Security Advisor Specialist – Security Testing and Resilience

Our employees are at the heart of everything we do. Together, we help people, businesses, and society prosper in good times and be resilient in bad times.

Our employee promise represents Intact’s commitment to you in exchange for living our Values, striving to do your best work, being open to change and investing in your career. In return, we promise to provide support, opportunities and performance-led financial rewards at a workplace where you can shape the future, win as a team and grow with us.

About the role

Are you passionate about cybersecurity and eager to make a significant impact in a new and dynamic environment? Join Partner Solutions (PSI) team as a Security Advisor Specialist – Security Testing and Resilience, you will focus on assessing vulnerabilities, securing applications, and building resilient defenses against attacks. You will lead initiatives to ensure the robustness of systems, applications, and architectures while supporting the organization's overall cyber defense strategy.

What you'll do here: 

• Coordinate penetration testing efforts with external vendors on networks, applications, and systems, ensuring comprehensive vulnerability identification and remediation across multi-tenant environments, scaling across several affiliate entities.
• Develop and maintain cyber resilience strategies, encompassing disaster recovery, business continuity, and crisis management plans to safeguard the organization against potential disruptions.
• Collaborate closely with the architecture team to ensure security is integral to the design of systems, networks, and cloud environments, embedding security principles from the outset.
• Conduct security control testing, including infrastructure and network assessments, to evaluate and enhance the effectiveness of existing security measures.
• Conduct regular security reviews of infrastructure and systems, identifying gaps in defenses and proposing enhancements to strengthen the organization’s security posture.
• Provide expertise in secure development practices, guiding development teams on implementing secure coding techniques and mitigating application vulnerabilities through secure coding standards.
• Oversee in-depth application security assessments, including vulnerability testing, and static/dynamic analysis, ensuring critical business applications are secure and that security controls and best practices are consistently followed.
• Stay informed about the latest attack techniques, tools, and emerging security threats, ensuring security testing methodologies remain current, proactive, and effective.

What you bring to the table: 

• Bachelor's degree in computer science, Information Security, or a related field.
• A minimum of 10 years’ experience in Information Technology and/or Security, 5+ years of experience in security testing, penetration testing, or related roles.
• Strong understanding of cloud security and multi-cloud architectures, particularly in hybrid environments.
• Expertise in application security testing, including code reviews, vulnerability testing, and static/dynamic analysis.
• Familiarity with industry standards, frameworks, and best practices for security controls and secure development practices.
• Experience with security control testing, including infrastructure, network, and system assessments.
• Strong knowledge of pen testing tools and experience working with external penetration testing vendors.
• In-depth understanding of security frameworks such as NIST, OWASP, and CIS, and how they apply to security testing and resilience.
• Certifications such as OSCP, CEH, CISSP, or similar are highly desirable.
• Experience with vulnerability management and remediation processes, including tracking issues through to resolution.
• Familiarity with disaster recovery, business continuity, and crisis management strategies.
• Ability to collaborate with cross-functional teams, including architects and developers, to embed security throughout the lifecycle of systems and applications.
• Strong analytical, problem-solving, and critical-thinking skills to assess and mitigate security risks.
• Excellent communication skills to interact with technical and non-technical stakeholders, ensuring that security risks and mitigation strategies are well understood.
• Up to date with emerging attack techniques, tools, and trends in the cybersecurity landscape.
• For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country.
• No Canadian work experience required however must be eligible to work in Canada.

#LI-Hybrid

What we offer
 

Our hybrid work model provides the balance between working from home and enjoying meaningful in-person interactions.

Working here means you'll be empowered to be and do your best every day. Here is some of what you can expect as a permanent member of our team:

• A financial rewards program that recognizes your success

• An industry leading Employee Share Purchase Plan; we match 50% of net shares purchased

• An extensive flex pension and benefits package, with access to virtual healthcare

• Flexible work arrangements

• Possibility to purchase up to 5 extra days off per year

• An annual wellness account that promotes an active and healthy lifestyle

• Access to tools and resources to support physical and mental health, embracing change and connecting with colleagues

• A dynamic workplace learning ecosystem complete with learning journeys, interactive online content, and inspiring programs

• Inclusive employee-led networks to educate, inspire, amplify voices, build relationships and provide development opportunities

• Inspiring leaders and colleagues who will lift you up and help you grow

• A Community Impact program, because what you care about is a part of what makes you different. And how you contribute to your community should be just as unique.

We are an equal opportunity employer

At Intact, our Value of respect is founded on seeing diversity as a strength. We strive to create an accessible workplace where employees feel valued, included and encouraged to share their unique perspectives.

We encourage applications from individuals who are members of equity-deserving groups, including but not limited to women, Indigenous peoples, persons with disabilities, Black people, and members of the 2SLGBTQI+ community.

As part of Intact’s commitment to reconciliation, we acknowledge that we work, meet and travel across the land currently called Canada, originally inhabited by First Nations, Metis and Inuit people. This history extends through many centuries and continues to evolve today.

We have policies to ensure equal access and participation for people with disabilities, including providing workplace adjustments (accommodations). A copy of applicable policies is available on request.

If we can provide a specific adjustment to make the recruitment process more accessible for you, please let us know when we reach out about a job opportunity. We’ll work with you to meet your needs.

Learn more about our recruitment process and your candidate journey here.

If you are an employee of Intact or belairdirect, please apply for this role on Internal Career Site.