Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Head of Cyber Defence & Incident Response

Quadient

Head of Cyber Defence & Incident Response

  • Full-time
  • Compensation: GBP 92,500 - GBP 138,800 per year

At Quadient , we support businesses of all sizes in their digital transformation and growth journey, unlocking operational efficiency with reliable, secure, and sustainable automation processes.

Our success in delivering innovation and business growth is inspired by the connections our diverse teams create every day, with our clients and each other.

It’s these connections that make Quadient such an exceptional place to grow your career, develop your skills and make a real impact – help our future‑focused business lead the way in powering secure and sustainable business connections through digital and physical channels.

Location: Qaudient offices, Markham Ontario, Canada or Eastern USA (EST Time zone)

Key Responsibilities

  • Own the incident response lifecycle (prepare, detect, analyse, contain, eradicate, recover), ensuring playbooks, tooling, and decision‑making processes are in place and exercised.
  • Lead and coordinate response to security incidents, acting as incident commander where required, including stakeholder communications, forensic triage, and recovery coordination.
  • Manage the MSSP relationship end‑to‑end: service definition, SLAs/KPIs, escalation paths, continuous improvement plans, quality assurance, and commercial governance.
  • Optimise security monitoring and response tooling working across technology teams (e.g., SIEM, SOAR, EDR/XDR, NDR, email security) including use‑case coverage, alert quality, automation, logging strategy, and operational runbooks.
  • Own the vulnerability management programme (on‑prem and cloud), including scanning coverage, prioritisation, remediation SLAs, exception handling, verification, and executive reporting.
  • Drive threat management by operationalising threat intelligence (internal and external) into defensive priorities: detection use cases, hardening actions, control uplift and proactive hunting themes.
  • Lead continuous improvement of the defence stack: rationalise tools, tune detections, improve signal quality, reduce noise, and expand automation to accelerate triage and response.
  • Establish and run a threat hunting programme using hypothesis‑driven approaches, telemetry coverage mapping, and lessons learned from incidents and red‑team activity.
  • Run regular tabletop exercises and simulations (including ransomware and cloud compromise scenarios), ensuring roles, escalation paths, and technical procedures are validated and improved.
  • Own incident response governance: severity model, on‑call and escalation processes, evidence handling, case management, and alignment to legal/regulatory obligations.
  • Define and report cyber defence metrics (e.g., MTTD/MTTR, alert volumes and precision, incident trends, vuln remediation performance, control coverage), presenting insights and recommendations to senior leadership.
  • Lead post‑incident reviews and root cause analysis, ensuring lessons learned translate into measurable improvements (detections, hardening, identity controls, backups, segmentation, and training).
  • Support business continuity and crisis management processes during cyber events, contributing to executive updates and coordinated communications with Legal/Privacy and other stakeholders.
  • Communicate cyber risk and active incidents clearly to technical and non‑technical audiences, including concise executive briefings and after‑action summaries.

Required Qualifications

  • Strong experience leading cyber defence/SOC and incident response, including major incident coordination, investigation, containment and recovery.
  • Hands‑on understanding of detection and response tooling and concepts (SIEM, SOAR, EDR/XDR, NDR, email security, log pipelines), including tuning, use‑case engineering and operational workflows.
  • Proven experience managing an MSSP or outsourced SOC capability, including SLAs/KPIs, service governance, escalations, and continuous improvement.
  • Strong experience running vulnerability management and threat management programmes, including prioritisation based on exploitability, exposure, and business impact.
  • Knowledge of incident response processes, digital forensics fundamentals, evidence handling, and working with legal/privacy and external forensic partners.
  • Experience defending hybrid environments (on‑prem and cloud), including identity signals, network telemetry, endpoint visibility, and cloud‑native security monitoring.
  • Ability to operate under pressure and lead cross‑functional teams through high‑severity incidents, communicating clearly and making timely risk‑based decisions.
  • Fluent in English – excellent written and verbal communication skills, including producing clear architecture guidance, standards, and security design documentation.
  • Certifications such as GCIH, GCIA, GNFA, CISSP, CISM, or equivalent experience in incident response and security operations.
  • Experience with threat hunting, purple teaming, and using MITRE ATT&CK to structure detections, gaps analysis, and defensive improvements.
  • Experience with security operations in cloud platforms and common tools (e.g., Microsoft Defender, Sentinel, Splunk, CrowdStrike, Palo Alto, AWS/Azure security services) and integrating telemetry across environments.
  • Calm under pressure, able to lead effectively during incidents and make timely decisions with incomplete information.
  • Highly collaborative, able to coordinate across IT, engineering, legal/privacy, and business leaders during investigations and recovery.
  • Operationally rigorous with strong attention to detail, documentation and evidence quality (case notes, timelines, lessons learned).
  • Continuous improvement mindset—drives measurable outcomes through tooling optimisation, process refinement, and coaching teams to improve security hygiene.

Benefits & Perks

  • Flexible Work: Embrace a hybrid work model blending office and remote setup for a balanced lifestyle.
  • Endless Learning: Access global opportunities for growth through our 24/7 online learning platform.
  • Inclusive Community: Join our Empowered Communities and engage in our Philanthropy program.
  • Comprehensive Rewards: Enjoy competitive Total Rewards covering wellness, work/life balance, and more, including a generous referral scheme.
  • Caring for Wellbeing: Access our complimentary employee assistance program for mental health support.

*: We firmly believe on zero discrimination in employment on any basis, including race, color, religion, sex, national origin, age, disability, veteran or military status, genetic information, citizenship status, and any other characteristics protected by local, state, or federal law.

#J-18808-Ljbffr
Vacancy posted 8 days ago
Similar jobs that could be interesting for youBased on the Head of Cyber Defence & Incident Response in Markham, ON vacancy
  • Drive cybersecurity excellence as the Assistant Vice President of Cyber & Data Risk at Aviva Canada. This hybrid role signifies a...  ...the face of evolving technologies like AI and automation. Key Responsibilities: • Lead oversight of data privacy and governance risks • Collaborate... 
    Suggested

    Aviva Canada

    Markham, ON
    8 days ago
  • $200k - $230k per year

    Head of Product Location: Toronto or Montreal Salary: $200-230k Type: Full time Auxo is hiring a Head of Product for an AI-native fintech platform building digital teammates that automate finance and back‑office work. You’ll own product strategy, portfolio direction, and... 
    Suggested
    Full time
    Work at office

    Auxo | Growth Partner

    Markham, ON
    10 hours ago
  • Drive Caseware’s global Professional Services strategy as the Head of Professional Services, available for candidates in Canada, USA...  ...experience in managing global service delivery teams. Key Responsibilities: • Develop and execute global service strategies across various... 
    Suggested
    Permanent employment
    Full time
    Remote work
    Worldwide

    CaseWare

    Markham, ON
    4 hours ago
  • $75 per hour

     ...Markham area, and they are looking to add to their team an interim Head of Accounting & Finance for an initial term of 3 months. ***...  ...etc. As the Interim Head of Accounting & Finance, you will be responsible for both doing hands on accounting/reporting/etc. work and... 
    Suggested
    Contract work
    Interim role
    Work at office
    Markham, ON
    a month ago
  •  ...position will be based at our Head Office in Markham, ON and...  ...hybrid working environment. Responsibilities Establish and maintain a comprehensive...  ...regarding risks, controls, incidents, and emerging threats,...  ...and effective execution during cyber incidents. Collaborate across... 
    Suggested
    Long term contract
    Internship
    Work at office

    Extendicare Canada

    Markham, ON
    8 days ago
  • $54.19k - $67.73k per year

     ...in Canada. KEY DUTIES AND RESPONSIBILITIES Physical Security...  ...for physical security related incidents, issues, questions, or concerns...  ...Knowledge of information and cyber security principles and applications...  .... Must be dependable, responsive, customer-focused and... 
    Full time
    For contractors
    Work at office

    BGIS

    Markham, ON
    8 days ago
  •  ...Architect, Third‑Party Applications is responsible for the end‑to‑end architecture, integration...  ...on third‑party platforms. Support incident response and root‑cause analysis for production...  ..., due diligence, investigations, or cyber risk solutions) and integrating them with... 
    Permanent employment
    Full time
    Contract work
    Monday to friday
    Flexible hours

    Sentrex Distribution Inc.

    Markham, ON
    10 hours ago
  • $83.14k - $98.73k per year

    The primary responsibility of the Security Engineer is to manage the day‑to‑day support for data systems, ensuring all systems function optimally...  ...support business operations. This role involves coordinating cyber security support across all platforms, troubleshooting and... 
    Casual work
    Work at office
    1 day per week

    Honda Canada Inc.

    Markham, ON
    8 days ago
  •  ...to Team Leader, Claims Services; the Bodily Injury Analyst is responsible for the handling of bodily injury tort claims in Alberta. This...  ...to deal with non-represented claimants as well as plaintiff and Defence Counsel on a regular basis.* Investigates claims regarding liability... 
    Work at office
    Work from home
    Night shift

    TD Bank

    Markham, ON
    8 days ago
  • $69.3k - $119.3k per year

     ...Description Summary The BWRX-300 Controls Systems Design Engineer is responsible for design and analysis of I&C systems for nuclear power plant...  ...technical contract, human factors, safety hazards, reliability, cyber security, etc. of assigned systems. Collaborate with system... 
    Permanent employment
    Contract work
    Internship
    Work at office
    Relocation package

    GE Vernova

    Markham, ON
    12 days ago
  •  ...ships is built on a solid, scalable, compliant foundation. Key Responsibilities Architecture Governance Own the enterprise architecture...  ...model across all engineering teams Partner with the Head of Engineering & Product development and roll out the approved... 
    Full time

    Sitero LLC

    Markham, ON
    2 days ago
  • $45k - $55k per year

     ...supported after move-in. Key Responsibilities Act as the primary point...  ...steps Ensure a 24-hour response time commitment to all homeowner...  ...records of all on-site incidents reported by homeowners at our...  ...site teams, tradespeople, and head office staff to ensure homeowner... 
    Full time
    Work at office

    JD Development Group

    Markham, ON
    15 days ago
  • $20 per hour

     ...the Front of House team members. The Assistant General Manager is responsible for ensuring that our most important people, our Guests and team...  ...for career growth within the restaurant or at Boston Pizza head office Build relationships and give back to your local community... 
    Hourly pay
    Casual work
    Work at office
    Local area
    Flexible hours

    Boston Pizza International, Inc. (Calgary)

    Markham, ON
    8 days ago
  •  ...Telecom domains such as Digital, Field, Ordering, and OSS. Key Responsibilities Lead multiple software developers across cross-functional...  ...Exposure to SRE/production operations practices (SLIs/SLOs, incident management, runbooks, post-incident reviews, operational automation... 

    Xplore Inc.

    Markham, ON
    2 days ago
  •  ...application development, and business intelligence initiatives. Responsibilities Database Administration Lead database upgrades, migrations,...  ..., and compliance. Troubleshoot and resolve database incidents with minimal downtime. Design and maintain enterprise data... 
    Internship

    The Nationwide Group

    Markham, ON
    4 hours ago
  •  ...at OPTA, driving revenue growth and customer satisfaction. This head of sales role requires expert knowledge and leadership to...  ...support strategic decision-making with high impact potential. Key Responsibilities: • Identify and lead professional services opportunities •... 

    Verisk

    Markham, ON
    10 hours ago
  •  ...openness to work with any required technology and languages. Responsibilities Reporting to the Lead DevOps Engineering, the candidate will...  ...infrastructure platform Provide support in solving technical issues and incidents in cloud services Requirements Bachelor’s degree in... 
    Local area

    EAIGLE

    Markham, ON
    8 days ago
  •  ..., under the direction of the Director, Pharmacy Operations, is responsible for supervising pharmacy workflow including day to day prescription...  ...who injure themselves on the job, within 24 hours of the incident. Maintains confidentiality of patient and corporate information... 
    Local area
    Immediate start

    Bayshore HealthCare

    Markham, ON
    8 days ago
  •  ...much, much more. Job Summary: The Network Administrator is responsible for the administration, maintenance, and continuous...  ...control policies. Assist with vulnerability remediation, incident response, and audit/compliance requests as required. Infrastructure... 
    Remote work
    Worldwide
    Flexible hours

    Mobis Parts Canada Corporation

    Markham, ON
    8 days ago
  •  ...workflow automation solutions . The successful candidate will be responsible for SharePoint administration, workflow development,...  ...procedures . Provide Level 2 support for SharePoint-related incidents and workflow issues. Promote adoption of SharePoint... 
    Full time
    Fixed term contract

    Bank of China (Canada)

    Markham, ON
    4 hours ago
  • $96.32k - $120.4k per year

     ...The Technical Manager, Operations is responsible for operations and budget management, service...  ...regular written and oral reports in response to escalations. Recommends solutions...  ...Collaborates with relevant stakeholders on incident management‑related requirements. Health... 
    Full time
    Contract work
    Work at office
    Remote work
    Worldwide

    BGIS

    Markham, ON
    2 days ago
  •  ...and managing Microsoft Defender. This role requires a security clearance and proficiency in Microsoft Sentinel for monitoring and incident response. Your expertise in KQL and Azure security will be crucial for success. Key Responsibilities: • Implement Microsoft Purview... 

    Quality IT Resourcing

    Markham, ON
    4 hours ago
  •  ...deployment and sustaining an ethical workplace culture. Key Responsibilities: • Implement compliance procedures meeting regulatory...  ...Train employees on compliance and data protection • Manage data incidents and remediation • Oversee sustainability metrics and ESG initiatives... 
    Work at office
    Local area

    Veridos GmbH

    Markham, ON
    6 days ago
  • $118k - $168k per year

     ...personnel, and physical security at GVH facilities in Canada. Key Responsibilities Evaluate U.S. and Canadian security requirements to...  ...CNSC), whether in government or private sector. Knowledge of the Incident Command System (ICS). Demonstrated proficiency in implementing... 
    Permanent employment
    Work at office
    Relocation package
    3 days per week

    CB1149 GE Vernova Hitachi SMR Technologies Canada, Ltd.

    Markham, ON
    8 days ago
  • $100k - $120k per year

     ...pre‑construction through to closeout. The role is based at the head office in Markham and requires regular site visits as needed....  ...Location Markham, ON Salary $100,000 - $120,000 + benefits Responsibilities Manage ICI interior construction projects from start to finish... 
    For contractors
    For subcontractor
    Work at office

    TalentSphere Staffing Solutions

    Markham, ON
    8 days ago
  • $73.9k - $110.9k per year

     ...within the organization and is open to new applications. (New Head Count) AI Disclosure: As part of the application process, Artificial...  ...with ZERO Crashes, ZERO Emissions, and ZERO Congestion. Key Responsibilities Deliver high-quality software solutions for Software Defined... 
    Full time

    General Motors

    Markham, ON
    8 days ago
  •  ...in complex OT settings, including SCADA and PLC systems. Key responsibilities include designing security architectures, conducting...  ...segmentation Develop OT cybersecurity policies and standards Lead incident response and forensic investigations Requirements Extensive experience... 

    WorleyParsons

    Markham, ON
    10 hours ago
  • $202.93k - $298.42k per year

     ...report to the Director Autonomous Operations, Americas and is responsible for leading and overseeing all aspects of the Autonomous Operations...  ...achieve zero harm to people and assets, and zero environmental incidents. We select people who share our values, beliefs and commitment... 
    Full time
    Temporary work
    For contractors
    Local area
    Overseas
    Relocation package
    Flexible hours
    Shift work

    Worley

    Markham, ON
    8 days ago
  •  ...a culture of cybersecurity across the organization. Key Responsibilities: • Manage an enterprise-wide risk management framework • Advise...  ...cybersecurity assessments and compliance reviews • Lead incident response and security improvement initiatives Requirements: • 10+... 
    Flexible hours

    EXTENDICARE

    Markham, ON
    8 days ago
  •  ...management system as well as external clients. KEY DUTIES & RESPONSIBILITIES Compliance Supports the development, implementation and...  ...Manage the processing, tracking, and reporting of accident and incident data (e.g. total reportable injury rate, lost time injury rate... 
    Full time
    Work at office

    BGIS

    Markham, ON
    8 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Head of Cyber Defence & Incident Response. Be the first to apply!