Job Title

Senior Cyber Security Specialist - Cyber Incident Management Posted on October 17, 2025 by Sobeys. Ready to make an impact? The Senior Specialist, Cyber Incident Management will be a highly experienced and technically adept cybersecurity professional who will lead critical aspects of our security operations and incident response functions. This role demands a proactive individual capable of handson investigation and response, while also providing expert guidance, driving the maturity of our DFIR capabilities, and leading the charge during major incidents. Youll leverage a comprehensive suite of security tools, collaborate extensively with internal and external stakeholders, and be instrumental in continuously enhancing our defensive posture. This position requires an exceptional analytical mind, advanced problemsolving skills, and the proven ability to maintain composure and make sound decisions under significant pressure. Sobeys offers exciting opportunities and we are always looking for bright new talent to join our team! This fulltime position is based at one of our main offices: Stellarton, NS; Mississauga, ON; or Calgary, AB. Key Responsibilities Act as a Senior SME for the Cyber Incident Management team, contributing to daytoday security operations activities, including alert triage, investigation, and incident containment. Provide expert guidance and mentorship to Cyber Incident Management Specialists, assisting them with complex investigations, troubleshooting, and decisionmaking. Conduct efficient and thorough investigations of security alerts, events, and incidents using a variety of security tools (e.g., SIEM, Firewall, WAF, EDR, IDS/IPS, Email Security Gateways), analyzing security logs, network traffic, and endpoint data to identify indicators of compromise (IOCs) and determine scope and impact. Drive the continuous finetuning and optimization of security use cases within the security solutions to enhance detection efficacy, reduce false positives, and minimize alert fatigue. Take charge and lead incident response efforts during major security incidents, coordinating activities, defining strategies, and guiding the team through the entire incident lifecycle. Play a key role in establishing and maturing comprehensive DFIR capabilities, including developing advanced investigation methodologies, tools, and processes. Develop and refine incident response playbooks, Standard Operating Procedures (SOPs), and other critical operational documentation, ensuring they are current and effective. Proactively develop and maintain comprehensive documentation for incident response activities, investigation findings, remediation steps, and lessons learned. Define, track, and report on key metrics monthly to measure the effectiveness of security operations and incident response, identifying areas for improvement. Prepare detailed and clear incident reports for various stakeholders, including technical teams and senior management. Build a strong partnership with our Managed Security Service Provider (MSSP) for efficient alert escalation and collaboration by working handinhand with them. Provide advanced technical support and guidance to other IT & Cyber teams on security best practices, emerging threats, and incident prevention strategies. Qualifications Undergraduate degree or diploma in computer science, information security, or a related technical discipline. 5+ years of progressive industry experience working in Cybersecurity operations, with a significant focus on Incident Response and Security Operations (SecOps) leadership or senior roles. Demonstrated expertise in leading and conducting complex security investigations and incident response efforts across various security domains (e.g., network, endpoint, cloud, applications). Strong understanding of network and system security concepts, including TCP/IP, operating systems, and application security. Location & Compensation Location: Calgary Work location: On site Salary: $29.00 to $69.00 per hour Terms of employment: Permanent employment, Full time Starts as soon as possible Source: CareerBeacon #2445541 Added December 20, 2025; advertised until November 20, 2025. #J-18808-Ljbffr