Job Description

A leading healthcare and research organization is seeking an experienced IT Security Officer to join its Information Management/Technology team. This role is key to maintaining the integrity, confidentiality, and availability of systems and data across the organization.

Key Responsibilities:

• Oversee implementation, configuration, and maintenance of security tools and solutions.

• Execute and support the organization's cybersecurity program and ensure adherence to best practices.

• Monitor systems and perform in-depth analysis of security logs to detect threats.

• Develop and execute incident response procedures in accordance with internal policies.

• Investigate and remediate cyber threats and system vulnerabilities.

• Ensure compliance with internal computing resource policies.

• Collaborate with vendors providing managed security services (e.g., IDS, firewall, antivirus, SIEM).

• Lead organization-wide security awareness training initiatives.

• Produce regular security reports and recommend proactive risk mitigation strategies.

• Participate in IT evaluations to ensure security is embedded in technology selection and deployment.

• Provide security support for IT and organizational projects.

• Mentor team members and support knowledge sharing across the security function.

Required Qualifications:

• Bachelor's degree in IT Security, Computer Science, or a related field.

• 3–5 years of hands-on experience in cybersecurity or information security roles.

• At least two certifications such as CISSP, CC (ISC2), Azure Security, Proofpoint, Crowdstrike, Microsoft, or MITRE.

• Solid experience with firewalls, IDS/IPS, SIEM, EDR, proxy, email security, and networking platforms.

• Strong understanding of network architecture, cloud services, encryption, authentication protocols, and operating systems.

• Experience with incident response, malware analysis, and threat detection.

• Familiarity with data privacy regulations such as PIPEDA and healthcare security standards.

• Ability to interpret security scan reports, assess risks, and drive remediation efforts.

• Effective communication skills and the ability to engage both technical and non-technical stakeholders.

• Experience working in diverse, team-based environments.

Assets:

• Bilingual in French and English or proficiency in a second language.