28 Security Advisor jobs in Canada

Job Description

Salary:

Cyber Security Consultant

We are currently building our roster of experienced, security cleared and reliable subcontractors to support upcoming projects. If you take pride in your work, deliver on time, and value professionalism, wed love to hear from you.

An AI consultant helps businesses integrate and optimize AI solutions to improve efficiency, productivity, and innovation. They assess existing systems, identify AI opportunities, and develop customized solutions. This involves analyzing data, recommending appropriate AI technologies, and overseeing implementation to achieve business goals.

Here's a more detailed look at an AI consultant's responsibilities:

Key Responsibilities:

• Assessing Client Needs:

Understanding a client's business objectives, challenges, and existing systems to determine where AI can be most impactful.

• Identifying AI Opportunities:

Analyzing data and processes to pinpoint areas where AI can automate tasks, improve decision-making, and enhance customer experience.

• Developing AI Strategies:

Creating tailored AI solutions that align with the client's business strategy and objectives.

• Recommending Technologies and Tools:

Suggesting appropriate AI algorithms, machine learning techniques, and data analytics methods.

• Overseeing Implementation:

Guiding the implementation of AI solutions, ensuring data preparation, model training, and performance evaluation are handled effectively.

• Providing Ongoing Support:

Monitoring the performance of AI systems, making necessary adjustments, and ensuring optimal functionality and return on investment (ROI).

• Staying Updated:

Keeping abreast of the latest advancements and trends in AI technology.

• Training and Education:

Developing and delivering training sessions to equip clients with the knowledge and skills to effectively use AI solutions.

• Consulting on AI Feasibility:

Conducting feasibility studies and impact assessments to determine the viability and potential benefits of AI projects.

A Cybersecurity Consultanthelps organizations identify and mitigate cyber threats by assessing vulnerabilities, implementing security solutions, and providing expert advice.They work with clients to understand their security needs, evaluate existing systems, and recommend best practices to protect data and networks.

Key Responsibilities:

• Security Assessment:

Evaluate an organization's security posture, identifying vulnerabilities, and assessing risks.

• Solution Design:

Develop and implement security solutions, including firewalls, intrusion detection systems, and data loss prevention measures.

• Threat Intelligence:

Stay informed about emerging cyber threats and vulnerabilities, keeping clients' systems up-to-date.

• Incident Response:

Develop and execute incident response plans to handle security breaches effectively.

• Policy Development:

Help organizations develop and implement robust cybersecurity policies and procedures.

• Consulting:

Provide expert advice and guidance to clients on a variety of cybersecurity issues.

• Reporting:

Prepare technical reports and recommendations for clients on security improvements.

Skills Required:

• Technical Skills:

Strong understanding of network security, operating systems, databases, and common cyber threats.

• Analytical Skills:

Ability to analyze security risks and vulnerabilities, and develop effective solutions.

• Communication Skills:

Ability to clearly communicate technical concepts to both technical and non-technical audiences.

• Problem-solving Skills:

Ability to identify and resolve cybersecurity issues quickly and effectively.

• Certifications:

While not always mandatory, certifications like CISSP, CEH, and CISM are highly valued.

What We Offer:

Opportunities for ongoing work

Professional collaboration and support

Timely payments and clear expectations

Note:

This is a proactive posting to identify and connect with top talent ahead of scheduled projects.

Only qualified candidates will be contacted.

Thanks for your interest to partner with our organization.

Job Description

Who we are : Founded in 2001, Vivid Seats (NASDAQ: SEAT) is a leading online ticket marketplace committed to becoming the ultimate partner for connecting fans to the live events, artists, and teams they love. We believe in the power of experiences and are fiercely dedicated to building products that inspire human connections. Named as one of Built In's top places to work in 2025 , we believe that our People are our greatest competitive advantage. To support our People, we have built a company culture that empowers our employees to embrace challenges, encourages unity through collaboration, and seeks to constantly evolve by leveraging data and inspiring innovation.

We believe in harnessing emerging technology to power performance and unlock creativity. As part of our culture of innovation, we actively embrace the use of AI tools to enhance decision-making, improve workflows, and produce better outcomes for our customers.

The Opportunity:

The Manager, Information Security is responsible for leading the design and integration of information security into key areas of the Vivid Seats business. This role is critical in ensuring that security is baked in up front to ensure that information assets and associated information systems are adequately protected in the digital ecosystem in which Vivid Seats operates. This role partners with platform engineering teams to drive security practices and principles related to cloud-based infrastructure, software engineering teams to drive security practices and principles into a fast-paced Agile development cycle and product owners to understand business requirements and landscape.

In addition to bringing Information Security best practices, you will help develop a collaborative, cross-disciplinary and high-performing team while overseeing and improving organizational design, structure, priorities, management processes and reporting information systems. You will be responsible for coordinating project efforts, while building productive, value-added partnerships with vendors. You will also be integral in building an engaged Vivid Seats corporate security culture. "How" results are achieved will be as important as "what" is achieved.

How your role expectations will progress as a Manager, Information Security in the first 30, 90, and 180 days:

30 days in

• Acclimate to Vivid Seats' values and organizational goals to understand how your department drives initiatives forward.
• Understand the team' contributions and the needs of stakeholders that rely on your deliverables to bring business objectives to life.
• Partner with Director, Information Security, Engineering and Product leaders to align on technology vision and roadmap.
• Meet with and begin regular 1:1s with team members to understand their motivations, strengths, and areas you can support them with.

60 days in

• Align with team members to achieve personal and functional goals that correlate to department objectives.
• Develop and lead initiatives for the team that enhance process, drive innovation, and build on Vivid Seats values.
• Strategically drive the Information Security operational metrics by refining the technical roadmap and/or processes as required.
• Identify within the team how ways of working can be improved with the objective of increasing velocity and results.
• Build trust and relationships with team and key stakeholders including executives

90 days in

• Monitor and evolve team deliverables, individual goals, and overall performance to ensure alignment with broader initiatives of your department and the organization
• Collaborate with stakeholders to confirm accurate prioritization and refine processes for collaboration and best practices.
• Meaningfully contribute to department roadmap exercises that balance current needs with future strategic initiatives.
• Be a thought leader for Information Security within the company, supporting and influencing other verticals in the business.

What You'll Bring:

• 8+ years of combined experience in information security and technology with expertise in secure cloud and/or web applications in an e-commerce environment.
• 3 years of experience leading a team and people management.
• Extensive knowledge of current and emerging IT security technologies and techniques covering all levels of cloud and applications.
• Strong business acumen with the ability to drive information security initiatives with a business-first mindset, ensuring alignment with Vivid Seats' goals of connecting fans to live events and enhancing customer trust.
• Deep understanding of Cloud infrastructure (AWS, GCP, or Azure Cloud) concepts, services and related controls.
• Advanced knowledge of information security concepts and technologies such as SCA, SAST, DAST, IAM, vulnerability management, firewalls, IPS/IDS, network analyzers, proxies, SEIM, SOAR, encryption, cloud-based security control services, WAF, bot mitigation.
• Knowledge of and hands-on experience with multiple architectures and technology elements such as MySQL, n-tier, J2EE, Web Services, React, Browser, Android, iOS, React Native, Node.js, Next.js, JAMstack, AWS, K8s, Microservices / Service Mesh.
• Experience writing and/or testing code and scripts with one or more languages such as Java/JavaScript, Python/Perl/bash/python.
• Experience with two or more (or preferably full-stack technology experience) operating systems, infrastructure & cloud infrastructure, software engineering, technology product or service ownership.
• Deep knowledge of multiple cyber security governance and compliance frameworks such as FISMA, NIST CSF, ISO 27000, PCI, SOX, SOC2.
• Experience delivering training to technology SMEs in other areas.
• Ability to lead large internal security technology projects and security remediation projects with significant dependencies on external IT and product teams.

Location : Toronto, ON

101-30 Duncan St.
Toronto, Ontario M5V 2C3

We believe in a hybrid 3 days/week in-office working model, which provides employees the flexibility to take advantage of in-person and remote collaboration.

Our Commitment:
We are an equal opportunity employer that values the critical importance of a diverse workforce and sense of belonging. Many of our roles have flexible requirements and we encourage you to apply regardless of whether you meet every qualification.

Job Description

Salary:

Career Opportunity

GeoSpectrum is hiring an Information Security Manager to lead the tactical execution of our Information Security Management System (ISMS), with a strong focus on cyber defense, compliance, and team development. This role is instrumental in shifting the organization toward a proactive security posture, ensuring alignment with CMMC, ISO 27001, and audit standards. The successful candidate will oversee cybersecurity initiatives, implement technical controls, and serve as the primary liaison with external partners and internal stakeholders. This is a high-impact leadership opportunity to build and mentor a growing cyber team while shaping the future of our security operations.

Explore GeoSpectrums Story

GeoSpectrum Technologies is a rapidly growing company that designs and manufactures state of the art underwater acoustic components, transducers and integrated end-to-end systems for maritime surveillance and exploration. GeoSpectrum is known for its innovation and designing leading-edge products.

With clients across ocean science, defence, and oil and gas industries, were proud of delivering reliable, customized solutions that go above and beyond the requirements of our customers.

GeoSpectrum was founded in Dartmouth, Nova Scotia and continues to grow after three decades of engineering. Our companys core values are woven into the fabric of our work, commitment to employee engagement, and client service.

Responsibilities

• Cybersecurity Leadership
  • Serve as the tactical lead for all cybersecurity initiatives, reporting to the VP Operations.
  • Translate strategic security goals into actionable implementation plans.
  • Act as the primary liaison with external partners (e.g., CDW, our parent company) on cybersecurity matters.
  • Represent the organization in ISMC (Information Security Management Committee) meetings and audits.
    
• ISMS Implementation & Governance
  • Maintain and evolve the ISMS documentation, including the Risk Register, Statement of Applicability, and Corrective Action Log.
  • Conduct and coordinate internal audits, risk assessments, and policy reviews.
  • Track and report on KPIs and team competencies to the ISMC.
• Technical Implementation
  • Lead implementation of technical controls such as MFA, network segmentation, privileged access, and endpoint protection.
  • Collaborate with IT and DevOps to ensure secure system architecture and deployment practices.
• Team Building & Mentorship
  • Build and lead a growing cyber team, including potential roles such as Security Analyst, GRC Specialist, and Security Architect.
  • Mentor junior staff and coordinate with IT and QA teams for cross-functional initiatives.
  • Define and evolve the cyber org structure in collaboration with IT leadership.

Qualifications

• Post-secondary education in Software Computer Science, Software Engineering, or related field.
• 10+ years in cybersecurity or information security management.
• Experience with ISO 27001, NIST, CMMC, or similar frameworks.
• Strong understanding of GRC, SOC operations, and audit readiness.
• Proven ability to lead cross-functional teams and manage external vendors.
• Certifications such as CISSP, CISM, or ISO 27001 Lead Implementer are assets.
  

Security Requirements

All candidates must be eligible to apply for and maintain Canadian Controlled Goods and Canadian Government Security Clearances

Explore Our Culture and Benefits

Watch our company video to get to know us! Visit page.

At GeoSpectrum, we take pride in fostering a workplace that based on professional relationships, innovation and continuous improvement, and agile. Our employees work together in a collaborative, cross-functional approach. Enjoy having fun at work? Our social community is next to none! Our leadership team encourages our people to contribute their ideas, insight, and feedback for innovation, continuous improvement, quality management, and workplace safety.

We offer:

• Competitive salary based on experience
• Work-life balance with core hours
• Paid Time Off
• Employee-Family Assistance Program
• Group Plan Benefits
• Virtual Healthcare
• RRSP matching
• Corporate Discounts and perks
• Career development opportunities
• Monthly social activities
• Professional Development and training
• Free on-site parking

GeoSpectrum is committed to employment equity and building a diverse workforce where every employee can bring their best self to work. GeoSpectrum encourages applicants from all qualified individuals, including underrepresented individuals who identify as African Nova Scotian, racially visible, Aboriginal persons, LGBTQIA2S+, persons with disabilities, and women. GeoSpectrum will accommodate applicants' disability-related needs, up to the point of undue hardship, throughout all stages of the recruitment and selection process.If you are a member of one of an equity group, we encourage you to self-identify on either your application form, covering letter, or resume.

Apply Today

While we sincerely thank all applicants for taking the time to apply, however only those chosen for an interview will be contacted.

If you requirea disability-related accommodation in order to participate in the recruitment process, please contact the recruitment team by email

Job Description

Founded in 1974, CMiC today delivers comprehensive and advanced enterprise and field operations solutions, purpose-built for construction and capital projects companies. CMiC’s powerful software transforms how firms optimize productivity, minimize risk and drive growth by planning and managing all financials, projects, resources, and content assets - all from a single database platform.

In the past several years, the construction industry has experienced unprecedented changes driven by new technologies - including integration with multi-dimensional modeling, an explosion of cloud-based offerings and the demand for robust mobile capabilities. CMiC has kept pace by constantly upgrading and enhancing our advanced platform to reflect the changing needs of the industry, leading to significant growth as a company.

Job Overview/Position Summary

The Manager, Information Security will assist the Chief Information Security Officer (CISO) to develop and implement cybersecurity strategies that protect our organization's information assets and those of our customers’. This role requires a good understanding of cybersecurity principles, strong leadership skills, and the ability to collaborate across departments to achieve security goals

Primary Responsibilities:

• Assist in the development, implementation, and management of the organization's cybersecurity strategy.
• Monitor and analyze security threats, vulnerabilities, and incidents to identify risks and mitigate them effectively.
• Assist in the design and enforcement of security policies, standards, and procedures.
• Oversee implementation and evidence collection of the SOC 1 & 2 and ISO 27001 audits
• Collaborate with IT, legal, and other internal stakeholders to ensure alignment with security protocols and regulatory requirements.
• Provide technical and operational guidance in the development and implementation of information security programs.
• Manage security incidents and coordinate incident response efforts, including root cause analysis and remediation.
• Stay current with emerging security trends, technologies, and regulatory changes.
• Report on security metrics and provide updates to senior management and the Information and Privacy Governance Committee.

Other responsibilities

• Responsible for the development and maintenance of disaster recovery and business continuity plans and table top exercises.
• Responsible for regular security reviews and risk assessments to identify and address potential security weaknesses.

Requirements

Education and Experience:

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• Certified Information Systems Security Professional (CISSP) or other relevant certifications.
• Minimum of 3 years of experience in information security management or a related role.

Skills and Competencies:

• A solid understanding of cybersecurity principles, network security, encryption, and vulnerability management
• Strong understanding of risk management framework and ability to identify, assess, and mitigate risks to the organization's information assets.
• Ability to develop and implement long-term security strategies that align with the organization's goals.

Preferred Qualifications (Optional)

• Strong knowledge of cybersecurity frameworks (e.g., NIST, ISO 27001, AICPA Trust Services Criteria) and regulatory requirements.
• Be a self-starter and take ownership of initiatives.
• Excellent analytical, problem-solving, and decision-making skills.
• Strong communication and interpersonal skills, with the ability to effectively communicate complex security concepts to non-technical stakeholders.
• Proven leadership abilities and experience in managing security team.
• Having IT Operational experience is a bonus.

Work Environment (Optional)

• CMiC has a hybrid work environment. Successful candidate is expected to be in the office one to two days a week.

Benefits

• Competitive benefits Package (including Health & Dental benefits)
• Paid vacation and personal days
• Townhall meetings where all employees are encouraged to participate in open discussions
• Located on York University’s campus, easily accessible by transit (TTC, GO, etc.), walking distance to shopping and restaurants
• Outdoor lunch space, including picnic tables
• An active Social Events Committee (past events include annual seasonal parties, pool and bowling tournaments, karaoke nights, Game nights, BBQs, and more)
• Health and Wellness focus including virtual yoga classes and wellness webinars
• RRSP Matching Program after 2 years of employment
• Experience in a rapidly growing, socially responsible corporation

CMiC is an Equal Opportunity Employer. In accordance with the Accessibility for Ontarians with Disabilities Act, 2005 and the Ontario Human Rights Code, CMiC will provide accommodation to applicants with disabilities throughout the recruitment, selection and/or assessment process. If selected to participate in the recruitment, selection and/or assessment process, please inform Human Resources staff of the nature of any accommodation(s) that you may require.

Job Description

*This is a remote position, and candidates must be located in Ontario, CA

NetSPI® is an award-winning pioneer of Penetration Testing as a Service (PTaaS) with its AI-powered platform supported by more than 350 in-house cybersecurity experts. Specializing in 50+ pentest types, attack surface visibility, vulnerability prioritization, and attack simulation, NetSPI delivers security testing with unprecedented clarity, speed, and scale.

NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at

Join the mission as a Security Consultant II. We’re seeking a technically skilled and analytical Web Application and AI/ML Penetration Tester to strengthen our cybersecurity defenses through advanced, cutting-edge testing of AI and machine learning systems. As a Penetration Tester supporting AI/ML, you will work closely with clients to deliver clear, actionable reports and contribute to the development of security best practices.

Responsibilities :

• Conduct engagements on Web Applications and API’s independently, providing technical oversight as needed, including those which contain AI/ML components and features.
• Perform prompt injection techniques against a variety of models, including text, voice, image, video, and multi-modal processing models.
• Present comprehensive penetration test findings to clients while emphasizing AI/ML risks, and collaborate on remediation strategies with model hardening, adversarial training, and threat mitigation.
• Create, deliver, and collaborate on penetration testing reports in diverse client environments, maintaining client-specific processes, reporting standards, and access protocols to help improve their security posture.
• Research and develop innovative techniques, tools, and methodologies for penetration testing services, alongside commitment to improvement and execution on NetSPI specific products and processes.
• Participate in development, implementation, and oversight of testing, delivery, and management strategies for key client accounts
• Perform administrative tasks related to day-to-day consulting activities to ensure smooth business and engagement operations.

Minimum Qualifications :

• Bachelor’s degree or higher, with a focus on IT, Computer Science, Engineering or Math or equivalent experience.
• Minimum of 2-4 years of work experience in Penetration Testing.
• Familiarity with attack techniques utilized against text, voice, image, video, and multi-modal models.
• Proficiency in using and customizing offensive toolkits for network, application, and AI/ML penetration testing.
• Understanding of Adversarial Machine Learning and its practical applications.
• Familiarity with offensive tools, based on applicable skillset (e.g., Kali Linux, Burp Suite, Metasploit, Nessus).
• Familiarity with offensive and defensive IT concepts and protocols.
• Extensive understanding of the OWASP Top 10 for both web applications and large language models, MITRE ATT&CK framework, and various security frameworks.
• Working knowledge of Windows, Linux and MacOS operating systems internals.
• Experience mentoring or coaching to growing team members.
• Ability to work independently and as part of a team.
• Proficient communication skills, both written and verbal.
• This position requires an 8-hour workday, with occasional evenings or weekends necessary to meet project deadlines or critical needs.

Preferred Qualifications:

• Ability to provide technical and QA oversight on AI/ML service line.
• Comprehensive knowledge of secure AI/ML development protocols and architecture.
• Strong problem-solving skills and the ability to think like both an attacker and a defender.
• A continuous learning mindset to keep up to date with the rapidly evolving AI/ML and cybersecurity landscapes.
• Experience with model interpretability and explainability tools to understand model behavior and potential biases.
• Experience in ML model development, feature engineering, and data pre-processing.
• Experience in one or more of the following programming or scripting languages: Ruby, Python, Perl, C, C++, Java, and C#
• Offensive Security Certifications (e.g., GXPN, GPEN, OSCP, GWAPT)

We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.

Reference #: 7879
Location: Nunavut
Type: Sub-contract

Donna Cona Inc. is currently seeking a Chief Information Security Officer, for one of our key clients. The candidate will be a highly skilled and experienced Subject Matter Expert (SME) in Cybersecurity to lead the development of a comprehensive security program and operational plan. This critical role will support the protection of systems, data, and infrastructure by designing robust security frameworks, policies, and processes tailored to meet the unique needs of the client. The ideal candidate will bring extensive expertise in cybersecurity and IT governance, with a proven ability to deliver practical and scalable solutions. This role is instrumental in ensuring client systems and initiatives adhere to security best practices, safeguarding the integrity and confidentiality of client operations and services.

Key Duties and Responsibilities:

• Program Development:
  • Design and establish a comprehensive cybersecurity program, including policies, standards, procedures, and guidelines;
  • Develop a governance framework to support compliance with relevant laws, regulations, and best practices; and
  • Conduct a detailed risk assessment to identify vulnerabilities and prioritize mitigation strategies.
• Operational Planning:
  • Create an operational plan for implementing the security program, outlining timelines, resource requirements, and key milestones;
  • Define roles and responsibilities for cybersecurity within the organization, including staffing recommendations; and
  • Develop an incident response plan and disaster recovery protocols.
• Participation in Projects:
  • Collaborate with project teams to ensure new solutions, systems, and technologies are designed and implemented in alignment with security best practices and standard;
  • Conduct security reviews and assessments during project lifecycles to identify and address risks; and
  • Provide expert recommendations to integrate security into the design, development, and deployment phases of initiatives.
• Stakeholder Engagement:
  • Work with departments, agencies, and third-party stakeholders to align security initiatives with operational goals; and
  • Provide expert guidance to senior management and policymakers on emerging threats and strategic security priorities.
• Training and Awareness:
  • Develop and implement a cybersecurity training and awareness program for employees at all levels; and
  • Promote a culture of security within the workforce.
• Monitoring and Continuous Improvement:
  • Establish mechanisms for continuous monitoring and reporting on the security program's effectiveness; and
  • Stay abreast of new threats, vulnerabilities, and advancements in security technologies to ensure the program remains current and effective.
• Technical Expertise:
  • Recommend and assist in deploying security tools and technologies, such as firewalls, intrusion detection systems, and encryption; and
  • Oversee the design of secure architecture for IT systems and infrastructure.
• Compliance and Reporting:
  • Ensure compliance with applicable cybersecurity regulations, standards, and frameworks (e.g., ISO 27001, NIST, GDPR, or local regulations); and
  • Prepare detailed reports and presentations for executive leadership and external audits.

Donna Cona is committed to a diverse, equitable and inclusive workplace. We are an equal opportunity employer. We don't discriminate on the basis of gender, gender identity, sexual orientation, race, national origin, disability, age or any other protected status. We are committed to maintaining a barrier free recruitment process by providing equal employment opportunities through recruiting and retention of individuals.

• To apply for this position please complete the form below.
• Name First Last
• Email
• Daytime Phone
• City
• Province/State
• Attach Cover Letter and Resume Max. file size: 20 MB. Please note that these must be in one document, and can be in .docx, .doc, .pdf or .rtf formats

Reference #: 7879
Location: Nunavut
Type: Sub-contract

Donna Cona Inc. is currently seeking a Chief Information Security Officer, for one of our key clients. The candidate will be a highly skilled and experienced Subject Matter Expert (SME) in Cybersecurity to lead the development of a comprehensive security program and operational plan. This critical role will support the protection of systems, data, and infrastructure by designing robust security frameworks, policies, and processes tailored to meet the unique needs of the client. The ideal candidate will bring extensive expertise in cybersecurity and IT governance, with a proven ability to deliver practical and scalable solutions. This role is instrumental in ensuring client systems and initiatives adhere to security best practices, safeguarding the integrity and confidentiality of client operations and services.

Key Duties and Responsibilities:

• Program Development:
  • Design and establish a comprehensive cybersecurity program, including policies, standards, procedures, and guidelines;
  • Develop a governance framework to support compliance with relevant laws, regulations, and best practices; and
  • Conduct a detailed risk assessment to identify vulnerabilities and prioritize mitigation strategies.
• Operational Planning:
  • Create an operational plan for implementing the security program, outlining timelines, resource requirements, and key milestones;
  • Define roles and responsibilities for cybersecurity within the organization, including staffing recommendations; and
  • Develop an incident response plan and disaster recovery protocols.
• Participation in Projects:
  • Collaborate with project teams to ensure new solutions, systems, and technologies are designed and implemented in alignment with security best practices and standard;
  • Conduct security reviews and assessments during project lifecycles to identify and address risks; and
  • Provide expert recommendations to integrate security into the design, development, and deployment phases of initiatives.
• Stakeholder Engagement:
  • Work with departments, agencies, and third-party stakeholders to align security initiatives with operational goals; and
  • Provide expert guidance to senior management and policymakers on emerging threats and strategic security priorities.
• Training and Awareness:
  • Develop and implement a cybersecurity training and awareness program for employees at all levels; and
  • Promote a culture of security within the workforce.
• Monitoring and Continuous Improvement:
  • Establish mechanisms for continuous monitoring and reporting on the security program's effectiveness; and
  • Stay abreast of new threats, vulnerabilities, and advancements in security technologies to ensure the program remains current and effective.
• Technical Expertise:
  • Recommend and assist in deploying security tools and technologies, such as firewalls, intrusion detection systems, and encryption; and
  • Oversee the design of secure architecture for IT systems and infrastructure.
• Compliance and Reporting:
  • Ensure compliance with applicable cybersecurity regulations, standards, and frameworks (e.g., ISO 27001, NIST, GDPR, or local regulations); and
  • Prepare detailed reports and presentations for executive leadership and external audits.

Donna Cona is committed to a diverse, equitable and inclusive workplace. We are an equal opportunity employer. We don't discriminate on the basis of gender, gender identity, sexual orientation, race, national origin, disability, age or any other protected status. We are committed to maintaining a barrier free recruitment process by providing equal employment opportunities through recruiting and retention of individuals.

• To apply for this position please complete the form below.
• Name First Last
• Email
• Daytime Phone
• City
• Province/State
• Attach Cover Letter and Resume Max. file size: 20 MB. Please note that these must be in one document, and can be in .docx, .doc, .pdf or .rtf formats