Senior Security Operations Analyst

About The Position

Requirements

• Familiarity with ISO, NIST, and related security frameworks, with an understanding of their application in regulated industries.
• Knowledge of risk management and security governance principles, including risk assessment, control selection, and reporting.
• Strong foundation in networking, databases, and secure development practices, with exposure to SaaS, cloud security, and emerging technologies.
• Strong organizational, analytical, and problem-solving skills, with the ability to prioritize and follow through.
• Excellent communication and collaboration skills, able to convey security concepts clearly to technical and non-technical stakeholders.
• Integrity, accountability, and professionalism in handling sensitive matters.
• Curiosity and drive to continuously learn, with the ambition to grow toward executive-level security leadership (CISO track).
• Professional working proficiency in French and English languages are required.

Nice To Haves

• Graduate-level studies in information security, business administration, or data science are an asset.
• CompTIA Security+, (ISC)² SSCP, or equivalent entry-level certification.
• ISO 27001 Lead Implementer/Lead Auditor training.
• Cloud security certifications (e.g., CCSK, AWS Certified Security).
• Long-term career interest in CISSP, CISM, or MBA for leadership track.
• AI experience is an asset.

Responsibilities

• Assist in maintaining compliance controls and documentation based on ISO 27001, ISO 27017, ISO 27034, ISO 22301 and NIST frameworks.
• Participate in internal and external audits for certification.
• Performs self-assessments and completes questionnaire for stakeholders.
• Assess and track vendor risks, supporting due diligence and governance.
• Maintain metrics and reporting that inform executive decision-making.
• Participates in threat modeling and technical risk assessments.
• Maintains runbooks, incident registries, and technical security documentation.
• Track technology changes and support change management governance.
• Contribute to incident detection, classification and response coordination.
• Assist in investigations and documentation of security incidents.
• Participate in business continuity and DRP testing.
• Contribute to maintaining security metrics on Hyperproof.
• Review and document user access rights, supporting least-privilege enforcement.
• Assist with periodic access audits and user lifecycle management.
• Maintain inventories of devices, applications, and accounts.
• Track technology changes and support change management governance.

Benefits

• Generous vacation accrual and 11 paid holidays, plus well-being and volunteer time off.
• Up to 16 weeks of fully paid parental leave and a baby stipend.
• Extended Healthcare and Dental plan with mental health and wellness support offerings.
• Registered Retirement Savings Plan (RRSP) with company match.
• $500 annual well-being stipend.
• Recognition Rewards, Referral bonuses, exclusive discounts and more!