IT Advisor

About the job The Cybersecurity Remediation Advisor, Applications & Platforms, acts as the primary liaison between the Cybersecurity team and application stakeholders, ensuring effective communication, coordination, and execution of remediation efforts across the application landscape. This role is pivotal in reducing risk, enhancing resilience, and embedding security into the fabric of application development and operations What you’ll do Collaborate with Cybersecurity to assess, prioritize, and define remediation strategies for application-layer security weaknesses, including third‑party and custom‑built software. Facilitate collaboration across application development, DevOps, QA, and business application teams to ensure timely and effective remediation. Acts as a bridge between technical and business stakeholders. Oversee remediation activities such as code fixes, library upgrades, configuration changes, and security hardening, leveraging internal teams or vendors through projects, sprints, or operational workflows. Partner with engineering and DevOps teams to embed security controls throughout the SDLC, promote secure coding practices, threat modeling, and integration of automated security testing. Identify and champion tools that support vulnerability detection, remediation tracking, and secure CI/CD pipelines, and automate remediation workflows. Coordinate with vendor management to assess and remediate vulnerabilities in third‑party and SaaS applications, ensuring compliance with internal security standards. Maintain authoritative tracking of remediation progress, provide regular updates to leadership, and act as escalation point for unresolved or high‑risk issues. Conduct enablement sessions for application teams on secure development and remediation best practices, serving as a trusted advisor. Ensure remediation activities align with cybersecurity standards, enterprise security policies, compliance requirements, and audit findings, and contribute to application security standards. Identify opportunities to enhance application security posture through proactive measures, process improvements, and strategic initiatives. What you bring Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a related field. 5+ years of experience in cybersecurity focused on application and platform security. Strong understanding of application development lifecycles and methodologies. Experience with hybrid IT environments. Familiarity with DevSecOps practices and tools. Experience with secure coding practices and application security testing. Familiarity with tools such as static and dynamic analysis, vulnerability scanning, and penetration testing. Strong understanding of cloud‑native security architectures and shared responsibility models. Knowledge of cybersecurity frameworks and standards such as NIST. Hands‑on experience with securing cloud platforms (AWS, Azure) and hybrid environments. Certifications such as CISSP, CCSP, or AWS/Azure Security Specialty highly desirable. Familiarity with NERC CIP compliance an asset. Experience with Security Operations management suites that organize risk policies, security incidents, and vulnerability responsiveness (e.g., ServiceNow IRM/GRC & SecOps). What we offer A minimum of 15 paid vacation days. Flexible work model, depending on your role type. Training and development courses. How to apply Interested candidates should submit their applications online at or click ‘Apply’. #J-18808-Ljbffr