Lead Cyber Security Specialist

Company Description

SSENSE is a global technology platform operating at the intersection of culture, community, and commerce. Headquartered in Montreal, it features a mix of established and emerging luxury brands across womenswear, menswear, kidswear, and Everything Else™. SSENSE has garnered critical acclaim as both an e-commerce engine and a producer of cultural content, generating an average of 100 million monthly page views.

Job Description

We are looking for a highly motivated and technical Lead Cyber Security Specialist to join our Technology & Engineering team, which is the core technical engine that builds the future. In this role, you will lead security operations by managing our security infrastructure (SentinelOne, Cloudflare, Okta, Area1), responding to incidents, and establishing security policies across all systems. You'll operate independently while collaborating closely with Network, DevOps, Engineering, Service Desk, and HR Training teams.  You'll serve as the technical security subject matter expert across the organization and act as Level 2 escalation for the managed security response team. 

What You Will Do

Tech Security Operations

• Manage security infrastructure across SentinelOne, Cloudflare Zero Trust, Okta, Active Directory, Area1, and Google Workspace to ensure comprehensive protection of endpoints, cloud systems, identities, and data
• Oversee security incident response by investigating threats, coordinating containment and remediation efforts, and documenting lessons learned to prevent recurrence
• Manage email security operations, including spam filtering, phishing prevention, and threat detection to protect against email-based attacks and data exfiltration
• Track and report security KPIs, metrics, and security posture to leadership through dashboards and regular reporting to enable data-driven security decisions

Tech Security Governance & Improvement

• Establish and maintain security policies, standards, and incident response procedures that align with industry best practices and support potential future compliance initiatives
• Develop application security practices by integrating security into the SDLC, conducting threat modelling, and coordinating vulnerability remediation with engineering teams to reduce exploitable weaknesses
• Build security awareness across the organization by collaborating with HR Training to implement phishing simulations and training programs that reduce human-factor risk

Qualifications

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, or related field, or equivalent practical experience
• Minimum 5 years of relevant professional experience in cybersecurity, information security, or related security operations roles.
• Endpoint Detection and Response (EDR): Hands-on experience deploying, configuring, and managing EDR platforms (SentinelOne, CrowdStrike, Carbon Black, or similar)
• Identity and Access Management: Proficiency managing Okta, Active Directory, or equivalent IAM platforms including policy configuration and access governance
• Cloud Security: Experience securing cloud infrastructure on AWS, GCP, or Azure, including monitoring, policy enforcement, and security controls
• Security Incident Response: Demonstrated experience investigating security incidents, threat hunting, and coordinating incident containment and remediation
• Email Security: Experience with email security platforms and anti-phishing solutions (Cloudflare Area1, Proofpoint, Mimecast, or similar)     

What Set You Apart

• Security certifications such as CISSP, GCIA, GCIH, CEH, or CISM
• Highly analytical and detail oriented
• Proven experience in scripting & automation (Python, PowerShell, Bash)
• Experience working with compliance frameworks (SOC 2, ISO 27001, NIST CSF, CIS Controls)

Additional Information

Why Join Us:

• Extended health and dental benefits, including comprehensive mental health programs and coverage.
• Parental top up program.
• Generous Employee Discount.
• Access to telemedicine and employee and family assistance program.
• Savings and retirement plan matching contributions.
• Gender Affirmation Coverage.
• Opportunity to work with cutting edge technologies and an innovative team that’s pushing the boundaries of technology.

SSENSE is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. If you need special accommodations, let us know. We will do our best to accommodate you!