Director of IT Security
Montréal, Quebec, Canada
Founded in Quebec City in 2010, Petal is a dynamic and growing company made up of over 350 enthusiasts who have developed innovative real-time care orchestration and medical billing solutions for Health Delivery Organizations. Patient self-scheduling, clinical capacity management, care coordination, physician scheduling and secure communication, all on our innovative and secure cloud platforms.
Grow your career and have a positive impact on society by joining one of the fastest growing health tech companies in Canada. Join us in our mission to empower healthcare innovators and improve healthcare differently.
What you can expect when joining the team
As an information security expert, you will actively contribute to the definition and implementation of Petal's IT security strategy. You will be at the heart of our commitment to healthcare data protection, working closely with cross-functional teams to strengthen our global security posture.
Your daily life
During the day, you will be led to:
- Coordinate and develop the IT security offering, manage team priorities and capacity, and address issues diligently with a solution-oriented approach;
- Define, implement and maintain security processes and procedures;
- Act as a strategic IT security partner for technology and business projects;
- Participate, with delivery teams, in the deployment of technology solutions and business systems to ensure their secure implementation;
- Coordinate, plan and execute the security program, including security testing, security configuration management, controls, etc;
- Provide advice, guidance and coaching to team members to foster their development, support their performance and ensure objectives are met;
- Represent IT Security within working groups for various initiatives or activities, to ensure communication and compliance with IT security requirements;
- Contribute to incident response activities, including investigation, containment and recovery efforts as appropriate;
- Lead the implementation of standards and ensure that they are defined and applied throughout the software development lifecycle;
- Keep abreast of the latest security threats, technologies and industry trends, and provide recommendations to improve security posture;
- Represent the company before government authorities when required (CTCP, CSTAC, etc....).
Requirements
Your profile
Are you a leader recognized for your ability to develop and implement innovative and effective IT security strategies? Do you want to play an active role in shaping the future of IT security within a healthcare technology organization? The sky is the limit! If you have:
- College diploma (DEC) or Bachelor's degree in computer science with a specialization in Information Security (IT);
- More than 15 years of relevant professional experience;
- Solid working knowledge of ITIL;
- Mastery of information security management frameworks, standards and best practices (ISO 27001, NIST, COBIT, ITIL, etc.);
- A deep understanding of application security, cloud computing, systems, and expertise in applicable security solutions;
- In-depth knowledge of SDLC processes and Agile/DevOps/DevSecOps delivery methods;
- Relevant professional designation such as CISSP, CSSLP, CISM, CISA, CRISC, CGEIT (asset);
- Solid expertise in orchestration and automation technologies;
- Strong ability to influence senior management and colleagues to develop roadmaps;
- Excellent communication skills, including documentation, visualization, presenting to a diverse audience, and balancing speaking and listening;
- Excellent leadership skills, demonstrated by an exceptional ability to collaborate, take responsibility, achieve results, self-motivate, see the big picture, build strong relationships and negotiate;
- Strong attention to detail, analytical, organizational and task management skills;
- Since you will be regularly interacting with English-speaking colleagues and suppliers located outside of Québec, proficiency in both English and French (spoken, written, and read) is required.
Petal’s position on remote working
In our opinion, a company cannot claim to be modern, innovative and have the well-being of their team at heart, without attempting to integrate remote working to the level that their business model allows them to. Post-pandemic, Petal employees will continue to benefit from the option of teleworking up to the maximum flexibility permitted by the nature of the position and the smooth running of operations.
Our benefits
- A signing bonus of $1,000 for your remote work set-up;
- Compensation that recognizes your contribution;
- 4 to 6 weeks of paid vacation per year;
- 5 paid personal days per year;
- A group RRSP / DPSP plan with employer contribution;
- A complete group insurance plan, including dental;
- An annual wellness allowance;
- Access to the Dialogue™ telehealth application;
- Flexible work hours and more.
Petal is an active participant in the equal opportunity employment program, and members of the following target groups are encouraged to apply: women, people with disabilities, aboriginal peoples and visible minorities. If you are a person with a disability, assistance with the screening and selection process is available on request.
#LI-Hybrid
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Application security Automation CISA CISM CISSP Cloud COBIT Compliance Computer Science CRISC CSSLP DevOps DevSecOps Incident response ISO 27001 ITIL NIST SDLC Security strategy Strategy
Perks/benefits: Career development Flex hours Flex vacation Health care Insurance Salary bonus Signing bonus Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.