We are looking for a Senior Manager for Incorporation Security and Compliance for a one year contract with high possibility of extension. Role is hybrid with 3 days a week on site in Downtown Toronto.

Overview:

We are looking for a well-rounded Security Operations Analyst to join our lean but highly effective security team. You'll play a key role in defending our organization by actively managing and responding to security incidents, supporting compliance efforts, and fostering security awareness across the company. This is a hands-on role, ideal for someone who thrives in a fast-paced environment, communicates effectively with diverse teams, and is passionate about continuously learning and adapting to new tools and threats.

Key Responsibilities:

• Actively monitor and manage security incidents across the organization.
• Prioritize, categorize, and escalate incidents based on business impact and severity.
• Collaborate closely with internal teams to investigate and remediate security threats.
• Operate across various security tools and platforms, including but not limited to CrowdStrike, Zscaler, and Google SecOps / Chronicle.
• Support compliance initiatives and audits related to ISO 27001 and PCI DSS standards.
• Lead efforts in Data Loss Prevention (DLP) policy development, monitoring, and enforcement.
• Contribute to security awareness training programs and help cultivate a strong security culture.
• Continuously evaluate and recommend improvements to security tools, processes, and procedures.

Qualifications:

• Proven experience in a security operations role with a strong focus on incident detection, response, and management.
• Excellent interpersonal and communication skills; able to work effectively with various personalities and stakeholders across departments.
• Ability to quickly learn and adapt to new security tools and environments.
• Strong knowledge of industry frameworks and standards (ISO 27001, PCI DSS).
• Hands-on experience with DLP technologies and best practices.
• Familiarity with security awareness programs and training methodologies.
• Self-motivated, highly organized, and capable of working independently in a small team setting.

Preferred Experience (not required):

• Working knowledge of CrowdStrike, Zscaler, Google SecOps / Chronicle.
• Previous experience in a similarly sized environment (e.g., 3-person security team supporting 250 employees).