Security Advisor Senior - HashiCorp

Pay at Intact is about much more than just salary.

• Flexible work arrangements and a hybrid work model

• Possibility to purchase up to 5 extra days off per year

• Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more

• Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)

Salary range (but not limited to):

101,800 - 124,400

Annual bonus target, based on the base salary, with a potential payout of up to double the target (subject to personal and company performance):

12%

As part of our commitment to Win As A Team, we share our success with employees through our annual bonus plan and Employee Share Purchase Plan (ESPP) – with Intact matching 50% of your net shares.

Our pension offerings provide flexibility and long-term security for our employees beyond their careers. We are one of the few companies offering the opportunity to receive guaranteed income for life via our defined benefit pension plan.

Salary for the candidate will be determined taking into consideration a number of factors including: experience, skills, qualifications, anticipated contribution to role, internal equity, etc. The salary range presented above is based on a 35-hour workweek and would represent a majority of different candidate profiles. However, we encourage candidates who may fall outside of this range to apply as well.

About the role

We’re looking for a Senior Security Advisor to join our growing team!

What you'll do here:

• Become Vault HashiCorp's internal expert, including secrets management, advanced features and best practices.

• Implementation and optimization: Collaborate with teams to develop detailed implementation plans, manage our Kubernetes Vault deployments across both AWS and GCP environments (OCP and GKE), and ensure high availability and operational readiness (including DR).

• Maximize the security potential of Vault by ensuring secure, auditable, and restricted access to secrets.

• Strategy and Influence: Contribute to and influence the organization's Vault strategy, optimizing its use and developing its capabilities for broad internal adoption.

• Identify and resolve issues with the implementation, replication, and day-to-day use of Vault.

• Handle 24/7 on-call support for incidents on a rotational basis

• Create and maintain documentation and optionally provide training to other team members on Vault.

• Automation and Self-Serve: Manage the design and implementation of security solutions throughout the product lifecycle, empowering development teams with self-serve secret management, automated CI/CD pipeline integrations, and secure artifact handling.

• Act as an expert on several areas of information security (e.g., security architecture, application security, threat modeling, etc.).

What you bring to the table:

• Bachelor’s degree in computer science, or any combination of equivalent education and experience

• Minimum 5 years of experience in information technology, including at least three (3) years in the secrets management space (HashiCorp Vault)

• Proven hands-on experience administering Vault (Enterprise preferred), including configuration of secrets engines (KV v2, Transit, Database, PKI), auth methods (OIDC/JWT, AWS/GCP IAM, Kubernetes), namespaces, policies, audit devices, and replication (performance/DR).

• Terraform / HCP Terraform (strong prerequisite): Deep operational experience using HCP Terraform to manage Vault and cloud resources via IaC, including modules, workspaces, policy checks, and environment promotion

• Multi-cloud experience (strong asset): Practical experience operating Vault-integrated platforms on AWS and GCP, including cloud IAM and KMS integrations for auto-unseal and short-lived credentials.

• Kubernetes knowledge: Experience deploying and operating Vault on OCP and GKE, including injector/agent patterns, Kubernetes auth, and platform-specific considerations.

• Proficiency with CI/CD systems, programing (Python or Java preferred), and automation frameworks. Experience enabling secure artifact and container management is highly beneficial.

• Strong understanding of modern security principles, secrets lifecycle management, least privilege, auditability, and compliance-aligned controls.

• Excellent communication, stakeholder management, and problem-solving skills; ability to influence and drive cross-team adoption.

• Demonstrated commitment to training, self-learning and maintaining proficiency in the technical cybersecurity domain

• Good to have Vault Associate certification; CKA certification is an asset

• For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country.

• No Canadian work experience required however must be eligible to work in Canada.

#LI-Hybrid

Il s'agit d'un nouveau rôle au sein de notre équipe en plein croissance | This role is a new member of our growing team.