Senior Information Security Analyst

Join to apply for the Senior Information Security Analyst role at CAAT Pension Plan . At CAAT, we’re passionate about what we do. And it shows Here, you’ll find a cultural spark in everything we do – from the way we partner with members and employers, to the way we work, collaborate, and grow. It doesn’t just feel different at CAAT. It is different. We’re one of the fastest‑growing pensions in the country for a reason. We challenge the status quo, making a real impact on the hundreds of employers we serve – from education institutions to major corporations and household brands. And we’re just getting started. Driven by core values and a shared purpose, we’re fierce champions for better retirement security, known for our can‑do culture where everyone plays a role in bringing our vision to life. If this sounds like a fit, we’d love you to be a part of it. About The Role We are seeking a Senior Information Security Analyst who will be responsible for assisting with the implementation and monitoring of the CAAT’s security controls that protect the organization’s valuable assets, and data. The role is reporting to the Manager, Information and Cybersecurity. It is key in the identification of risks and threats, protection of information and assets, detection and monitoring of events and anomalies, and response to and recovery from cyber events. The successful candidate will also play a key role in the implementation of new security solutions, and maintenance of various security tools and technologies. As The Newest Member Of Our Team, You’ll Participate in planning for Cybersecurity roadmaps to drive technical operational standards and architecture elements of the cybersecurity program. Provide technical support to the Manager Cybersecurity Architecture and Program Delivery, on cyber initiatives like Data Loss Prevention, Privileged Access Management, ISO 27001 Certification and external/internal cyber maturity assessments/audits. Maintain up‑to‑date baselines for the secure configuration and operations of security tools and technologies including Firewall, IPS/IDS, Application Control, web filtering, Messaging Gateway, SIEM, DLP, IAM and Endpoint Protection etc. Work with other groups and technology stakeholders to support the design and implementation of security by design that enable the business to operate effectively and securely. Lead cyber risk assessments and uncover security vulnerabilities and misconfigurations, track and monitor the remediation activities to closure. Demonstrate expertise in the design of security architecture and support the implementation of security by design across all systems and products that house critical data. Perform risk and control design assessments of infrastructure and systems as well as cloud‑based solutions. Recommend remedial actions, and work with system owners and business partners to develop plans and timelines to address risks. Demonstrate expertise in the design and execution of vulnerability assessments, penetration tests and security audits. Implement on‑going cyber risk reporting, monitoring key trends and tracking metrics to measure control effectiveness. Help implement and enhance Threat Modelling capability with SDLC and application development efforts. To Succeed, You Bring A minimum of five (5) years of practical experience in various cybersecurity domains such as cyber architecture, security operations, and technical risk assessments. Post‑secondary diploma or degree in the field of computer science. A relevant security certification such as CISSP, CCSP, Security+, CEH, CompTIA Security, etc. Understanding of security standards and frameworks such as ISO 27001, NIST and CIS. Strong knowledge of technical configurations from various operating systems and security solutions (Windows, Linux, VMware, IDS/IPS, DLP, SIEM, WAF, VPNs, encryption, etc.). At least 4 years of demonstrated experience in security architecture for both applications and infrastructure. Excellent problem‑solving and analytical skills to identify and resolve security issues effectively. Good understanding of cloud security concepts and experience securing cloud‑based infrastructure is an asset. Proven project management and organizational skills, specifically managing multiple, concurrent projects. Excellent written and verbal communication coupled with an ability to work with minimal supervision. Knowledge of cloud platform security, M365 security, application security, data security, end‑point and mobile security, infrastructure & network security including AI, ML and robotics. At CAAT, we believe innovation, passion, and purpose are ingredients for a great work environment. We’re incredibly proud of our people and the remarkable impact they have as catalysts for change. We’re committed to attracting and keeping great talent, which means competitive compensation, exceptional benefits, and an environment where people can grow and thrive. When you work with CAAT, you’ll enjoy: Opportunities to Build a Better You: We never stand still. As we grow, so do you. Enjoy a place that provides endless opportunities to learn and master your skills while cultivating new ones. Comprehensive & Holistic Care: Be at your best with a Total Rewards program that feeds and prioritizes your physical, mental, and financial wellness. From flexible work arrangements, comprehensive benefits to wellness incentives, and a defined benefit pension plan – we have you covered. A Place to Collaborate and Win: We’ve built a lively environment where creativity and open communication thrive. It’s why we’re consistently recognized as one of Canada’s Most Admired Corporate Cultures, one of Greater Toronto’s Top Employers, and one of the Best Places to Work. Work that Truly Matters. You’re giving Canadians the opportunity for better retirement security, and organizations the chance to do more. Learn more about us by visiting Diversity, Equity, Inclusion, And Belonging (DEIB) DEIB at CAAT means we respect and value the broadest range of experiences, geographies, gender, ethnicities, backgrounds, and perspectives as key elements of our culture. Our vision is to provide an environment where employees can bring their best, professional, authentic selves to work. CAAT Pension Plan is an equal opportunity employer, and we will accommodate any needs under the Accessibility for Ontarians with Disabilities Act and the Ontario Human Rights Code. Hiring processes will be modified to remove barriers to accommodate those with disabilities, if requested. Should any applicant require accommodation through the application processes, please contact us at or call Human Resources at 416‑673‑9000 for assistance. #J-18808-Ljbffr