Chef d'équipe Sûreté/sécurité
nesto
English description follows Notre mission est d'offrir une expérience de financement hypothécaire positive, et transparente, simplifiée du début à la fin. Notre équipe se compose d'experts en technologie qualifiés, de spécialistes en prêts hypothécaires attentionnés et d'une équipe de marketing diversifiée, travaillant tous ensemble pour mener le changement dans l'industrie hypothécaire.
Notre plateforme Mortgage Cloud qui offre aux institutions financières un accès complet à la technologie exclusive de nesto, améliorant ainsi l'expérience du client, du début à la fin.
À propos En tant que Responsable GRC Sécurité, sous la responsabilité du Vice-président de la Sécurité, vous serez en charge de la conception, de l'exécution et de l'amélioration continue de nos programmes de gouvernance, de risque et de conformité à l'échelle de l'entreprise. Vous superviserez un collaborateur direct et jouerez un rôle central dans la gestion de nos audits externes (SOC 1, SOC 2, ISO 27001), l'amélioration de la planification de la continuité des activités, le soutien aux évaluations des risques et l'intégration des pratiques GRC au sein des équipes.
Ce que vous ferez Posséder et faire évoluer les cadres de gouvernance de la sécurité de l'information de nesto à travers toutes les unités commerciales.
Assurer la documentation complète du cycle de vie des politiques, avec une attribution de la responsabilité aux équipes pertinentes et une cartographie des contrôles aux cadres applicables (SOC, ISO, confidentialité).
Collaborer avec les équipes Juridique, Conformité et Confidentialité pour assurer l'alignement avec les réglementations financières et de protection des données.
Diriger la planification, l'exécution et la réussite des audits et certifications externes (SOC 1, SOC 2, ISO 27001).
Soutenir la gestion des risques liés aux tiers, y compris les examens de sécurité des fournisseurs et la coordination des réponses aux questionnaires de sécurité des clients.
Développer et maintenir les guides de Continuité des Activités (PCA), de Reprise d'Activité (PRA) et de Gestion de Crise pour toutes les lignes d'affaires et les environnements SaaS.
Assurer des tests annuels, des analyses post-mortem et des objectifs de RTO/RPO définis, alignés sur les dépendances de la chaîne d'approvisionnement.
Vanta), en assurant une cartographie précise des contrôles et une amélioration continue.
Qui nous recherchons Plus de 5 ans d'expérience dans des rôles GRC, audit, gestion des risques ou cybersécurité.
Excellentes compétences en gestion de projet et en engagement des parties prenantes.
Capacité à communiquer clairement avec des publics techniques et exécutifs.
Bilinguisme (français/anglais): un atout.
Bénéficiez d'une politique généreuse en matière de congés, incluant 4 semaines de vacances par année.
Disposez d'un plan d'avantages sociaux de premier ordre entièrement payé par nesto, comprenant un plan d'assurance complet et un accès illimité à un service de télé-médecine et de santé mentale pour vous et votre famille dès le jour 1.
Voyagez en travaillant est possible grâce à notre programme de travail international temporaire.
Nous avons de magnifiques bureaux situés au centre-ville de Montréal (métro Peel) et nos espaces sont ouverts aux chiens !
Diversité et inclusion Chez nesto, nous croyons que la créativité et la collaboration sont le résultat d'une équipe diversifiée. Nous sommes engagés à favoriser une culture de la diversité, de l'équité, de l'inclusion et de l'appartenance, et nous encourageons fortement les femmes, les personnes de couleur, les membres de la communauté LGBTQIA+ et les personnes en situation de handicap à postuler. Our mission is to provide a positive, empowering, and transparent property financing experience that is simple from start to finish. Our team consists of skilled technology experts, caring mortgage specialists, and a diverse marketing team, all working together to lead change in the mortgage industry.
At nesto, we're proud of Our clients love our positive, empowering, and transparent mortgage financing experience.
Our Mortgage Cloud platform gives financial institutions full access to nesto's proprietary technology, powering a better client experience, from start to finish. About the team As the Security GRC Lead, reporting to the VP of Security, you will be responsible for the design, execution, and continuous improvement of our enterprise governance, risk, and compliance programs. You'll oversee one direct report and play a pivotal role in managing our external audits (SOC 1, SOC 2, ISO 27001), improving business continuity planning, supporting risk assessments, and embedding GRC practices across teams. What you'll be doing Own and evolve nesto's information security governance frameworks across all business units.
Ensure complete policy lifecycle documentation, with ownership distributed to relevant teams and control mapping to applicable frameworks (SOC, ISO, privacy).
Partner with Legal, Compliance, and Privacy teams to ensure alignment with financial and data protection regulations.
Lead the planning, execution, and successful delivery of external audits and certifications (SOC 1, SOC 2, ISO 27001).
Develop and maintain a structured audit readiness program to streamline evidence collection and reduce internal effort.
Coordinate internal stakeholders and manage timely evidence collection and remediation.
Own the enterprise risk register and facilitate regular risk assessments with documented remediation activities.
Support third-party risk management, including vendor security reviews and coordination of responses to client security questionnaires.
Develop and maintain Business Continuity (BCP), Disaster Recovery (DRP), and Crisis Management playbooks across all business lines and SaaS environments.
Ensure annual testing, post-mortem reviews, and defined RTO/RPO targets aligned with supply chain dependencies.
Manage and maintain the GRC platform (e.g., Vanta), ensuring accurate control mapping and continuous improvement. Who we're looking for 5+ years in GRC, audit, risk management, or cybersecurity roles.
Strong knowledge of risk assessment methodologies and compliance operations.
Excellent project management and stakeholder engagement skills.
Ability to communicate clearly across technical and executive audiences.
Bilingualism preferred (French/English). What we offer Contribute directly to shaping the experience that modernizes the Canadian mortgage industry.
Take advantage of nesto's employee mortgage program that provides our employees with the best, exclusive, preferred low rates.
Benefit from a generous time-off policy including 4 weeks vacation per year.
Enjoy a premium benefits plan fully paid by nesto, including a top-class insurance plan and unlimited access to telemedicine and mental health service, for you and your family from day 1.
Take your work internationally with our temporary international work program.
We own beautiful offices in downtown Montreal (Peel Station) and our spaces are dog-friendly. Diversity & Inclusion At nesto, we believe that creativity and collaboration are the result of a diverse team. We are committed to fostering a culture of diversity, equity, inclusion, and belonging, and we strongly encourage women, people of color, LGBTQIA+ individuals, and individuals with disabilities to apply.
$130k - $150k per year
...seeking a highly motivated and proactive Governance, Risk, and Compliance (GRC) Lead to own and drive our Governance, Risk, and Compliance efforts. Reporting directly to the Business Information Security Officer, you will be the first dedicated member of the GRC team with the...SuggestedLong term contractFull timeRemote workShift work- ...Established in 2009, ClickHouse leads the industry with its open-source column... ...AWS, GCP, Azure, and Alibaba. The Security Team at ClickHouse is responsible for providing key security capabilities... ...security, incident response, detection and GRC. Our team is looking for an...SuggestedRemote jobFull timeLocal areaHome officeFlexible hours
- Responsable de la sécurité informatique Partager À titre de Responsable de la sécurité informatique, tu joueras un rôle clé dans la mise en œuvre de notre stratégie technologique à long terme. Tu seras chargé de veiller à ce que les meilleures pratiques en matière de sécurité...SuggestedDaily paid
- ...Nous sommes à la recherche d’un·e responsable du marketing de croissance dynamique et expérimenté·e pour se joindre à notre équipe. Ce rôle... ...responsable des indicateurs clés de performance marketing : génération de leads, taux de conversion, rendement des campagnes Collaborer...SuggestedRemote jobInternshipFlexible hours
- ...Job Summary: The Information Security Analyst will plan and carry out... ...Security Analyst will act as lead on specific projects and technologies... .... Key Duties and Responsibilities: •Primary point of contact to... ...reviews, as requested by the GRC team. •Ability to work independently...SuggestedRemote jobFull time
$100k - $120k per year
...Fullscript We’re an industry-leading health technology company on... ...looking for a skilled Security Analyst to join our growing Security... .... The Security team is responsible for product security, governance... ...security operations and incident response. Our SOC team is crucial to...Work at officeWork from homeFlexible hours$5000 - $10000 per month
...Creative Director (Copy-led) who will co-lead the company’s voice and messaging... ...to execute at a high standard. Core Responsibilities You will own and optimize all company... ...converts Requirements Senior direct-response copywriter / creative strategist with 7+...Remote jobLong term contractFull timeFor contractorsFlexible hours- ...Job Responsibility: Cyderes (Cyber Defense and Response) is a pure-play, full life-cycle cybersecurity services provider with award-winning managed security services, identity and access management, and professional... .... This position helps lead the security strategy and vision...Full time
- ...We are looking for an experienced Tech Lead Engineer with strong skills in GCP cloud... ...teams to deliver effective solutions. Responsibilities: Technical Development & Implementation... ..., ensuring solutions are scalable, secure, and optimized for cloud environments....
- ...Your Role: Lead the Consumer Health data team across all... ...augmented, decentralized architectures. Key Responsibilities: Team Leadership & Strategy: Optimize... ...shore, multi-language programs offer safe, secure infrastructure, value-based pricing, skills...Flexible hours
- ...Your Role We are looking for a Lead Backend Engineer with a true startup mindset... ...will be a technical pillar for our team, responsible for the end-to-end lifecycle of key services... ...Python. API & Authentication: Manage our secure authentication system using Auth0, and...
$60k - $80k per year
...Job Responsibility: OVERVIEW Join our dynamic team at Purely Optimal Inc., where we specialize in creating top-quality supplements and driving sales through effective digital marketing strategies. As a Media Buyer, you will be at the forefront of our advertising efforts...Contract workRemote workFlexible hours- ...Job Responsibility: Drive efficiency and innovation with cutting-edge... ...solutions! As a Workday Technical Lead within our People & Finance... ...Workday, you will: Lead security administration and ensures... ...administration, maintaining secure and efficient environments....Long term contractFull time
- ...highly skilled and experienced Technical Lead - Android to join our team. In this role,... ...requires Android with Kotlin, as mandatory. Responsibilities: Solution Development: Develop... ...shore, multi-language programs offer safe, secure infrastructure, value-based pricing,...
- ...and pragmatic Senior Product Security Analyst to safeguard our products... ...decision-making authority, responsible for independently identifying,... ...from design through release. Lead application-focused security... ...reviews, threat modeling, and secure design validation for APIs, microservices...Remote jobLong term contractFull time
- ...We are currently seeking a SAP SCM MM Lead Consultant to join our team in Remote, Ontario... ...and positively impacting society through responsible innovation. We are one of the world's... ...capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and...Work at officeRemote workFlexible hours
- &##127757; We’re making security suck less for developers. Security tools haven’t kept up with how software is built today. They... ...with customers, and become certified with our support. Responsibilities Lead the setup and ongoing operation of Aikido’s PCI DSS ASV program...Permanent employmentFull time
$38 - $60 per hour
...At Alignerr, we partner with the world’s leading AI research teams and labs to build and train... ...actually breaks in production and how security issues emerge in real, live systems. You... ...risks, and business logic issues Evaluate secure coding practices and remediation...Contract workFreelanceRemote workFlexible hours- ...remote-first business and are looking for a capable Operations Lead to help us deliver excellent client experiences and keep our internal... ...as we scale. The Role As Operations Lead, you will be responsible for overseeing day-to-day operations, managing client onboarding...Long term contractPermanent employmentFull timeRemote work
- ...We’re hiring three Tech Leads to support our Engineering teams across Business Acquisition... ...& Pricing (RAP) . The BAT team is responsible for the Business Acquisition part of our... ...Your primary focus will be on addressing security and scalability considerations, collaborating...Remote jobFull time
- ...distribution de produits pétroliers résidentiels et commerciaux, couvrant l'ouest du Québec et l'est de l'Ontario. Nous recherchons un(e) Responsable Amélioration Continue passionné(e) par l'optimisation des processus et la performance organisationnelle. Ce rôle stratégique est...Remote jobFull time
- ...As a Sr. Security Engineer, you’ll be working closely with the Engineering... ...the department and will be responsible for influencing thinking... ...teams to improve how we build secure software in general.... ...challenges, including incident response, root cause analysis, and remediation...Remote jobFull timeInternship
$218.42k - $273.36k per year
...delivering software that makes it easy to securely interconnect people and their devices,... ...asynchronously are essential. Key Responsibilities Design and build security controls... ...digital forensics and incident response Knowledge of operating system internals...Remote jobFull timeWork at officeHome officeFlexible hours- ...We are seeking an experienced AWS Data Engineer Lead to design, build, and lead scalable data platforms... ...with business and analytics stakeholders. Key Responsibilities Lead the design and development of scalable, secure, and high-performance data pipelines on AWS Architect...Remote jobFull time
- ...receive digital tokens instantly, securely, and globally, all at a... ...flagship app that redefines secure and private data sharing.... ...the job The goal of a QA Lead is to drive the overall quality... ...confidently delivered to users. Responsibilities Define and Drive QA...Permanent employmentFull timeInternshipImmediate startRemote workWorldwide
- &##127757; We’re making security suck less for developers. Security tools haven’t kept up... ...in APAC and looking for a Revenue Lead who thrives in a fast-moving, no-process... ...the most dynamic regions worldwide. Responsibilities Build and scale Aikido across Asia: Singapore...Permanent employmentFull timeLocal areaWorldwide
- ...complètes d'emballage en transit à ses clients. Dans le cadre d’un futur départ en retraite, nous recherchons un Ingénieur d’affaires/Responsable grands comptes (h/f/d). En utilisant une approche commerciale de conseil technique, le responsable de projet national est...Daily paidPermanent employmentFull timeWork at office
- ...Job Responsibility: Redbrick and Shift are headquartered on the traditional... ...what you need to know: As a Lead QA Automation Developer for... ...in performance, and security testing. Performing Manual... ...testing (browser compatibility, responsive testing, etc.). ~ You are familiar...Full timeWork at officeLocal areaRemote workWork from homeWorldwideShift workAfternoon shift
- ...the things needed to enjoy the game. Responsibilities ~1. Architecture & Development ~ Design... ..., and recommendation engine inputs. ~ Lead integration across data sources: MySQL,... ...Snowflake. ~ Work closely with Legal, Security, and Infrastructure teams to ensure...Remote jobFull time
- ...Overview: The In Transit Security Specialist is a member of an elite team which will ensure... ...that High Value High Security loads are secure and meet the customer standards for each... ...through multiple systems to ensure quick response to customer requests Assures that all...Permanent employmentFull timeWork at officeRemote workFlexible hoursWeekend workDay shiftAfternoon shift
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Chef d'équipe Sûreté/sécurité. Be the first to apply!
