Sr. Cyber Security Incident Response Communications

About The Position

Requirements

• Solid experience in cybersecurity incident response, incident communications, crisis management, program/project management or related roles in a global technology enterprise environment.
• Demonstrated ability to stay positive and perform effectively under pressure and during fast-paced, high-impact events. Self-starter, motivated, organized, attention to details would be highly valued.
• Excellent written and verbal communication skills, including the ability to translate complex technical information for executive and non-technical audiences and draft in a legally compliant way.
• Strong stakeholder management capabilities and experience handling escalations. Experience in or collaborating with legal, privacy, regulatory and/or compliance teams would be highly valued.
• Solid project management and issue resolution skills, including planning, prioritization and tracking risks and issues through resolution.
• High degree of discretion and professionalism when handling legally sensitive and confidential information, in line with Legal’s guidance.
• Comfortable working in a virtual, globally distributed organization across multiple time zones.
• Knowledge of cybersecurity, data protection, regulatory compliance concepts and workflows. In particular, familiarity with established security and risk management frameworks and regulations such as ISO27001, SOC2, NIST CSF, EU GDPR, EU DORA would be valued.
• Experience working with cloud-based service delivery models.
• Functional proficiency in English is required for positions based in the Quebec.

Nice To Haves

• Experience with enterprise collaboration or ticketing tools such as Jira, MS Sharepoint, MS Power BI, MS Power Automate, ServiceNow would be a plus.
• Bachelor's degree (or higher degree) in Cybersecurity, Information Security, Law, Communications or related discipline preferred; industry certifications such as CISA, CISSP, CCSP, CISM, IAPP CIPPE would be a plus.

Responsibilities

• Own and manage communications for major Security Events, including crisis-level events.
• Coordinate incident notifications, status updates and escalations in line with established response processes and approved communication templates.
• Serve as the primary communications interface for customer, field and internal stakeholder enquiries related to Security Events.
• Participate in Security Event triage calls and support decision-making with clear, concise communication.
• Ensure all communications are aligned across technical, legal and business stakeholders.
• Maintain a complete, auditable record of incident communications, decisions and approvals.
• Support and lead post-incident reviews, including lessons learned and continuous improvement initiatives.
• Identify opportunities to enhance Security Event communication, notification and escalation processes.
• Operate independently while managing multiple priorities in a fast-paced, global environment.

Benefits

• Constant learning
• skill growth
• great benefits
• health and well-being
• flexible working models
• Annualized compensation range inclusive of base salary and variable incentive target for the career level applicable to the posted role: 140000 - 190000 CAD
• Summary of benefits and eligibility requirements can be found by clicking this link: www.SAPNorthAmericaBenefits.com.