Specialist, Security & Compliance

The AIR MILES Reward Program is Canada’s most recognized loyalty program with nearly 10 million active collector accounts. With more than 30 years of experience, we have a proven track record of driving long-term loyalty. There’s a reason we’re recognized as one of the best places to work year after year: we give you more than a place to work, we give you a place to grow your career. That’s what sets us apart. Benefits and Perks at AIR MILES:

• Flexible work environment with remote work stipends
• AIR MILES Gold® Collector status upon hire
• Free AIR MILES issued annually on your anniversary date
• Group RRSPs & company matching program
• An annual wellness subsidy
• Robust wellness resources including cognitive behavioural therapy and a Headspace subscription
• Summer Hours Program (half-day Fridays + 3 Summer Fun Days)
• Loyalty Days (2 extra vacation days per year)
• Two-week Sabbatical Leave and 20,000 AIR MILES in the year following each five-year milestone anniversary
• Volunteer paid time off
• Generous tuition reimbursement programs
• Extensive learning and development opportunities

What Will You Work On? The Technical Expert role is responsible for designing, evaluating, and supporting application security and cloud security capabilities in support of the security and compliance programs at LoyaltyOne. Individuals in this role poses well developed technical skills, a strong familiarity with network, system, and application architecture, and an understanding of the technical security landscape. These strengths are applied to a variety of activities, such as application security reviews, consulting on system architecture, and securing cloud environments at scale. Individuals in this role perform a variety of activities, encompassing application, cloud, and infrastructure security including establishing standards, participating in investigations, and providing guidance on aligning to industry best practices. How Will You Create Impact?

• Reviewing system and solution architecture
• Consulting with software developers and supporting improvements to application security
• Consult on risk assessments and work with stakeholders to implement measures to mitigate risk
• Perform audit/testing on infrastructure and application controls and work with stakeholders on remediation activities
• Closely work with third party service providers to lead and support any work performed
• Contribute to monthly Information security metrics for reporting
• Establish relationship with internal stakeholders, keeps abreast of technology, bring emerging risks to management attention and identifies opportunities for improving existing security processes.
• Consult on Internal Security Policy and Baseline Standards

Let’s Talk About You:

• Demonstrated competency in project participation in a cross-functional environment and experience in managing remediation activities across the enterprise.
• Communication skills especially in areas where diplomacy is needed to help ensure that new policies and procedures gain the support they need to be adopted by the enterprise and management.
• At least 6 years of full-time work experience in information security and/or related functions
• Familiarity with Information security standards and IT frameworks
• Knowledge of Security Governance, Risk & Compliance and security audit practices.
• Experience in multiple security domains (e.g. Access control, application and system development, operations security, network, BCP/DR, etc.)
• Sound knowledge of network security and network security components such as firewalls, routers, intrusion detection and other products such as SIEM and anti-malware products.
• Strong knowledge of cloud architecture security and deployment of security controls in a cloud environment (e.g. MS Azure, AWS, etc.).
• Hands-on experience building and operating in a cloud environment.
• Thorough understanding of web application architecture, single sign on technologies, and the HTTP/HTTPS protocols.

AIR MILES is for Everyone We are committed to embedding inclusion in the way we work and the services we offer. We believe inclusion is not only a strength but a competitive advantage for AIR MILES, and we focus on building a culture of belonging that enables us to perform, innovate and be our authentic selves. If you are excited about the role, but don’t meet every single requirement outlined in the job description, we encourage you to apply anyway. You never know, you might just be the right candidate for this role, or others! In your application, please feel free to advise if you require accommodation for the interview process. We also welcome you to note which pronouns you use. Please know preliminary interviews are conducted remotely, via phone or video call. We look forward to ‘virtually’ meeting you! Flexible Work Environment AIR MILES is proud to offer Corporate Associates the flexibility to choose where they do their best work and we do not mandate a minimum number of days required in office. That said, the doors at our Toronto office are always open to Associates who prefer an office environment or need a change of scenery. All members of our Customer Care team permanently work from home. No matter where you work from, everyone is set up with the tools and resources required to stay connected and make work-from-anywhere routines more comfortable. Check us out – AIR MILES, a LoyaltyOne Company on LinkedIn | Glassdoor | Facebook | Twitter | Instagram LoyaltyOne Culture | Instagram AIR MILES Job Type: Regular