Cyber Security Specialist
3 days ago
About NDT Global
NDT Global is the leading provider of inline diagnostic solutions, advanced data insights, and integrity management services that safeguard energy-sector infrastructure. The company is recognized for its expertise in both ultrasonic inspection technologies — such as Pulse Echo, Pitch-and-Catch, Phased Array, and Acoustic Resonance (ART Scan) — and ultra-high-resolution Magnetic Flux Leakage (MFL) inspection services. These differentiated offerings, along with non-ultrasonic technologies like Inertial Measurement Units and others in development, enable NDT Global to deliver comprehensive asset integrity solutions.
Innovation is at the core of NDT Global's mission. We continuously challenge the boundaries of existing technologies to deliver transformational solutions that empower the industry to achieve safer, more cost-effective pipeline management. Our commitment to research and development drives the creation of vital new methods and tools that address the evolving needs of our customers while setting new industry standards.
By strategically applying inspection technologies to detect, diagnose, and model various types of threats, NDT Global provides predictive, decision-ready insights. These insights, driven by the world's most accurate data, enable asset owners to optimize infrastructure health, drive operational efficiencies, reduce risk, and minimize their carbon footprint.
Purpose
The Cyber Security Specialist – Governance, Risk & Compliance (GRC) is responsible for defining, implementing, and continuously improving NDT Global's cybersecurity governance, risk management, and compliance programs in alignment with global standards (CIS, NIST, ISO Operating within the IT team and collaborating across business units, this role ensures a consistent and proactive approach to cybersecurity governance, risk identification, and mitigation. The incumbent develops policies, leads risk assessments, and supports both technical and strategic initiatives to strengthen the organization's cyber resilience.
Responsibilities
Governance & Framework Implementation (30%)Establish and maintain cybersecurity governance aligned with CIS Controls, NIST CSF, and ISO Define policies, standards, and procedures supporting secure IT and business operations. Lead maturity assessments and drive continuous improvement of cybersecurity postureRisk Management Program Leadership (25%)
Lead the enterprise cybersecurity risk management program, including identification, evaluation, mitigation, and reporting of risks. Maintain risk registers and ensure alignment with corporate risk appetite and compliance obligations. Partner with IT and functional leads to remediate vulnerabilities and prioritize controls. Security Operations Support (20%)
Collaborate with IT infrastructure teams to ensure consistent monitoring, incident detection, and response. Provide guidance during incident handling and root-cause analysis. Participate in threat-hunting, penetration testing, and vulnerability management cycles.Compliance & Audit Readiness (15%)
Ensure adherence to regulatory and client security requirements across regions (e.g., GDPR, SOC 2). Prepare and support internal and external IT security audits. Maintain evidence repositories for audit and compliance trackingAwareness & Continuous Improvement (10%)
Lead employee cybersecurity awareness programs. Collaborate with HR and IT to roll out phishing campaigns and training. Measure program effectiveness and adjust initiatives accordingly
Qualifications and experience
Bachelor's degree in cyber security, Computer Science, Information Systems, or related discipline. Minimum 5 years in cybersecurity governance, risk, and compliance functionsAdvanced certifications such as CISSP, CISM, or CRISC preferred. Additional certifications in GRC frameworks or auditing (ISO 27001 Lead Implementer, CISA) are assets. Proficiency in English (spoken and written); German language skills an advantage. Experience implementing or managing controls within CIS, NIST, or ISO 27001 frameworks. Proven ability to conduct enterprise-wide risk assessments and develop mitigation strategies. Experience supporting security operations, vulnerability management, and incident response. Familiarity with cloud and hybrid environments (Microsoft 365, Azure, AWS). Understanding of European data protection regulations (GDPR).Experience with GRC and risk-tracking platformsStrong knowledge of SIEM, endpoint detection, and vulnerability management toolsProficiency in Power BI or equivalent analytics platformsSkilled in policy lifecycle management tools and automated compliance workflowsSkillset
Governance Mindset: Designs and enforces scalable cybersecurity policies. Risk Leadership: Identifies and communicates risks effectively to senior management. Analytical Thinking: Translates complex threats into actionable controls. Communication: Bridges technical and business perspectives with clarity. Accountability: Drives ownership for risk reduction and audit readiness. Collaboration: Works across departments to embed cybersecurity in operations. Continuous Improvement: Evaluates emerging standards and integrates them proactivelyBenefits
- Full benefits package effective immediately for employees and their dependents
- Competitive pension matching program to secure your future
- Flexible time options to suit your personal and professional needs
- Supportive mentorship programs and career development opportunities
- Ongoing training to keep your skills sharp and help you grow
- Regular social events and programs to foster team spirit
-
Senior Security Engineer
1 week ago
Québec, Quebec, Canada Vectra Full timeVectra is the leader in AI-driven threat detection and response for hybrid and multi-cloud enterprises.The Vectra AI Platform delivers integrated signal across public cloud, SaaS, identity, and data center networks in a single platform. Powered by patented Attack Signal Intelligence, it empowers security teams to rapidly prioritize, investigate and respond...
-
Senior Security Engineer
1 week ago
Québec, Quebec, Canada Vectra AI Full timeVectra is the leader in AI-driven threat detection and response for hybrid and multi-cloud enterprises.The Vectra AI Platform delivers integrated signal across public cloud, SaaS, identity, and data center networks in a single platform. Powered by patented Attack Signal Intelligence, it empowers security teams to rapidly prioritize, investigate and respond...
-
Security Analyst MDR tier 1- NIGHT SHIFT
1 week ago
Québec, Quebec, Canada GoSecure Full timeGoSecure is recognized as a leader and innovator in cybersecurity solutions. The company is the first and only to integrate an Endpoint and Network threat detection platform, Managed Detection and Response services, and Cloud/SaaS delivery. Together, these capabilities provide the most effective response to the increased sophistication of continuously...
-
Enterprise Account Executive
1 week ago
Québec, Quebec, Canada Radware Full timeAt Radware, cybersecurity is not just our profession; it's our passion. Every day, our global team works tirelessly to earn the trust of organizations worldwide, defending them against some of the most sophisticated cyber threats. With nearly 30 years of experience, Radware is renowned for its technical excellence and cutting-edge network and application...
-
Québec, Quebec, Canada Cypfer Full timeCYPFER is a leading first-responder cybersecurity organization enabling clients to swiftly and effectively return to business following a cyber-attack. As a global market leader in ransomware post-breach remediation and cyber-attack first response, we consistently deliver results that exceed market standards for handling cyber-extortion and ransomware...
-
Québec, Quebec, Canada Université Laval Full timeThe Graduate School of International Studies at Université Laval, located in Quebec City (Canada), is a centre of excellence in multidisciplinary research and teaching on international issues. The School is currently seeking applications for a faculty position specializing in maritime security and the defence of the Canadian Arctic (position The selected...
-
Service Specialist
7 days ago
Québec, Quebec, Canada Canada Life Full timeBase + CommWe are looking for a Service Specialist, bilingual (English/French).As a Service Specialist, you will be responsible for providing excellent customer service to our clients and Advisors. You will be a key part of the Canada Life Group Customer team, working with sales and service roles across multiple offices to achieve common goals, and delight...
-
Named Account Manager
2 weeks ago
Québec, Quebec, Canada Proofpoint Full timeAbout Us:We are the leader in human-centric cybersecurity. Half a million customers, including 87 of the Fortune 100, rely on Proofpoint to protect their organizations. We're driven by a mission to stay ahead of bad actors and safeguard the digital world. Join us in our pursuit to defend data and protect people.How We Work:At Proofpoint, you'll be part of a...
-
Account Executive
1 week ago
Québec, Quebec, Canada Cyera Full timeWHO WE ARECome join the company reinventing data security, empowering businesses to realize the full potential of their data. As the leading data security platform purpose-built for the cloud era, Cyera's mission is to reinvent how businesses secure data, enable agile collaboration, and boldly pursue new business opportunities. Trusted by security teams at...
-
Senior SRE Specialist
1 week ago
Québec, Quebec, Canada Petal Full timePetal is a leading Canadian healthcare orchestration and billing company that revolutionizes healthcare systems to make them agile, efficient, and resilient by enabling the forecasting and shaping of world-class healthcare through Healthcare BI, advanced analytics, and informed insights.Our commitment to fostering an exceptional workplace culture has earned...
