Cyber Security Specialist

Sobeys


Date: 3 hours ago
City: Mississauga, Ontario
Contract type: Full time
Requisition ID: 190478

Career Group: Corporate Office Careers

Job Category: Cyber Security GRC

Travel Requirements: 0 - 10%

Job Type: Full-Time

Country: Canada (CA)

Province: Ontario; Alberta; Nova Scotia

City: Mississauga / Calgary / Stellarton

Location: Calgary Office, Foord St. Office, Tahoe Office

Embark on a rewarding career with Sobeys Inc., celebrated among Canada’s Top 100 employers, where your talents contribute to our commitment to excellence and community impact.

Our family of 128,000 employees and franchise affiliates share a collective passion for delivering exceptional shopping experiences and amazing food to all our customers. Our mission is to nurture the things that make life better – great experiences, families, communities, and our employees. We are a family nurturing families.

A proudly Canadian company, we started in a small town in Nova Scotia but we are now in communities of all sizes across this great country. With over 1,600 stores in all 10 provinces, you may know us as Sobeys, Safeway, IGA, Foodland, FreshCo, Thrifty Foods, Lawtons Drug Stores or another of our great banners but we are all one extended family.

Ready to Make an impact?

Sobeys is full of exciting opportunities, and we are always looking for bright new talent to join our team! We currently have a full-time opportunity for a Cyber Security Specialist. This role can be based out of one our main offices including: Stellarton, NS; Mississauga, ON; Calgary, AB.

Responsibilities

Here’s where you’ll be focusing:

  • Support the execution and day-to-day operations of the Third-Party Risk Management (TPRM) program.
  • Assist with the intake and triage of third-party cybersecurity assessment requests.
  • Collaborate with cybersecurity team members, procurement, legal, privacy, and business stakeholders to help assess third-party vendors and services.
  • Conduct initial reviews of cybersecurity documentation (e.g., SOC 2, ISO 27001, SIG, CAIQ) and flag potential gaps or areas of concern.
  • Help track and follow up on remediation activities in coordination with internal stakeholders and third parties.
  • Maintain and update the inventory of third-party relationships, including risk ratings, assessment status, and documentation.
  • Monitor public sources for vendor-related cybersecurity news, breaches, and vulnerabilities.
  • Contribute to the ongoing development and maintenance of TPRM policies, procedures, and assessment templates.
  • Assist with preparing dashboards and reports that track assessment progress, remediation timelines, and vendor risk levels.
  • Support team members in analyzing metrics and identifying opportunities for process improvement.
  • Participate in meetings and help document decisions and action items related to third-party cybersecurity risks.
  • Support audit and compliance activities by gathering evidence and preparing documentation.
  • Ensure accuracy and consistency in assessments, records, and reports, following established quality standards.
  • Provide general support to the Cybersecurity GRC team across Enterprise and IT Risk Management activities as required.

Requirements

What you have to offer:

  • 2–4 years of experience in cybersecurity, IT risk management, or IT audit.
  • Exposure to third-party/vendor risk management is an asset.
  • University degree or diploma in Information Security, Computer Science, Risk Management, or a related field.
  • Familiarity with cybersecurity frameworks and standards such as NIST, ISO 27001, SIG, or CSA CCM.
  • Ability to understand and assess common cybersecurity controls.
  • Strong attention to detail and organizational skills.
  • Effective verbal and written communication abilities.
  • Experience with tools such as ServiceNow, Archer, OneTrust, or other GRC/TPRM platforms is an asset.
  • A professional designation (e.g., CISA, CISSP, CRISC, CTPRP) is considered a plus.

At Sobeys we require our teammates to have the ability to adhere to a hybrid work model that requires your presence at one of our office locations at least three days per week. This requirement is integral to our commitment to team collaboration and the overall success of our office culture.

We offer a comprehensive Total Rewards package, which varies by role and designed to help our teammates to live better – physically, financially and emotionally.

Some websites share our job opportunities and may provide salary estimates without our knowledge. These estimates are based on similar jobs and postings for general comparison, but these numbers are not provided by our organization nor monitored for accuracy.

We will consider factors such as your working location, work experience and skills as well as internal equity, and market conditions to ensure the selected candidate is paid fairly and competitively. We look forward to discussing the specific compensation details relevant to this role with candidates who are selected to move forward in the recruitment process.

Our Total Rewards programs, for full-time teammates, goes well beyond your paycheque:

  • Competitive Benefits Package, tailored to meet your needs, including health and dental coverage, life, short- and long-term disability insurance.
  • Access to Virtual Health Care Platform and Employee and Family Assistance Program.
  • A Retirement and Savings Plan that provides you with the opportunity to build and add value to your savings.
  • A 10% in-store discount at our participating banners and access to a wide range of other discount programs, making your purchases more affordable.
  • Learning and Development Resources to fuel your professional growth.
  • Parental leave top-up
  • Paid Vacation and Days-off

We are committed to accommodating applicants with disabilities throughout the hiring process and will work with applicants requesting accommodation at any stage of this process.

Post a CV