Risk Management & Security Specialist

Join Info-Ways as a Risk Management & Security Specialist, where you will play a pivotal role in safeguarding our assets and ensuring compliance with industry standards. You will be responsible for identifying potential risks, developing mitigation strategies, and implementing security protocols to protect our organization from various threats.

At Tecsys, we recognize the numerous benefits of remote work for employee well-being and the environment, such as enhanced morale, increased productivity, and reduced commuting times. We take pride in being a remote work-friendly organization. Our remote-first culture, combined with well-located offices and collaborative workspaces, empowers our team with the freedom and flexibility to work in the manner that maximizes productivity.About TecsysTecsys is a fast-growing innovator providing supply chain solutions to leading healthcare systems, hospitals, pharmacies, distributors, retailers, and 3PLs. We collaborate with industry leaders to transform their supply chains through technology. If you thrive on facing exciting challenges and seek continuous learning opportunities, we encourage you to join Tecsys!About the PositionWe are in search of a Governance, Risk, and Compliance (GRC) Security Specialist who will play a pivotal role within Tecsys. The GRC Security Specialist will define how security can drive business initiatives and how we should align with best security practices, as well as various contractual and regulatory requirements. The successful candidate will support the implementation of a security risk management framework. This role will also encompass vendor risk management and business continuity programs. As a security expert, you will recommend improvements to reduce, contain, and mitigate identified risks while participating in various business and security initiatives to enhance Tecsys' security maturity.Your ResponsibilitiesSupport an ongoing security risk management framework.Collaborate with technical teams to develop, implement, and monitor corrective action plans for security compliance issues or audit gaps.Work with stakeholders to define processes, automate, and continuously monitor information security controls, exceptions, risks, testing, and evidence collection.Develop reporting metrics and dashboards.Assist in identifying cyber risks and addressing governance gaps and process inefficiencies.Actively participate in internal and external security and compliance assessment initiatives.

Embracing the benefits of remote work, including enhanced employee satisfaction, increased productivity, and a positive impact on well-being and the environment, Tecsys proudly operates as a digital-first organization. Our digital-centric work culture, complemented by our strategically located offices and collaborative workspaces, empowers our team with the flexibility to work in the most effective manner for their productivity.About UsTecsys is a rapidly expanding innovator providing advanced supply chain solutions to leading healthcare systems, hospitals, pharmacy businesses, distributors, retailers, and third-party logistics providers. We collaborate with industry leaders to revolutionize their supply chains through pioneering technology. If you are passionate about overcoming intriguing challenges and seeking continuous learning opportunities, Tecsys may be the perfect place for you!About the RoleWe are on the lookout for a Security Governance, Risk and Compliance Specialist who will play a crucial role in defining how security can enhance business initiatives and ensure adherence to security best practices alongside relevant contractual and regulatory requirements. The ideal candidate will assist in implementing a robust security risk management framework. This position will also involve managing vendor risk and business continuity programs. As a security subject matter expert, you will propose enhancements to mitigate, contain, and reduce identified risks while participating in various business and security initiatives aimed at boosting Tecsys's security maturity.Key ResponsibilitiesSupport the ongoing development of a security risk management framework.Work collaboratively with technical teams to develop, implement, and monitor corrective action plans for security compliance issues or audit deficiencies.Engage with stakeholders to define processes, automate, and continuously monitor information security controls, exceptions, risks, testing, and evidence gathering.Create reporting metrics and dashboards.Assist in identifying cyber risks and addressing governance gaps and process inefficiencies.Participate in internal and external security and compliance assessment initiatives such as SOC 2, PCI-DSS, NIST, and FedRAMP.Review and enhance the vendor risk management program.Monitor existing controls and conduct periodic audits and reviews to ensure their effectiveness and operating efficiency while identifying and addressing potential issues.Collaborate with internal IT and business teams to identify cyber risks and prioritize security compliance improvements.As a security expert, support IT and cyber teams in implementing controls to meet security and privacy compliance requirements and best practices.

Join Ubisoft Montreal as a Security Specialist and be an integral part of our IT Security Operations team within the Security and Risk Management group. In this pivotal role, you will spearhead the technical operations and advancements of the core security infrastructure utilized across our organization. Your expertise will play a vital role in safeguarding Ubisoft, enhancing our security capabilities, and facilitating extensive incident investigations and responses. This includes managing logging infrastructure, Security Information and Event Management (SIEM) systems, and Endpoint Detection and Response (EDR) solutions.Key ResponsibilitiesOversee the technical operations and progression of crucial security applications utilized by the Security Operations team.Maintain, monitor, troubleshoot, and scale our security logging infrastructure to bolster threat detection and incident response efforts.Ensure security data is accurately formatted and ingested to assist in detection engineering and investigations.Support Security Operations teams with SIEM searches, training sessions, custom dashboards, and troubleshooting assistance.Manage relationships with vendors and cross-functional teams to enhance and expand SIEM capabilities.Collaborate with Detection Engineering to create security detection content and operational dashboards in Splunk.Develop and fine-tune threat detection logic to boost visibility and response times.Report on security compliance metrics, service health, and logging coverage to stakeholders.

Join our dynamic team at SSENSE as a Lead Cyber Security Specialist, where you'll play a pivotal role in safeguarding our digital assets and ensuring the integrity of our information systems. In this key position, you will lead initiatives to enhance our cyber security posture while fostering a culture of security awareness throughout the organization.Your responsibilities will include developing and implementing security policies, conducting risk assessments, and responding to security incidents. Collaborate with cross-functional teams to identify vulnerabilities and promote best practices in information security.

Join our mission-driven team at Jobs for Humanity as a Security Analyst specializing in Organizational Resilience. In this dynamic role, you will be instrumental in identifying potential risks and implementing robust security measures to safeguard our organization's integrity.We seek a proactive individual who thrives in a fast-paced environment and possesses a deep understanding of security protocols and risk management strategies. Your expertise will contribute significantly to our resilience initiatives, ensuring we can effectively respond to challenges and maintain operational continuity.

Join our dynamic team at info-ways as a Network Security Operations Specialist. In this pivotal role, you will be responsible for safeguarding our network and systems against vulnerabilities and cyber threats. You will work closely with cross-functional teams to implement security protocols, monitor network traffic, and respond to security incidents. Your expertise will be crucial in maintaining the integrity and confidentiality of sensitive information.

Position Overview:As a Network Security Specialist at Squarepoint Capital, you will be instrumental in fortifying our global network infrastructure across diverse locations, including regional data centers, office spaces, co-location facilities, and public cloud environments. Your core mission will entail the design, implementation, and maintenance of cutting-edge security protocols and services to ensure the integrity of our network infrastructure.Your role will also encompass leading and engaging in an array of projects focused on the installation, monitoring, and enhancement of network and security hardware, software, and communication links.Design and deploy comprehensive network security solutions that align with corporate security standards and requirements.Lead project delivery and management efforts, collaborating with internal stakeholders and external vendors to ensure successful project outcomes.Implement, support, and maintain network security infrastructure across all Squarepoint locations, including offices, data centers, and co-location sites, with occasional travel required.Provide advanced technical L3 support to troubleshoot and resolve performance and security issues, ensuring prompt resolution and minimal downtime.Identify opportunities for process improvements and implement automation solutions to increase efficiency, reduce manual effort, and enhance overall security posture.

Join Act Digital as a Production Security Expert, where you will play a vital role in supporting one of our key financial clients in a highly regulated and complex environment.This position focuses on reviewing, securing, and enhancing sensitive access rights within Identity & Access Management (IAM) systems. You will serve as a security expert on extended rights and proxy-related issues, ensuring that access rules and processes are robust, compliant, and well-governed.Ideal candidates will thrive in analysis, security governance, and process improvement, rather than engaging in day-to-day firefighting.Key Responsibilities:Review and analyze security rules concerning extended and privileged access rights.Assess and enhance security processes and controls.Provide expert support for IAM production activities.Contribute to global security initiatives regarding access management.Investigate security-related queries or incidents.Act as a subject-matter expert on IAM and extended rights.

transatat1 seeks a Risk Prevention and Harassment Advisor based in Montreal. This role centers on promoting a safe, respectful, and compliant workplace. The Advisor plays a key part in shaping strategies that reduce occupational hazards and address harassment concerns throughout the company. Key responsibilities Collaborate with teams from various departments to strengthen workplace safety and ensure compliance with relevant standards. Design and support training initiatives focused on risk prevention and harassment awareness. Carry out assessments to identify risks related to workplace hazards and incidents of harassment. Review and refine company policies to align with current regulations and best practices.

As a Vulnerability Management and Security Analyst at info-ways, you will play a crucial role in identifying, evaluating, and mitigating security vulnerabilities within our systems. You will collaborate with cross-functional teams to implement security measures and ensure compliance with industry standards.

Genetec Inc. is seeking a Delivery & Operations Specialist in Montreal to support Security Center SaaS, a unified security platform that integrates access control, video management, forensic search, intrusion monitoring, and automation. Built on Microsoft Azure, this solution removes the need for on-premise servers and storage, helping customers reduce hardware costs and installation times. Role overview This position works closely with support, DevOps, and cloud operations teams to build processes and tools that improve product support and delivery. The role also collaborates with sales and certified system integrators to ensure smooth deployments for both current customers and those evaluating the platform. What you will do Maintain system availability according to service level agreements. Develop and update monitoring, metric collection, and deployment tools. Support performance optimization and capacity planning efforts. Track trends and recurring incidents through feedback and reporting. Analyze and resolve customer incidents and service requests. Provide Business Intelligence data to product management and sales. Assist tier one technical support and manage escalated, complex, or strategic customer cases. Requirements Bachelor's degree in Computer Science or Computer Engineering, or equivalent experience. Ability to work independently, show initiative, and adapt to new challenges. Strong organizational skills, deductive reasoning, and attention to detail. Solid analytical and troubleshooting abilities. Comfortable multitasking, working iteratively, and shifting priorities as needed. Excellent written and verbal communication skills. Collaborative approach and commitment to team goals. Interest in process improvement and a focus on customer satisfaction.

DESCRIPTION:Join Valsoft's Edelweiss Software Group as the Head of Security in Montreal, Quebec. We are seeking a seasoned professional to lead our security initiatives across our diverse portfolio of global subsidiaries.ABOUT VALSOFT CORP.:Founded in Canada in 2015, Valsoft has grown to manage a global portfolio of over 118 companies. We specialize in acquiring and developing software firms across vertical markets, enabling them to provide critical solutions tailored to their clients' needs. Our core principle is to invest in well-established businesses and foster an entrepreneurial environment, shaping them into industry leaders. Our mission is to acquire, retain, and create value through long-term partnerships with existing management teams.INVESTMENT APPROACH:Unlike traditional private equity and venture capital firms, we are entrepreneurs who buy, develop, and grow software businesses. We do not flip companies; instead, we form strategic alliances with current management teams. We recognize the dedication and perseverance required to build a business and prioritize the well-being of our clients and employees over short-term goals.CULTURE:Valsoft is more than just a workplace; we are a team. When we say our people are our greatest asset, we mean it. Investing in our employees is our top priority. We cultivate an environment where our team members feel the excitement of the first day, day after day, fostering a culture of performance and collaboration. We celebrate our achievements and take pride in them. We dream big, stay humble, and remain motivated.ROLE DESCRIPTION:The Head of Security will be an experienced leader who understands business challenges, responsible for overseeing the information security function across multiple portfolios within a global holding company with diverse subsidiaries operating in various sectors, geographies, and risk profiles. This leader will establish consistent, risk-focused security practices across the group, and play a pivotal role in tailoring security programs to meet the unique needs of each subsidiary.This position requires both strategic leadership and hands-on execution. The Head of Security will closely collaborate with the global CISO, while directly supporting group management to ensure that security maturity evolves in alignment with the group's business objectives.

Location: Montreal, Canada (Hybrid) Interview Process: Face-to-face interview (mandatory) Eligibility: Local candidates only Job Type: Contract (6–12 months) Experience Level: Senior Role Overview dyneits seeks a Senior Java Developer to design and build high-performance APIs connecting MLFlow with Model Risk Management (MRM) platforms. This role sits at the intersection of backend engineering, data architecture, and model governance. The developer will work closely with data science, risk, and technology teams, using AI-assisted development tools to improve productivity and code quality. What You Will Do API Development and System Design Design and implement scalable, secure RESTful APIs in Java Integrate MLFlow lifecycle artifacts (models, runs, metrics, metadata) with enterprise MRM systems Develop backend services supporting model onboarding, validation workflows, governance, and auditability Data and Architecture Create and manage data models that align with MRM and regulatory requirements Work with DB2 and/or MongoDB to ensure data quality, lineage, and traceability Ensure API design meets enterprise architecture, security, and compliance standards Collaboration and Delivery Work alongside data scientists, model validators, risk managers, architects, QA, and DevOps teams Participate in design sessions, architecture reviews, and code reviews Support the full software development lifecycle: development, testing, deployment, and production support AI-Assisted Development Use AI coding tools such as GitHub Copilot, AMP, and Claude Code Apply AI for code generation, refactoring, test creation, documentation, and productivity improvements Maintain secure and responsible use of AI tools Performance and Reliability Optimize API performance, scalability, and reliability Implement monitoring, logging, and error handling systems

Who We AreAt dss+, we are more than just a global consulting firm; we are a mission-driven organization with the goal of saving lives and fostering a sustainable future for our clients, employees, and the communities we touch.Our people-centric approach ensures that we prioritize individuals in all aspects of our work, making us a consultancy with heart.As a Freelance Operational Risk Consultant specializing in the Mining & Metals sector, your skills will be instrumental in safeguarding people, assets, and the environment, positioning you as a vital contributor to our overarching mission.Are You the Right Fit?In collaboration with client-engagement teams, you will partner with the dss+ team to coach individuals at all organizational levels, driving impactful behavioral changes in safety and risk management practices.Your extensive operational risk management knowledge, coupled with your coaching capabilities, will empower you to cultivate sustainable cultural and behavioral transformations.Key Responsibilities:Collaborate with the dss+ team to diagnose the underlying causes of client safety and productivity challenges by analyzing various metrics and observations, and develop, communicate, and implement effective solutions.Engage directly with clients to identify pain points and devise tailored strategies that effectively address their needs.Coach small groups within the organization to instill genuine changes in cultural and behavioral safety practices.This position is a short-term freelance role requiring on-site client engagement five days a week for the duration of the project.

Introducing dss+At dss+, we are more than just a global consulting firm; we are a purpose-driven organization dedicated to saving lives and fostering a sustainable future for our clients, employees, and the communities we serve.We place people at the center of our mission, embodying a consultancy with heart.As a Freelance Mining Operations Specialist, your expertise is crucial in safeguarding people, assets, and the environment, positioning you as an integral part of our mission.Are You the Right Fit?Joining our client-engagement teams, you will collaborate with the dss+ team to coach individuals at all levels, driving tangible behavioral changes across operations regarding safety and risk management.Utilizing your operational risk management experience and coaching skills, you will help cultivate enduring and sustainable cultural and behavioral transformations.Key Responsibilities:Collaborate with the dss+ team to identify root causes of client safety and productivity challenges by analyzing diverse metrics and observations, developing, communicating, and executing effective solutions.Engage directly with clients to pinpoint pain points and devise tailored, effective solutions to address their specific needs.Coach small groups within the organization to facilitate authentic cultural change and improve approaches to behavioral safety.This is a short-term freelance project requiring on-site presence with the client five days a week for the project's duration.

Your Day at a Glance:As a Technical Response Specialist at Genetec Inc., you will work closely with proposal managers, content teams, and subject matter experts (SMEs) to craft clear and precise responses to technical inquiries from both internal and external stakeholders. Your focus will be on security, privacy, and regulatory compliance. You will play a crucial role in ensuring that all technical information provided in proposals, questionnaires, and other communications is consistent, well-documented, and adheres to company standards. Your core responsibilities will include:Responding to security questionnaires submitted to the bid team, ensuring that responses are accurate, consistent, and meet the company’s security and compliance standards.Keeping your knowledge up-to-date on Genetec’s products, platform features, and internal security and compliance policies, while staying informed about developments in cybersecurity, privacy regulations, and industry best practices.Collaborating with the content team to identify, collect, and proactively develop reusable security and compliance content to enhance the proposal content library.Assisting proposal managers in completing the security sections of bids and responses, ensuring submissions are timely and of high quality.Building and maintaining strong working relationships with SMEs across various departments to gather technical insights and validate responses.Working closely with the content management team to ensure security-related content is accurate, current, easily accessible, and clearly articulated.Participating in client calls or meetings as necessary to clarify security-related questions and provide technical context to support the bidding or proposal process.

Join Ubisoft as a Team Lead in Security, where you will spearhead initiatives to protect our digital assets and ensure the safety of our gaming environments. You will lead a dynamic team of security professionals, collaborating with various departments to implement robust security measures and address potential vulnerabilities. This role is essential in fostering a culture of security awareness and resilience within the organization.

Team: Information Security Position Overview: Squarepoint Capital is looking for a highly skilled Senior Information Security Engineer to join our esteemed Information Security team. In this critical role, you will contribute significantly to enhancing our security framework by offering expert insights and spearheading improvements in vital domains such as network, cloud, data, and system security. As a key escalation contact for Security Operations, you will ensure that complex security issues are thoroughly analyzed and resolved efficiently. Your responsibilities will include supervising security measures in essential IT projects, leading threat modeling efforts for intricate systems, conducting audits to identify security vulnerabilities, and developing automated processes to continuously assess the effectiveness of security controls and system resilience. This position presents an exciting opportunity to lead security initiatives and influence the overall security strategy of the organization. Proactivity and self-motivation are essential for success in this role. Enhance security across key areas, including network security, email security, cloud security, and data protection. Act as a security consultant for IT projects, ensuring compliance with security requirements and risk mitigation strategies. Manage and optimize security tools, ensuring their effective deployment and maintenance. Lead the design and development of robust security solutions and architectures to safeguard critical assets. Provide second-line support to Security Operations. Conduct threat modeling and risk assessments to uncover vulnerabilities and implement proactive mitigation strategies. Oversee relationships with the Managed Detection and Response (MDR) provider to ensure service efficacy and continuous improvement. Implement initiatives outlined in the security roadmap, aligning with business objectives and emerging threats. Collaborate with cross-functional teams to boost security awareness and integrate security into business processes.

Join Our Security Operations Team:Genetec Inc. is seeking a dedicated Security Operations Center (SOC) Specialist to enhance our information security team. This dynamic team collaborates closely with various business and technical teams to safeguard Genetec, its employees, and clients from malicious threats. By monitoring Genetec's networks and systems, you will play a key role in securing our assets through incident investigation and response.As a vital member of our blue team, you will identify vulnerabilities within our infrastructure (software, hardware, and networks) and devise innovative strategies to fortify our defenses. We believe that traditional firewalls and antivirus software are no longer sufficient to combat today’s threats; therefore, your role will involve proposing cutting-edge security solutions and enhancements to maintain a high-quality security posture.Your Daily Responsibilities:In your capacity as a SOC Specialist, you will primarily handle incidents escalated by the triage team. You will also contribute to developing and maintaining the SOC's ability to detect security breaches and potential intrusions across the enterprise's networks, servers, and workstations. Your involvement will extend to implementing processes and tools for incident response, data collection, log analysis, hostile environment testing, penetration testing, malware analysis, and forensics. Support security incident response actions, ensuring proper assessment, containment, mitigation, and documentation. Conduct initial analysis and identify indicators of compromise (IOC), escalate to the appropriate operational units, and engage in post-incident activities. Develop a comprehensive incident response guide (runbook) that includes tools, techniques, and forensic methods for staff to utilize during investigations. Monitor security events, manage threats, model threats, identify threat vectors, and create use cases for security monitoring. Conduct real-time investigations on endpoints, including identifying and collecting essential forensic artifacts, offline investigation, and necessary remediation actions. Implement and enhance security event monitoring processes and tools both in the Cloud and on-premises. Continuously monitor vulnerabilities and emerging threats and risks. Collaborate directly with other internal teams to ensure timely patching and remediation efforts are completed.