Cybersecurity Engineer

As a Cybersecurity Engineer at Thales, you will be responsible for protecting the organization's information and systems from cyberattacks. This role focuses on providing ongoing information security services across on-premise, cloud, and corporate IT environments, with a strong emphasis on vulnerability management and security awareness. You will lead incident response, perform digital forensics, assess security monitoring, and define technical security requirements for new projects, ensuring robust defense against evolving threats.

Must Have

• Lead cyber incident response activities and coordinate remediation.
• Working knowledge of threat actor tactics and techniques.
• Perform digital forensics on Thales devices.
• Assess current security monitoring posture and drive improvements.
• Support investigations with HR and Legal, present findings.
• Partner with stakeholders to remediate system vulnerabilities.
• Experience deploying and monitoring Endpoint Detection & Response tools.
• Define technical security requirements for IT and business projects.
• Identify cybersecurity risks and recommend/deploy mitigation controls.
• Technical lead for EDR/XDR, E-Mail security, system defense hardening.
• Provide input to mature Security Monitoring and Incident Response processes.
• Provide security engineering solutions and support during incidents.
• Develop a plan to mature the Security Monitoring program.
• Bachelor’s degree in computer information systems, programming, engineering or related field.
• Minimum 5+ years of relevant work experience in IT and security.
• 5 to 7 years of experience in Cybersecurity domains.
• 3 to 5 years experience responding to Security events, documenting remediation.
• Strong knowledge of core IT and Security infrastructures (Active Directory, Windows security, SIEM, AV, IPS, vulnerability scanners).
• Ability to work with minimal direction.
• Strong communication, negotiation, and analytical skills.
• Eligibility for Controlled Goods Program clearance and Secret Security Clearance.

Good to Have

• Strong knowledge of all aspects of information security within Prevent, Detect, and Respond domains.
• Highly analytical and detail-oriented.
• Organizational skills to manage assigned work to completion.

Perks & Benefits

• Company paid Extended Health, Dental, HSA, Life, AD&D, Short-term Disability, Cancer Care Program, travel insurance, Employee Assistance Plan and Well-Being program.
• Retirement Savings Plans (RRSP, DCPP, TFSA) with a company contribution and a match to a DCPP, with no vesting period.
• Company paid holidays, vacation days, and paid sick leave.
• Voluntary Life, AD&D, Critical Illness, Long-Term Disability.
• Employee Discounts on home, auto, and gym membership.

Position Summary

Cyberattacks have been on the rise around the globe, with hackers and other criminals targeting businesses large and small to steal valuable information or bring computer networks to a halt. Cyber Security Engineers are valued for their ability to protect an organization’s information and systems from such attacks.

This position is responsible for providing ongoing information security services to all aspects of the on premise, cloud and corporate IT environments. This position will require working across several security functions and have a strong primary focus on vulnerability management and security awareness activities.

Essential Functions

• Must be able to lead cyber incident response activities and coordinate remediation actions across multiple teams.
• Must have working knowledge of threat actor tactics and techniques.
• Must be able to perform digital forensics on Thales devices as part of the incident response process as well as investigations.
• Must be able to help assess current security monitoring posture and engage vendors to drive improvements in their service.
• Must be able to support investigations with HR and Legal teams and present findings to stakeholders around access management, security investigations and actions requiring data gathering and analysis.
• Must be able to work with stakeholders to partner on remediating vulnerabilities in systems.
• Must have experience with deploying and monitoring Endpoint Detection & Response tools across workstations and servers.
• Must be able to help define technical security requirements and recommendations on new IT and business projects.
• Must be able to identify cybersecurity risks and recommend/deploy controls to mitigate risks or reduce to an acceptable level.
• Responsible for being a technical lead and work with IS/IT teams on topics such as EDR/XDR, E-Mail security, tool configuration and deployment, system defense hardening, etc.
• Responsible for providing input to help mature all Security Monitoring and Incident Response processes.
• Responsible for providing security engineering solutions and support during incidents, proactively considering the prevention of similar incidents from occurring in the future.
• Responsible for developing a plan to mature the Security Monitoring program and engage with vendor on process improvements.

Minimum Requirements

• Bachelor’s degree in computer information systems, programming, engineering or a related field with a minimum of 5+ years of relevant work experience in information technology and security, responding to security incidents and performing investigations, or an equivalent combination of education and experience.
• 5 to 7 years of experience in Cybersecurity domains.
• 3 to 5 years of experience in responding to Security events with ability to document remediation steps and lessons learned.
• Strong knowledge of core IT and Security infrastructures including Active Directory, Microsoft Windows security controls, SIEM, AV, IPS, vulnerability scanners etc.
• Must be able to work with minimal direction in an office without any team members in the same location
• Strong communication, negotiation and analytical skills.

Preferred Qualifications

• Strong knowledge of all aspects of information security within the Prevent, Detect and Respond domains.
• Must be highly analytical and detail-oriented, with organizational skills to manage assigned work to completion.

This role requires eligibility for access to trade-controlled technologies, including Controlled Goods Program clearance and Secret Security Clearance

The reference Total Target Compensation(TTC) market range for this position, inclusive of annual base salary and the variable compensation target, is between

Total Target Cash (TTC) 90,168.30 - 191,599.20 CAD Annual

Thales provides an extensive benefits program for all full-time employees working 24 or more hours per week and their eligible dependents, including the following:

• Company paid Extended Health, Dental, HSA, Life, AD&D, Short-term Disability, Cancer Care Program, travel insurance, Employee Assistance Plan and Well-Being program.
• Retirement Savings Plans (RRSP, DCPP, TFSA) with a company contribution and a match to a DCPP, with no vesting period.
• Company paid holidays, vacation days, and paid sick leave.
• Voluntary Life, AD&D, Critical Illness, Long-Term Disability.
• Employee Discounts on home, auto, and gym membership.

Thales is an equal opportunity employer which values diversity and inclusivity in the workplace. Thales is committed to providing accommodations in all parts of the interview process. Applicants selected for an interview who require accommodation are asked to advise accordingly upon the invitation for an interview. We will work with you to meet your needs. All accommodation information provided will be treated as confidential and used only for the purpose of providing an accessible candidate experience.

This position requires direct or indirect access to hardware, software or technical information controlled under the Canadian Export Control List, the Canadian Controlled Goods Program, the Canadian Industrial Security Program, the US International Traffic in Arms Regulations (ITAR) and/or the US Export Administration Regulations (EAR). All applicants must be eligible or able to obtain authorization for such access including eligibility to the Canadian Controlled Goods Program and able to obtain a Canadian NATO Secret clearance.