accountability · Courtesy & · HonestyWe’re in the business of making people feel safe. We have proven expertise in deploying security and safety personnel in a variety of industries including Corporate, Retail, Property Management, Industrial, Aviation, Marine, Government, Educational, and Industrial/Resource Projects, and have the largest and highest accredited K-9 detection and screening division in Canada.With the ability to service clients across Canada including major centers, small towns, and remote locations by air, land, or sea, our team of 4000+ strong security and safety professionals provide people with a feeling of safety by offering a comprehensive selection of security services and solutions.We believe that diversity enables the company to grow towards a better future. By creating an environment which is inclusive and provides equal opportunity for all, ideas are generated which help to solve the problems of a changing and increasingly complex world. Our mission, vision, and values enabled us to be the 2021 & 2024 winners of Canada’s Most Admired Corporate Culture and a finalist of the 2021 Canadian HR Awards’ Excellence in Diversity & Inclusion category.

Nav Canada – Security Specialist – Ottawa, ON

Company: Nav Canada

Location: Ottawa, ON

Expected salary: $107682 – 135272 per year

Job date: Wed, 05 Feb 2025 06:00:40 GMT

Job description: Job Posting Title Security SpecialistJob Category IT SecurityLanguage Requirements English / AnglaisFlexible Work Agreement Type Remote / Travail à distancePosting End Date 2025-02-16Job Grade PIPSC-3Pay Range $107,682 – $135,272Job Summary We’re experts in navigating Canada’s skies. Keeping 18 million square kilometers of Canadian airspace safe is more than a job, it’s a calling. No matter our role, everything we do helps keep our skies safe. In keeping with our culture of safety first, reporting to the Manager of Cyber Security Programs and Governance, the Cyber Security Specialist will assist in providing support and coordination in areas of Cyber Security Awareness and Training Campaigns, Incident Response, Reporting and Policies.Job DescriptionWhat NAV CANADA offers you:Challenging, team-oriented work environmentCompetitive compensation and benefitsDefined benefit pension planOpportunities for growth and developmentFlexible work arrangementsDiverse and inclusive workforceKey Accountabilities:Performs monitoring, research, and analysis of cyber security threats and alerts to determine relevancy and urgency, initiating incident response processes when required.Monitors network, systems, and applications for malicious activity, responding to detected or reported cyber security incidents following defined procedures; escalates to other groups or senior resources as required.Reviews and collects data from security systems for further investigation.Enforces NAV CANADA’s cyber security policies and standards as well as assists in the development of new cyber security requirements.Develops and documents procedures for responding to common cyber security incidents.Generates metrics on the status of the cyber threat and the performance of the Security Incident and Event Monitoring program.Engages with other Technology teams while leading small projects related to the improvement of NAV CANADA’s cyber security posture.Collaborates with peers and external partners for the betterment of information sharing amongst various external cyber security groups.Works jointly with training teams on the development of annual mandatory training material for all NAV CANADA employees.Job RequirementsEducation:Graduation with an acceptable degree from a recognized university or community college with a specialization in computer sciences, systems engineering, or data analytics.Experience:5 years of professional experience in Information Technology or Data Analytics, with some background in Information Systems Security.Hands-on experience using information technology operational solutions such as Active Directory management tools, Security Information Event Management systems or malware prevention technologies.Experience analyzing IT incidents and identifying and escalating security incidents for response.Practical experience in the planning and delivery of small-scale projects, including the preparation of required documentation.Experience troubleshooting technical issues, conducting research, and presenting solutions to management.Knowledge:Technical skills and expertise in own functional area.Knowledge of NAV CANADA’s mandate, mission, and organization structure.Knowledge of incident response processes and best practices.Knowledge of security monitoring processes and best practices.Knowledge of systems logging and auditing processes and best practices.Knowledge of security event analysis.Abilities:Ability to provide expert advice, guidance, and opinions in area of specialization.Ability to coach others in field of expertise, problem solving, teamwork and innovation, relationship management issues; involve others in problem solving, decision-making, and creative thinking.Ability to influence others outside of the team to ensure goals are met.Ability to lead moderately complex projects as required.Ability to establish and communicate common goals and direction for team as required.Ability to communicate effective, both verbally and written.Personal Suitability:Effective in establishing and maintaining appropriate interpersonal relationships when dealing with team members, colleagues, and superiors.Seeks out new avenues for building internal and external relationships.Ability to maintain positive relationships with key customers, suppliers, etc., who have a significant impact on the success of the organization.Ability to resolve conflicts in an effective manner.Working conditions:There may be a requirement to work overtime.This position is classified as Remote-Distance with up to 4 trips per year to the Ottawa Logistics Centre.NAV CANADA is committed to building a skilled, diverse workforce reflective of Canadian society. If you do not believe that you match every job requirement listed on this job posting, we still encourage you to apply. NAV CANADA encourages a culture of learning and growth, and recognizes that although some technical skills are mandatory, many others can be taught.Our Company strives to create an inclusive and barrier-free selection process and work environment. If you require accommodations during this competition process, please ensure that you inform the interview coordinator or hiring manager of any accommodation measures you may require. NAV CANADA will provide accommodations throughout the recruitment and selection process to applicants with disabilities as required.The successful candidate must meet the security requirement of the position and be legally able to work in Canada.We thank all applicants for their interest; only those selected for an interview will be contacted.

Business Development Manager – Titan Security Group – Orlando, FL

Company: Titan Security Group

Location: Orlando, FL

Expected salary:

Job date: Thu, 06 Feb 2025 00:02:40 GMT

Job description: The Collaboration & Coordination role involves working closely with internal teams, such as Operations, Marketing, and Product Development, to align service offerings with client needs. This individual will collaborate with the marketing team to design and implement lead generation campaigns. Strong communication skills and the ability to work effectively with cross-functional teams are essential for success in this position. The ideal candidate will have a deep understanding of both client and market dynamics, as well as a strategic and creative approach to driving business growth.

Manager, Product and Application Security – Benevity – Vancouver, BC

Company: Benevity

Location: Vancouver, BC

Expected salary:

Job date: Sun, 09 Feb 2025 04:23:08 GMT

Job description: Generation Manager plays a pivotal role in driving strategic marketing initiatives to support Benevity’s global Enterprise go… in Enterprise Account-Based Marketing (ABM) and collaboration across teams to meet shared revenue objectives. Overseeing…

Business Development Manager – Titan Security – Orlando, FL

Company: Titan Security

Location: Orlando, FL

Expected salary:

Job date: Fri, 07 Feb 2025 07:48:25 GMT

Job description: The job involves collaborating and coordinating with various internal teams, such as Operations, Marketing, and Product Development, to ensure that our service offerings are aligned with client needs. This role will also involve working closely with the marketing team to design and execute lead generation campaigns that effectively reach and resonate with our target audience. The ideal candidate will have strong communication and project management skills, as well as the ability to work effectively across different departments to achieve shared goals.

Autodesk – Security Architect – Remote Canada – Ontario

Company: Autodesk

Location: Ontario

Expected salary:

Job date: Tue, 04 Feb 2025 23:05:21 GMT

Job description: Job Requisition ID #25WD84902French job description to follow!/La description de poste en français se trouve plus bas!Position OverviewAs an experienced Security Architect in the Autodesk Trust division, you will apply your diverse security and technology skills to guide security practices in a rapidly evolving landscape. Drawing on your extensive experience in security and information technology domains such as systems architecture, software architecture, cloud systems, network engineering, and security engineering, you’ll establish or enable foundational standards, design patterns, and reference architectures. Your primary goal will be to help Autodesk to understand and implement Security requirements at business scale.Autodesk embraces a hybrid-work policy, and you will work remotely from your home office with a team of Architects, reporting to the Director of Trust Architecture. Operating across all divisions of Autodesk, you’ll ensure a comprehensive approach to security strategy. Your work informs security needs for the entire lifecycle of Autodesk products and services, encompassing creation, design, development, testing, implementation, and ongoing operation. In your role, you will not only apply your existing security expertise but also further develop and refine your skills within the context of Autodesk’s large-scale operations.Your role as a security architect does not have managerial responsibility. However, you will be comfortable as a technical leader; actively seeking, influencing, forming, and leading development of Security requirements across all Autodesk with numerous stakeholder types and formats.ResponsibilitiesCollaborate to grow new security standards, reference designs, templates, and other security architecture artifacts across application, network, system, data, AI, and cloud security domains.Offer security consultation to assist product and service partners in designing security requirements and best practices.Conduct gap analysis to assess security need versus actual implementations in products, environments, and business systems.Establish and maintain consistent communication channels with partners within and outside of Autodesk Trust to identify security opportunities, act on them.Research and evaluate emerging technologies to identify security solutions that address gaps or enhance security capabilities.Apply risk calculations to security data at scale to facilitate strategic decision-making processes.Use systems design and thinking principles to translate and enable security at scale, ensuring cohesion across multiple security workstreams.Provide mentorship and promote security awareness through professional excellence and direct engagement.Minimum Qualifications8+ years in security-focused, cloud-focused engineering, devops, or architecture rolesFamiliarity with systems design and architectural constructs such as:
– TOGAF
– SABSA
– COBIT
– ESASignificant hands-on experience with at least 8/11 of the following:
– Vulnerability management
– Public cloud IaaS engineering/architecture
– System engineering or architecture
– On-prem or traditional network engineering or architecture
– Cloud network engineering or architecture
– Application engineering or architecture
– DevOps/DevSecOps including serverless and container/orchestration engineering and architecture
– Standards and reference architecture creation
– Risk or Compliance assessment
– Penetration testing, Threat Intelligence, Incident Response, or Forensics
– Threat modellingTrust at AutodeskThe Autodesk Trust Team is responsible for the core technical tenets of Autodesk’s commitment to customer trust: security, privacy, compliance, trusted AI, and resiliency. Our mission is to become trusted partners to our customers by guiding and managing the essential processes, standards, and requirements that foster and ensure customer confidence in Autodesk products.
We oversee Autodesk’s trust capabilities for the entire product lifecycle, from creation and design to development, testing, implementation, operation, and retirement as well as the enterprise systems supporting our employees. Our dedicated team works tirelessly to stay ahead of, and respond to threats that impact Autodesk and its customers in a constantly changing world. By joining the Autodesk Trust Team you will directly support Autodesk’s high-quality products and services that customers can rely on. Trust is a journey, come along with us to help our customers design and make a better world for all!Description du posteEn tant qu’ architecte de sécurité expérimenté au sein de la division Autodesk Trust, vous mettrez à profit vos diverses compétences en matière de sécurité et de technologie pour orienter les pratiques de sécurité dans un paysage en évolution rapide. En vous appuyant sur votre vaste expérience dans les domaines de la sécurité et des technologies de l’information, tels que l’architecture des systèmes, l’architecture logicielle, les systèmes en nuage, l’ingénierie des réseaux et l’ingénierie de la sécurité, vous établirez ou mettrez en œuvre des normes fondamentales, des modèles de conception et des architectures de référence. Votre objectif principal sera d’aider Autodesk à comprendre et à mettre en œuvre les exigences de sécurité à l’échelle de l’entreprise.Autodesk adopte une politique de travail hybride, et vous travaillerez à distance depuis votre bureau à domicile avec une équipe d’architectes, sous la responsabilité du directeur de l’architecture de confiance. En travaillant dans toutes les divisions d’Autodesk, vous assurerez une approche globale de la stratégie de sécurité. Votre travail informe les besoins de sécurité pour l’ensemble du cycle de vie des produits et services Autodesk, englobant la création, la conception, le développement, les tests, la mise en œuvre et l’exploitation continue. Dans votre rôle, vous ne vous contenterez pas d’appliquer votre expertise existante en matière de sécurité, mais vous développerez et affinerez également vos compétences dans le contexte des opérations à grande échelle d’Autodesk.Votre rôle en tant qu’architecte de sécurité ne comporte pas de responsabilité managériale. Cependant, vous serez à l’aise en tant que leader technique, recherchant activement, influençant, formant et dirigeant le développement des exigences de sécurité dans l’ensemble d’Autodesk avec de nombreux types et formats de parties prenantes.ResponsabilitésCollaborer à l’élaboration de nouvelles normes de sécurité, de conceptions de référence, de modèles et d’autres artefacts d’architecture de sécurité dans les domaines de la sécurité des applications, des réseaux, des systèmes, des données, de l’IA et des nuages.Offrir des conseils en matière de sécurité pour aider les partenaires de produits et de services à concevoir des exigences de sécurité et des meilleures pratiques.Effectuer une analyse des lacunes pour évaluer les besoins en matière de sécurité par rapport aux mises en œuvre réelles dans les produits, les environnements et les systèmes d’entreprise.Établir et maintenir des canaux de communication cohérents avec les partenaires à l’intérieur et à l’extérieur d’Autodesk Trust afin d’identifier les opportunités en matière de sécurité et d’y donner suite.Rechercher et évaluer les technologies émergentes afin d’identifier les solutions de sécurité qui comblent les lacunes ou améliorent les capacités de sécurité.Appliquer des calculs de risque aux données de sécurité à grande échelle afin de faciliter les processus de prise de décision stratégique.Utiliser les principes de la conception et de la pensée systémiques pour traduire et mettre en œuvre la sécurité à l’échelle, en assurant la cohésion entre les multiples flux de travail en matière de sécurité.Assurer le mentorat et promouvoir la sensibilisation à la sécurité par l’excellence professionnelle et l’engagement direct.Qualifications minimalesPlus de 8 ans d’expérience dans des rôles d’ingénierie, de développement ou d’architecture axés sur la sécurité ou le cloud.Familiarité avec la conception de systèmes et les constructions architecturales telles que :
– TOGAF
– SABSA
– COBIT
– ESAExpérience pratique significative dans au moins 8/11 des domaines suivants :
– Gestion des vulnérabilités
– Ingénierie/architecture IaaS en nuage public
– Ingénierie ou architecture des systèmes
– Ingénierie ou architecture de réseau sur site ou traditionnel
– Ingénierie ou architecture de réseau en nuage
– Ingénierie ou architecture des applications
– Ingénierie et architecture DevOps/DevSecOps, y compris ingénierie et architecture sans serveur et conteneur/orchestration.
– Création de normes et d’architectures de référence
– Évaluation des risques ou de la conformité
– Tests de pénétration, renseignement sur les menaces, réponse aux incidents ou criminalistique.
– Modélisation des menacesLa confiance chez AutodeskL’équipe Autodesk Trust est responsable des principes techniques fondamentaux de l’engagement d’Autodesk envers la confiance de ses clients : sécurité, confidentialité, conformité, IA de confiance et résilience. Notre mission est de devenir des partenaires de confiance pour nos clients en guidant et en gérant les processus essentiels, les normes et les exigences qui favorisent et garantissent la confiance des clients dans les produits Autodesk.
Nous supervisons les capacités de confiance d’Autodesk pour l’ensemble du cycle de vie des produits, de la création et de la conception au développement, aux tests, à la mise en œuvre, à l’exploitation et au retrait, ainsi que les systèmes d’entreprise qui soutiennent nos employés. Notre équipe dévouée travaille sans relâche pour garder une longueur d’avance et répondre aux menaces qui affectent Autodesk et ses clients dans un monde en constante évolution. En rejoignant l’équipe Autodesk Trust, vous soutiendrez directement les produits et services de haute qualité d’Autodesk sur lesquels les clients peuvent compter. La confiance est un voyage, venez avec nous pour aider nos clients à concevoir et à créer un monde meilleur pour tous !Learn MoreAbout Autodesk
Welcome to Autodesk! Amazing things are created every day with our software – from the greenest buildings and cleanest cars to the smartest factories and biggest hit movies. We help innovators turn their ideas into reality, transforming not only how things are made, but what can be made.We take great pride in our culture here at Autodesk – our Culture Code is at the core of everything we do. Our values and ways of working help our people thrive and realize their potential, which leads to even better outcomes for our customers.When you’re an Autodesker, you can be your whole, authentic self and do meaningful work that helps build a better future for all. Ready to shape the world and your future? Join us!Salary transparency Salary is one part of Autodesk’s competitive compensation package. For Canada-BC based roles, we expect a starting base salary between $137,600 and $189,200. Offers are based on the candidate’s experience and geographic location, and may exceed this range. In addition to base salaries, we also have a significant emphasis on annual cash bonuses, commissions for sales roles, stock grants, and a comprehensive benefits package.Diversity & Belonging
We take pride in cultivating a culture of belonging and an equitable workplace where everyone can thrive. Learn more here:Are you an existing contractor or consultant with Autodesk?Please search for open jobs and apply internally (not on this external site).

Saint Elizabeth Health Care – Senior IT and Security Analyst – Markham, ON

Company: Saint Elizabeth Health Care

Location: Markham, ON

Expected salary:

Job date: Sat, 01 Feb 2025 06:08:04 GMT

Job description: POSITION SUMMARY:The Senior IT & Security Analyst will be expected to,

  • Design and implement security automation and orchestration (SOAR) capabilities to enhance incident response and security monitoring.
  • Define, enforce, and oversee the implementation of security requirements across various SaaS platforms, including Salesforce and Workday, ensuring robust identity and access management (IAM), data encryption, secure API integrations, and compliance with industry security frameworks such as ISO 27001, SOC 2, and NIST CSF.
  • Assist with security risk assessments for technology systems and third-party vendor solutions.
  • Continuously tune and monitor IT security controls including but not limited to:
  • Intrusion Detection/Prevention System
  • Malware Protection System
  • File Integrity System Management
  • Endpoint Anti-Malware Management
  • Remote Access Systems and VPN
  • Security Incident response
  • Data Loss Prevention
  • Network Security (Wired & Wireless)
  • Maintain detailed knowledge and awareness of cybersecurity trends and the development of new vulnerabilities and threats.
  • Improve cybersecurity processes and documentation.
  • Participate in new systems planning, design, and implementation.
  • Participate in designing/implementing security controls/processes for new systems
  • Participate in regular vulnerability and patching activities
  • Participate in Threat Risk Assessments (TRA’s)
  • Perform the role of SOC SME Threat hunter
  • Document IT & security controls/processes where applicable
  • Cyber Security Incident Management Response
  • Assist in auditing users & systems
  • SPLUNK/LogScale SIEM expertise
  • Maintain workstation and server security hardening standards
  • Assist in troubleshooting security related network issues with network support team
  • Must be available for afterhours implementations, testing and support
  • Other tasks as required

REQUIREMENTS:

  • Working knowledge of and experience applying common information security standards (ISO 27001, NIST 800-53a, NIST CSF, CIS Controls).
  • Logging and monitoring systems experience with a SIEM system (Splunk/LogScale preferred).
  • Broad knowledge of IT architecture and technologies, including identity and access management, cloud hosting, network, and database administration.
  • Advanced Scripting skillsets (PowerShell, Python, etc)
  • Vulnerability management and remediation
  • Experience with the Jira suite of applications
  • Excellent troubleshooting skills
  • Excellent verbal and written communication skills
  • Work in a demanding team environment, prioritizing tasks and escalating/communicating issues as required
  • Superb analytical skills: Ability to think “outside-the-box” to resolve problems
  • Post-secondary degree in an IT-related field or equivalent work experience.
  • 10+ years’ experience
  • CISSP, CEH, OSCP, CCSP, SSCP or other information security certifications are highly desired.
  • IT environment auditing experience, either internal or external.
  • Experience desired deploying apps within Splunk and administrating the Splunk platform.
  • Experience with data normalization and data modelling within the Splunk environment.
  • Experience in creating and managing Splunk DB connects Identities, Database connections, Database inputs, outputs, lookups, and access controls.
  • Experience with regex.
  • Knowledge of advanced search and reporting commands.
  • Understanding of system log files and other structured and non-structured data.
  • Understand methods of collection, logging, windows filtering, and tuning / baselining data
  • Familiarity with Kali Linux, Metasploit, Burp and other similar tools.

ABOUT US:At SE, we love what we do. Every day, we bring hope and happiness to clients, homes, and communities across Canada. We treat each person with dignity and love, like our own family; we build empathy; and we do the right thing. We are always inspired to make a difference. As a not-for-profit social enterprise, we share knowledge, provide the best care, and help each client to realize their most meaningful goals for health and wellbeing. We are an inclusive workplace offering competitive pay, benefits, pension, and work life balance. We’re a great place to work, and we hope you’ll join our team.In the interest of the health and safety of our patients/clients, employees, and greater good of public health, SE Health requires those that wish to work for this organization to be fully vaccinated against COVID-19. Fully vaccinated means a person has received both doses of the COVID-19 vaccine and it has been 14 days since the last dose.SE Health is committed to the success of all its employees. If you feel you need accommodations because of illness or disability, please do not hesitate to contact the Talent Acquisition team at careers@sehc.com at your earliest convenience.

American Express – Information Security Analyst Intern – Quantum / AI ML / General – Summer 2025 – Toronto, ON

Company: American Express

Location: Toronto, ON

Expected salary:

Job date: Wed, 05 Feb 2025 23:56:33 GMT

Job description: Job Description:You Lead the Way. We’ve Got Your Back.With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you’ll learn and grow as we help you create a career journey that’s unique and meaningful to you with benefits, programs, and flexibility that support you personally and professionally.At American Express, you’ll be recognized for your contributions, leadership, and impact—every colleague has the opportunity to share in the company’s success. Together, we’ll win as a team, striving to uphold our and powerful backing promise to provide the world’s best customer experience every day. And we’ll do it with the utmost integrity, and in an environment where everyone is seen, heard and feels like they belong.Join Team Amex and let’s lead the way together.How will you make an impact in this role?This position is a 16-week Information Security Analyst Intern – Quantum /AI ML / General Security Engineer opportunity to demonstrate knowledge gained and apply it in a dynamic, high-performing Technology Risk & Information Security team. Responsible for assisting with activities designed to systematically run information security, such as security investigations, intelligence, assurance, and/or other project oversight, including developing standard methodologies for information security standards and handling IT controls and compliance with regulatory guidance.What type of work can you expect?What type of work can you expect to do in Information Security at American Express?Quantum Security

  • Quantum security is a burgeoning field that addresses the vulnerabilities exposed by quantum computing. With the potential to break traditional encryption methods, quantum computing necessitates a new approach to cybersecurity.
  • PQC – Post Quantum Cryptography. Crypto Agility.
  • Experience as a researcher, including internships, full-time, or at a lab.
  • Experience contributing research communities or efforts, including publishing papers in major conferences or journals.
  • Experience with one or more general purpose programming languages (e.g., Python, Java, JavaScript, C/C++, etc.).
  • Currently enrolled in a PhD degree or Masters in Quantum, AI/ML, Computer Science, Computational Math, Statistics, Combinatorics & Optimization or related technical field.

AI/ML GenAI Security

  • Security initiatives supporting Generative AI Enablement.
  • Strong foundation in AI, machine learning, and data science.
  • Experience with AI/ML frameworks.
  • Experience with one or more general purpose programming languages (e.g., Python, Java, JavaScript, C/C++, etc.).
  • Currently enrolled in a PhD degree or Masters in AI/ML, Quantum, Computer Science, Computational Math, Statistics, Combinatorics & Optimization or related technical field.

Application, Infrastructure and Network Security

  • Drive risk reduction through the rapid identification and remediation of vulnerabilities across the enterprise.
  • Deliver secure solutions that enable secure operations and highly available products and services for our customers.
  • Safeguard AXP data, customers, and brand through continuous monitoring and testing of production application environments.
  • Threat Modeling, Secure Design, Secure Coding, Application Hardening, DAST, SAST, SCA, RASP.

Governance, Risk, Compliance

  • Bridge traditional boundaries between cyber and IT risk and expanding partnerships with IT and the business to drive risk reduction in the enterprise.
  • Innovate Risk Management through enhancements in tooling and automation of processes; expand the capabilities of technology risk management.
  • Extend risk management and control expertise beyond the information security domains into IT development organizations and the business.
  • Identify and help mitigate IT and information security risk across people, processes, and technologies.

Security Incident Response/Threat Intelligence

  • Act as the front line of defence at American Express protecting the brand, employees, assets and card members across the globe against threats 24/7/365.
  • Minimize risk of cyber-attacks and focus on detection and response to threats.
  • Monitor, detect, and respond to security events and incidents that affect AXP globally.

Data Loss Prevention

  • Protect our customers, partners, and colleagues from the loss of sensitive information through normal business processes and/or malicious actors.
  • Monitor and block sensitive data loss where legally permissible.
  • Identity and Access Management/Authentication.
  • Provide authentication, authorization, and full lifecycle management capabilities.
  • Reduce, manage, and monitor risk associated with identity and access to AXP resources.

Cryptography/Encryption Services

  • Protect all forms of sensitive information, on all platforms, resulting in protection of the Brand and information assets, and regulatory compliance.
  • Drive continuous enhancement to data protection.

Minimum Qualifications

  • Current enrolment in Cyber Security, Computer Science, Software Engineering, Information Systems, or related field preferred.
  • Target graduation date in 2026.
  • Must be able to work from our office in Toronto, Ontario 3 days a week as this is a hybrid internship.
  • In-depth knowledge of cyber threats along with common security controls, detection capabilities, and other practices / solutions for securing digital environments.
  • Application Development experience in Java/JEE, Spring & MVC concepts, NodeJS / Go / Python / Kotlin, HTML/CSS, JavaScript, ReactJS, Redux, DevOps – Git, Maven/Gradle, Databases etc.
  • Understanding of what information or assets are of value to threat actors and how organizations are breached.
  • In-depth understanding of modern technical security controls (i.e. firewalls, SIEMS, IPS, HIPS, web proxies, Threat Model, DAST, SAST).
  • Must have strong verbal and written communication skills; interpersonal collaborative skills; and the ability to communicate security and risk-related concepts to technical and non-technical audiences.
  • Can apply a variety of structured analytic techniques to generate and test a hypothesis, assess cause and effect, challenge analysis, and support decision making.

Preferred Qualifications

  • Understanding on Application Security, OWASP Top 10 (Web, API. mobile), Cloud Security, DevSecOps.
  • Familiarity with Agile/Scrum development process.
  • Familiarity with project collaboration and management tools like JIRA and Confluence dashboard and workflows to track action items within projects and consultation requests.
  • Language skills in Spanish or Portuguese are an asset.

We back our colleagues and their loved ones with benefits and programs that support their holistic well-being. That means we prioritize their physical, financial, and mental health through each stage of life. Benefits include:

  • Competitive base salaries
  • Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
  • Free and confidential counseling support through our Healthy Minds program
  • Career development and training opportunities

American Express is committed to providing an inclusive and accessible work environment in which all people who apply for positions or who work for or on behalf of Amex are treated with dignity and respect and are provided with equal treatment with respect to employment, regardless of that person’s age, sex, sexual orientation, gender identity, gender expression, race, colour, ancestry, ethnic or national origin, citizenship, religion or creed, marital status, family status, pregnancy, disability, record of offences, social condition or origin, political beliefs, association or activity or other factors prohibited under applicable Human Rights legislation (the “Prohibited Grounds”). If you have a disability and need accommodation, please speak with the Recruiter for more information.Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.