Principal, Security Engineering

About The Position

Requirements

• Bachelor’s or master’s degree in computer science, Engineering or related field.
• 10+ years of experience in cyber security and/or software development, with at least 3+ years in technical leadership role.
• Deep expertise in multiple cyber security domains, including application security, data security, endpoint security, network security, identity and access management, detection engineering, threat intelligence, incident response, and third-party risk management.
• Strong understanding of software architecture principles and modern system design patterns.
• Strong understanding of cloud service provider platforms and strategies for securing cloud-based technology assets.
• Proven ability to design and operate scalable, resilient systems in production environments.
• Excellent problem-solving skills and the ability to navigate ambiguity.
• Excellent communication and stakeholder management skills to bridge the gap between cyber security teams and business leaders.
• Proven leadership in mentoring security specialists and building technical communities.
• For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country.
• No Canadian work experience required however must be eligible to work in Canada.

Responsibilities

• Provide technology direction on the architecture and design of security-related technology initiatives.
• Serve as a trusted advisor to security specialists, leveraging expertise to ensure high judgement decisions are made on complex and ambiguous security problems across all security domains, either by acting as decision-maker or by helping other specialists with the decision-making process.
• Act as a force multiplier: Leverage your extensive expertise to enhance the effectiveness and efficiency of the entire engineering team.
• Foster a culture of innovation and excellence by mentoring colleagues, enhancing mechanisms, introducing best practices, and driving architectural improvements that enable the team to implement strong security risk mitigations.
• Promote cross-team collaboration and drive technical direction across teams, functions, and products, ensuring decisions support overall business, technology and security strategy.
• Collaborate closely with senior leadership and principals to develop and implement strategic initiatives that contribute to a durable and resilient security control environment.
• Continually identify opportunities for improvement and act as an agent of change by championing innovative ideas and initiatives to improve mechanisms.
• Monitor and assess the impact of industry trends, emerging technologies, and changes in threat actor tactics and techniques; recommend strategies to evolve security countermeasures in response.
• Serve as an active member of the tech community and promote technology within and outside the organization as a thought leader and contributing to advance IFC’s interests.

Benefits

• Flexible work arrangements and a hybrid work model
• Possibility to purchase up to 5 extra days off per year
• Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more
• Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)
• Annual bonus target, based on the base salary, with a potential payout of up to double the target (subject to personal and company performance): 20%
• Employee Share Purchase Plan (ESPP) – with Intact matching 50% of your net shares.
• Pension offerings provide flexibility and long-term security for our employees beyond their careers.
• Opportunity to receive guaranteed income for life via our defined benefit pension plan.