Cybersecurity Engineer - Ottawa - E INC

Description

Overview

E INC is the parent company of EBlock and EDealer, unifying our approach to products, services, and strategies under one Vision and one Mission: to create the best digital auction and retailing platform in the world by connecting the automotive wholesale and retail experiences. Our brands and their technologies make it easy for a vehicle to move between buyers and sellers throughout its entire ownership lifecycle.

We are seeking an experienced, detail‑oriented Cybersecurity Engineer to strengthen our organization's information security posture across endpoints, networks, cloud services, and applications.

In This Role, You Will

• Own threat and vulnerability management, driving remediation of misconfigurations and weaknesses across our environment.
• Manage and tune our security monitoring and incident response capabilities using SIEM and observability tools (e.g., Datadog, log pipelines).
• Administer our endpoint, web, and Zero Trust security stack, including SentinelOne for EDR/CNAPP, Zscaler for secure access and DLP, and Cloudflare for WAF, DNS, and Zero Trust web security.
• Support compliance and governance efforts (with a focus on SOC 2, and exposure to frameworks like ISO 27001 and NIST).
• Work closely with development and cloud teams to secure workloads in AWS and fix vulnerable packages and dependencies in existing applications, not just new builds.

Threat & Vulnerability Management

• Identify, assess, and prioritize vulnerabilities and misconfigurations across endpoints, networks, cloud environments, and applications.
• Work with infrastructure and application owners to define and maintain secure configuration baselines and ensure timely remediation.
• Use vulnerability management and configuration assessment tools (including data from platforms like SentinelOne, cloud‑native security services, and code‑repository/package alerts) to track progress and risk reduction over time.
• Partner with development teams to review and remediate vulnerable third‑party packages and libraries in existing applications (e.g., upgrading dependencies, adjusting configurations, and validating fixes).

Security Monitoring & Incident Response

• Configure, manage, and tune SIEM / security monitoring solutions (for example, Datadog, cloud logs, and other telemetry sources) to ensure high‑quality, actionable alerts.
• Act as an escalation point for high‑severity security incidents, including triage, containment, investigation, and recovery.
• Maintain and improve Incident Response runbooks and procedures, including playbooks for phishing, malware, account compromise, and data exfiltration.
• Participate in and help design Disaster Recovery (DR) and Business Continuity Planning (BCP) tabletop exercises, ensuring security scenarios are built into testing.

Endpoint, Network & Cloud Security

• Administer and optimize SentinelOne for endpoint detection and response, ensuring policies, detections, and exclusions are well‑tuned.
• Configure and manage Zscaler (Internet, Private Access, and DLP modules) to enforce secure internet and application access and prevent data loss.
• Oversee Cloudflare security configurations for web applications and network services (including Zero Trust, WAF, DNS, and related controls).
• Work with cloud and infrastructure teams to secure AWS workloads (e.g., IAM, security groups, logging, and encryption) and to integrate security controls into existing services running on AWS.
• Collaborate with network and infrastructure teams to ensure Zero Trust and defense‑in‑depth principles are consistently applied across offices, remote users, and auction environments.

Application & Change Security

• Collaborate with developers and product teams to understand application architectures and remediate security findings in existing services.
• Provide security input into change management processes, ensuring significant changes consider security impact and include an appropriate rollback and validation plan.
• Contribute to secure coding and dependency management guidance that is practical for teams maintaining existing systems.

Compliance, Governance & Audit Support

• Support SOC 2 and related compliance programs by maintaining and providing technical evidence of security controls (e.g., logs, reports, screenshots, and configuration exports).
• Work with internal stakeholders and external auditors to ensure security measures align with SOC 2, ISO 27001, and NIST‑aligned controls where applicable.
• Enhance, document, and automate security controls to ensure continuous audit readiness, leveraging systems such as FreshService (for tickets, changes, and asset records) and Trelica (for SaaS visibility and contract mapping).

Email & Data Security

• Manage and improve email security configurations (phishing protection, DKIM/SPF/DMARC, impersonation protection, safe links/attachments).
• Implement and tune data loss prevention (DLP) and encryption controls across endpoints, email, and web traffic (for example, via Zscaler, Cloudflare, and endpoint agents).
• Partner with Hexnode MDM and IT operations to enforce device posture and encryption requirements for managed endpoints.

Collaboration & Travel

• Work closely with Infrastructure, IT, Application, and Compliance teams to ensure security is embedded into technical and business processes.
• Provide security guidance during new technology evaluations, deployments, and changes, especially those impacting AWS‑hosted services and existing applications.
• Travel up to 25 % (including occasional visits to offices or auction sites) to support assessments, deployments, training, and incident/BCP exercises.

What You Will Need

• Required:
  • 3–5 years of experience in cybersecurity or a similar technical security role.
  • Hands‑on experience managing and securing workloads in AWS (e.g., IAM, security groups, CloudTrail, VPC/networking, Security Hub, Inspector, logging/monitoring, and encryption).
  • Strong understanding of SIEM, endpoint protection, and network security principles.
  • Hands‑on experience with Zscaler, SentinelOne, and Cloudflare (or comparable technologies) for secure access, endpoint protection, and web application security.
  • Practical experience remediating vulnerabilities in existing applications, including updating or replacing vulnerable endpoint/application packages and libraries and validating fixes with monitoring and logs.
  • Knowledge of incident response frameworks and playbook/runbook development.
  • Experience providing, organizing, or managing SOC 2 technical evidence and working with auditors or external assessors.
  • Excellent troubleshooting, analytical, and problem‑solving skills.
  • Ability to work independently in fast‑paced environments with minimal supervision.
  • Valid driver's license and ability to travel as required.
  • Languages: English (required), French (an asset).
• Preferred:
  • Experience with additional cloud platforms (e.g., AWS, GCP) and multi‑cloud security patterns.
  • Background supporting compliance programs such as SOC 2, ISO 27001, and NIST‑based frameworks.
  • Experience working with ITSM and asset management tools (e.g., FreshService), MDM platforms (e.g., Hexnode), and SaaS / cost‑management tools (e.g., Trelica).

What We Offer

• Competitive pay ($120,000.00 – $140,
• Competitive bonus plan.
• Paid time off.
• Participation in benefits, RRSP, and life insurance programs.
• Continuous learning.
• Am amazing culture to top it all off.

Vacancy status: current vacancy

E INC is committed to providing employment accommodation in accordance with the Ontario Human Rights Code and the Accessibility for Ontarians with Disabilities Act. If contacted for an employment opportunity, please advise Human Resources if you require accommodation.

E INC is an equal opportunity employer and affirmatively seeks diversity in its workforce. E INC recruits qualified applicants and advances in employment its employees without regard to race, color, religion, gender, sex (including pregnancy), sexual orientation, gender identity, gender expression, age, disability, genetic information, ethnic or national origin, marital status, veteran status, or any other categories protected by law.

E INC takes cybersecurity seriously. E INC will reach out to candidates via our Application Tracking System Rippling, LinkedIn, and Indeed, through company accounts. E INC does not require bank information, date of birth, social identification information, or upfront fees as part of our application process.

As part of our recruitment and hiring process, E INC may use automated tools including artificial intelligence (AI) to support the screening and evaluation of applicants. AI tools support human decision‑making and do not replace individualized review by our hiring team. E INC is committed to using these technologies responsibly and in compliance with applicable laws and regulations, and we regularly assess our processes to promote fairness, objectivity, and data protection.

#J-18808-Ljbffr