Cybersecurity Engineer

Thales is seeking a Cybersecurity Engineer to join their team in Canada (Remote). This role focuses on providing information security services across on-premise, cloud, and corporate IT environments. Key responsibilities include leading cyber incident response, performing digital forensics, assessing security monitoring, and defining technical security requirements. The engineer will also work on vulnerability management and security awareness, deploying and monitoring EDR tools, and mitigating cybersecurity risks to protect the organization's information and systems from attacks.

Must Have

• Lead cyber incident response activities and coordinate remediation actions.
• Have working knowledge of threat actor tactics and techniques.
• Perform digital forensics on Thales devices as part of incident response and investigations.
• Help assess current security monitoring posture and engage vendors to drive improvements.
• Support investigations with HR and Legal teams and present findings to stakeholders.
• Work with stakeholders to partner on remediating vulnerabilities in systems.
• Experience with deploying and monitoring Endpoint Detection & Response tools across workstations and servers.
• Help define technical security requirements and recommendations on new IT and business projects.
• Identify cybersecurity risks and recommend/deploy controls to mitigate risks.
• Be a technical lead and work with IS/IT teams on topics such as EDR/XDR, E-Mail security, tool configuration and deployment, system defense hardening.
• Provide input to help mature all Security Monitoring and Incident Response processes.
• Provide security engineering solutions and support during incidents.
• Develop a plan to mature the Security Monitoring program and engage with vendor on process improvements.
• Bachelor’s degree in computer information systems, programming, engineering or a related field with a minimum of 5+ years of relevant work experience in information technology and security.
• 5 to 7 years of experience in Cybersecurity domains.
• 3 to 5 years of experience in responding to Security events with ability to document remediation steps and lessons learned.
• Strong knowledge of core IT and Security infrastructures including Active Directory, Microsoft Windows security controls, SIEM, AV, IPS, vulnerability scanners.
• Ability to work with minimal direction in an office without any team members in the same location.
• Eligibility for access to trade-controlled technologies, including Controlled Goods Program clearance and Secret Security Clearance.

Good to Have

• Strong knowledge of all aspects of information security within the Prevent, Detect and Respond domains.
• Highly analytical and detail-oriented, with organizational skills to manage assigned work to completion.

Perks & Benefits

• Company paid Extended Health, Dental, HSA, Life, AD&D, Short-term Disability, Cancer Care Program, travel insurance, Employee Assistance Plan and Well-Being program.
• Retirement Savings Plans (RRSP, DCPP, TFSA) with a company contribution and a match to a DCPP, with no vesting period.
• Company paid holidays, vacation days, and paid sick leave.
• Voluntary Life, AD&D, Critical Illness, Long-Term Disability.
• Employee Discounts on home, auto, and gym membership.

In fast changing markets, customers worldwide rely on Thales. Thales is a business where brilliant people from all over the world come together to share ideas and inspire each other. In aerospace, transportation, defence, security and space, our architects design innovative solutions that make our tomorrow's possible.

Position Summary

We have a current vacancy for a Cybersecurity Engineer to join our Team in Canada. Cyberattacks have been on the rise around the globe, with hackers and other criminals targeting businesses large and small to steal valuable information or bring computer networks to a halt. Cyber Security Engineers are valued for their ability to protect an organization’s information and systems from such attacks.

This position is responsible for providing ongoing information security services to all aspects of the on premise, cloud and corporate IT environments. This position will require working across several security functions and have a strong primary focus on vulnerability management and security awareness activities.

Essential Functions

• Must be able to lead cyber incident response activities and coordinate remediation actions across multiple teams.
• Must have working knowledge of threat actor tactics and techniques.
• Must be able to perform digital forensics on Thales devices as part of the incident response process as well as investigations.
• Must be able to help assess current security monitoring posture and engage vendors to drive improvements in their service.
• Must be able to support investigations with HR and Legal teams and present findings to stakeholders around access management, security investigations and actions requiring data gathering and analysis.
• Must be able to work with stakeholders to partner on remediating vulnerabilities in systems.
• Must have experience with deploying and monitoring Endpoint Detection & Response tools across workstations and servers.
• Must be able to help define technical security requirements and recommendations on new IT and business projects.
• Must be able to identify cybersecurity risks and recommend/deploy controls to mitigate risks or reduce to an acceptable level.
• Responsible for being a technical lead and work with IS/IT teams on topics such as EDR/XDR, E-Mail security, tool configuration and deployment, system defense hardening, etc.
• Responsible for providing input to help mature all Security Monitoring and Incident Response processes.
• Responsible for providing security engineering solutions and support during incidents, proactively considering the prevention of similar incidents from occurring in the future.
• Responsible for developing a plan to mature the Security Monitoring program and engage with vendor on process improvements.

Minimum Requirements

• Bachelor’s degree in computer information systems, programming, engineering or a related field with a minimum of 5+ years of relevant work experience in information technology and security, responding to security incidents and performing investigations, or an equivalent combination of education and experience.
• 5 to 7 years of experience in Cybersecurity domains.
• 3 to 5 years of experience in responding to Security events with ability to document remediation steps and lessons learned.
• Strong knowledge of core IT and Security infrastructures including Active Directory, Microsoft Windows security controls, SIEM, AV, IPS, vulnerability scanners etc.
• Must be able to work with minimal direction in an office without any team members in the same location
• Strong communication, negotiation and analytical skills.

Preferred Qualifications

• Strong knowledge of all aspects of information security within the Prevent, Detect and Respond domains.
• Must be highly analytical and detail-oriented, with organizational skills to manage assigned work to completion.

This role requires eligibility for access to trade-controlled technologies, including Controlled Goods Program clearance and Secret Security Clearance.

The reference Total Target Compensation(TTC) market range for this position, inclusive of annual base salary and the variable compensation target, is between Total Target Cash (TTC) 107,000.00 - 134,000.00 CAD Annual.

This reflects how companies in a similar industry and geographic region generally pay for similar jobs. This range helps the Company make pay decisions as one data point among many. Where a position falls within this range is also dependent on other factors including – but not limited to – the employee’s career path history, competencies, skills and performance, as well as the company’s annual salary budget, the customer’s program requirements, and the company’s internal equity. Thales may offer additional benefits and other compensation, depending on circumstances not related to an applicant’s status protected by local, state, or federal law.

We use artificial intelligence–enabled tools as part of our recruitment process to support activities such as candidate discovery, résumé matching, and interview scheduling. These tools may help screen and assess applications and recommend potential matches based on the requirements within the job description. All hiring decisions, including candidate evaluation, selection, and disposition, are made by human recruiters. Artificial intelligence does not make hiring decisions on our behalf.

Thales provides an extensive benefits program for all full-time employees working 24 or more hours per week and their eligible dependents, including the following:

• Company paid Extended Health, Dental, HSA, Life, AD&D, Short-term Disability, Cancer Care Program, travel insurance, Employee Assistance Plan and Well-Being program.
• Retirement Savings Plans (RRSP, DCPP, TFSA) with a company contribution and a match to a DCPP, with no vesting period.
• Company paid holidays, vacation days, and paid sick leave.
• Voluntary Life, AD&D, Critical Illness, Long-Term Disability.
• Employee Discounts on home, auto, and gym membership.

Thales is an equal opportunity employer which values diversity and inclusivity in the workplace. Thales is committed to providing accommodations in all parts of the interview process. Applicants selected for an interview who require accommodation are asked to advise accordingly upon the invitation for an interview. We will work with you to meet your needs. All accommodation information provided will be treated as confidential and used only for the purpose of providing an accessible candidate experience.

This position requires direct or indirect access to hardware, software or technical information controlled under the Canadian Export Control List, the Canadian Controlled Goods Program, the Canadian Industrial Security Program, the US International Traffic in Arms Regulations (ITAR) and/or the US Export Administration Regulations (EAR). All applicants must be eligible or able to obtain authorization for such access including eligibility to the Canadian Controlled Goods Program and able to obtain a Canadian NATO Secret clearance.

About Thales

In a world that is increasingly fast moving, unpredictable – and full of opportunities, trust is essential for societies to flourish. Trust in our institutions. Trust in our systems. Trust in technology. Trust in each other.

And the people we all rely on to make the world go round, they rely on Thales. They come to us with big ambitions: to make life better, to keep us safer.

From the bottom of the oceans to the depths of space and cyberspace, we help our customers navigate uncertainty with confidence and new frontiers with optimism. Thinking smarter and acting faster - mastering ever greater complexity and every decisive moment along the way.

We collaborate to architect and deliver high technology solutions that are both imaginative and resilient, human-centered and sustainable. So that together we can harness the extraordinary power of technology to build a future we can all trust.