Location: Ottawa, Canada

In fast changing markets, customers worldwide rely on Thales. Thales is a business where brilliant people from all over the world come together to share ideas and inspire each other. In aerospace, transportation, defence, security and space, our architects design innovative solutions that make our tomorrow's possible.

For decades, Ottawa has been a global technology leader. Today, Canada’s capital holds one of the brightest and most diverse technological ecosystems in North America. Voted as Canada’s best place to live 2017 by Maclean's, Ottawa offers a low cost of living with a high quality of life. The Thales Ottawa office has been a major supplier and long-term trusted partner to DND, enabling the Canadian Armed Forces and the Canadian Coast Guard to achieve mission success.

Cybersecurity Engineer

Canada (Remote)

Position Summary

Cyberattacks have been on the rise around the globe, with hackers and other criminals targeting businesses large and small to steal valuable information or bring computer networks to a halt. Cyber Security Engineers are valued for their ability to protect an organization’s information and systems from such attacks.

This position is responsible for providing ongoing information security services to all aspects of the on premise, cloud and corporate IT environments. This position will require working across several security functions and have a strong primary focus on vulnerability management and security awareness activities.

Essential Functions

• Must be able to lead cyber incident response activities and coordinate remediation actions across multiple teams.
• Must have working knowledge of threat actor tactics and techniques.
• Must be able to perform digital forensics on Thales devices as part of the incident response process as well as investigations.
• Must be able to help assess current security monitoring posture and engage vendors to drive improvements in their service.
• Must be able to support investigations with HR and Legal teams and present findings to stakeholders around access management, security investigations and actions requiring data gathering and analysis.
• Must be able to work with stakeholders to partner on remediating vulnerabilities in systems.

• Must have experience with deploying and monitoring Endpoint Detection & Response tools across workstations and servers.
• Must be able to help define technical security requirements and recommendations on new IT and business projects.
• Must be able to identify cybersecurity risks and recommend/deploy controls to mitigate risks or reduce to an acceptable level.
• Responsible for being a technical lead and work with IS/IT teams on topics such as EDR/XDR, E-Mail security, tool configuration and deployment, system defense hardening, etc.
• Responsible for providing input to help mature all Security Monitoring and Incident Response processes.
• Responsible for providing security engineering solutions and support during incidents, proactively considering the prevention of similar incidents from occurring in the future.
• Responsible for developing a plan to mature the Security Monitoring program and engage with vendor on process improvements.

Minimum Requirements

• Bachelor’s degree in computer information systems, programming, engineering or a related field with a minimum of 5+ years of relevant work experience in information technology and security, responding to security incidents and performing investigations, or an equivalent combination of education and experience.
• 5 to 7 years of experience in Cybersecurity domains.
• 3 to 5 years of experience in responding to Security events with ability to document remediation steps and lessons learned.
• Strong knowledge of core IT and Security infrastructures including Active Directory, Microsoft Windows security controls, SIEM, AV, IPS, vulnerability scanners etc.
• Must be able to work with minimal direction in an office without any team members in the same location
• Strong communication, negotiation and analytical skills.

Preferred Qualifications

• Strong knowledge of all aspects of information security within the Prevent, Detect and Respond domains.
• Must be highly analytical and detail-oriented, with organizational skills to manage assigned work to completion.

This role requires eligibility for access to trade-controlled technologies, including Controlled Goods Program clearance and Secret Security Clearance

The reference Total Target Compensation(TTC) market range for this position, inclusive of annual base salary and the variable compensation target, is between

Total Target Cash (TTC) 90,168.30 - 191,599.20 CAD Annual

Thales provides an extensive benefits program for all full-time employees working 24 or more hours per week and their eligible dependents, including the following: 

• Company paid Extended Health, Dental, HSA, Life, AD&D, Short-term Disability, Cancer Care Program, travel insurance, Employee Assistance Plan and Well-Being program.

• Retirement Savings Plans (RRSP, DCPP, TFSA) with a company contribution and a match to a DCPP, with no vesting period.

• Company paid holidays, vacation days, and paid sick leave. 

• Voluntary Life, AD&D, Critical Illness, Long-Term Disability.

• Employee Discounts on home, auto, and gym membership.

Thales is an equal opportunity employer which values diversity and inclusivity in the workplace. Thales is committed to providing accommodations in all parts of the interview process. Applicants selected for an interview who require accommodation are asked to advise accordingly upon the invitation for an interview. We will work with you to meet your needs. All accommodation information provided will be treated as confidential and used only for the purpose of providing an accessible candidate experience.

This position requires direct or indirect access to hardware, software or technical information controlled under the Canadian Export Control List, the Canadian Controlled Goods Program, the Canadian Industrial Security Program, the US International Traffic in Arms Regulations (ITAR) and/or the US Export Administration Regulations (EAR). All applicants must be eligible or able to obtain authorization for such access including eligibility to the Canadian Controlled Goods Program and able to obtain a Canadian NATO Secret clearance.