THE ROLE
The Cybersecurity Specialist will be responsible for protecting the company’s IT systems, networks, and data against cyber threats. He/she will develop and implement prevention strategies, detect potential intrusions, respond to security incidents, and ensure compliance with security standards and policies. The incumbent will directly improve Sustana’s cyber defenses, ensuring the company is well-protected against evolving threats.
BENEFITS
At Sustana we offer our employees a full benefit package to include:
- Competitive Salary and a bonus program
- Medical, Dental and Vision Insurance for employees and their families
- Pension plan
- Childcare refund program
- Tuition Reimbursement
KEY RESPONSIBILITIES
Reporting to the Senior Vice President, IT, the Cybersecurity specialist will provide guidance and direction on cyber security practices and managing and supporting the cyber security infrastructure and tools.
More specifically:
- Design, implement, and maintain cybersecurity policies, procedures, and tools.
- Continuously monitor systems, networks, and applications to detect vulnerabilities and threats.
- Respond to security incidents and coordinate corrective measures.
- Conduct penetration testing, risk assessments, and security audits.
- Participate to the management and the protection of sensitive data.
- Build, implement, and manage security controls across cloud and on-prem infrastructure (e.g., NG firewalls, IDS/IPS, internet security, cloud security, email security, endpoint security, secure configurations, and access control mechanisms).
- Develop, enforce, and maintain cybersecurity policies, procedures, and technical standards. Work hands-on to embed security in IT systems and services.
- Manage cybersecurity vendors and ensure optimal use of third-party solutions.
- Continuously assess cyber risks and perform risk-based gap analyses using frameworks (ex: NIST, CIS Controls, and ISO 27001.
- Raise awareness and provide training to internal users on security best practices.
- Collaborate with IT teams and external partners to strengthen the organization’s overall security posture.
QUALIFICATIONS
- Bachelor’s degree in computer science, cybersecurity, or a related field.
- A minimum of 7 years of experience in IT security, Cyber incident management, or Security Technical Leadership.
- Deep hands-on experience with SOC tools (SIEM, SOAR, EDR, MDR and XDR) and cyber security platforms like CrowdStrike, Proofpoint and Zscaler.
- Strong Knowledge with cybersecurity standards and frameworks i.e NIST, ISO 27001 and CIS Control
- Skills in risk analysis, cryptography, and vulnerability management.
- Ability to work under pressure and manage multiple priorities.
- Excellent communication and teamwork skills.
- Cybersecurity certifications (CISSP, CISM, CEH, CompTIA Security+, etc.).
- Experience in a cloud environment (AWS, Azure, GCP).
- Knowledge of data protection regulations (GDPR, Quebec Law 25, etc.).
OTHER INFORMATION (IF Necessary)
The Cybersecurity Specialist will primarily work in an office setting but may require site visits to various locations. Occasional travel may be necessary in Canada and the United States.
Sustana provides equal employment opportunities to all applicants for employment and prohibits discrimination and harassment of any type without regard to race, colour, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.