New Value Solutions is a national IT consulting firm and we are searching for a Senior Cybersecurity Consultant. The successful candidate will lead complex security engagements for a major project in Quebec City and Montreal. The will require leveraging the candidate's deep expertise in risk assessment, compliance, advanced security solutions, and guiding teams through the entire lifecycle of cybersecurity initiatives (strategic planning and architecture to implementation and continuous improvement). This is a contract position.
Key Responsibilities
- Develop and refine security strategies, frameworks, and policies for clients, ensuring alignment with industry standards (e.g., NIST, ISO 27001)
- Oversee comprehensive risk analyses and audits, identifying gaps and recommending mitigation strategies in line with client business objectives.
- Guide the design and implementation of advanced security controls (network security, endpoint protection, cloud security, etc.), and remain current with emerging threats and solutions.
- Act as the primary cybersecurity advisor for senior client stakeholders, translating technical risks into actionable business language.
- Oversee junior and intermediate consultants, providing technical guidance.
- Develop incident response playbooks, conduct simulations, and lead the resolution of high-impact security incidents.
- Coordinate with internal and external auditors to ensure adherence to relevant compliance standards.
- Collaborate with cross-functional teams (IT, legal, operations) to align security controls with organizational processes and client needs.
Required Qualifications
Education : Bachelor’s degree in Computer Science, Information Security, Engineering, or a related field (Master’s degree preferred).Experience : 7+ years of professional experience in cybersecurity, with a focus on penetration testing.Certifications (Preferred) : CISSP, CISM, CRISC, or similar.Certifications (At least one required) : OSCP, CRTP, CRTE, eWPTXTechnical Expertise : Strong knowledge of cybersecurity tools, frameworks, and best practices, including SIEM solutions, vulnerability management, cloud security, and zero-trust architectures.Regulatory Knowledge (Preferred) : Familiarity with Canadian and Quebec-specific privacy regulations, data residency requirements, and industry compliance mandates (PCI-DSS, SOC 2, ISO 27001).Languages : Fluent in English and French with excellent written and verbal communication skills, primarily in French.Soft Skills : Excellent communication, stakeholder management, and project leadership skills; ability to translate complex security concepts into actionable insights.