Job Description
Requisition ID: 190778 Career Group: Corporate Office Careers
Job Category: IT Cyber Security Operations
Travel Requirements: 0 - 10%
Job Type: Full-Time
Country: Canada (CA)
Province: Nova Scotia
City: Dartmouth
Location: Dartmouth Office
Embark on a rewarding career with Sobeys Inc., celebrated among Canada’s Top 100 employers, where your talents contribute to our commitment to excellence and community impact.
Our family of 128,000 employees and franchise affiliates share a collective passion for delivering exceptional shopping experiences and amazing food to all our customers. Our mission is to nurture the things that make life better – great experiences, families, communities, and our employees. We are a family nurturing families.
A proudly Canadian company, we started in a small town in Nova Scotia but we are now in communities of all sizes across this great country. With over 1,600 stores in all 10 provinces, you may know us as Sobeys, Safeway, IGA, Foodland, FreshCo, Thrifty Foods, Lawtons Drug Stores or another of our great banners but we are all one extended family.
Ready to Make an impact? We are seeking a Senior Cybersecurity Specialist with a balanced expertise across application security, offensive security, and strategic risk leadership. This role is critical in supporting enterprise-wide penetration testing through vendor partnerships, leading internal attack surface management initiatives, and helping shape detection capabilities through purple teaming. The ideal candidate possesses in-depth technical skills, effective cross-team leadership, and the ability to translate offensive security insights into actionable, enterprise-wide risk reduction strategies.
Sobeys is full of exciting opportunities, and we are always looking for bright new talent to join our team! We currently have a full-time opportunity for a Senior Cyber Security Specialist. This role can be based out of one our main offices including: Mississauga, ON. Calgary, AB.
Key Responsibilities Here’s where you’ll be focusing: - Application Security Advisory
- Provide strategic oversight of SAST/DAST/SCA implementations across development environments.
- Advise engineering and DevOps teams on secure coding and practices
- Coordinate secure SDLC improvements with development and product teams.
- Penetration Testing
- Coordinate and lead third-party penetration testing efforts, including web app, cloud, infrastructure, and APIs.
- Collaborate with vendors on scoping, onboarding, and engagement execution.
- Triage, validate, and prioritize vulnerabilities; communicate risk and remediation plans to stakeholders.
- Attack Surface Management
- Operate and manage tools for attack surface monitoring
- Own the ASM strategy and exposure tracking across business units.
- Work directly with IT, cloud, and security teams to address high-risk exposures.
- Purple Teaming and Threat Simulation
- Design and execute purple team exercises with defensive teams (SOC, IR).
- Use MITRE ATT&CK and threat intel to simulate real-world adversary behaviours.
- Supporting defence teams through rule creation, alerting, and threat-hunting methodologies based on the outcomes from purple teaming.
What You Have To Offer Required Skills and Qualifications: - 3+ years in offensive or application security roles with increasing responsibility.
- Hands-on experience in AppSec, pen test collaboration, red/purple teaming, and ASM tooling.
- Deep knowledge of OWASP, MITRE ATT&CK, NIST CSF, and modern threat landscapes.
- Understanding of OSINT.
- Programming/scripting experience.
- Proven ability to lead vendor engagements and translate technical results into business risk.
- Support strategic initiatives to improve risk posture and offensive readiness.
- Excellent collaboration, critical thinking, and communication skills.
- Mentor junior team members and help shape internal offensive security processes.
Preferred Certifications - OSEP, OSWE, GWAPT, GPEN, CRTP
At Sobeys we require our teammates to have the ability to adhere to a hybrid work model that requires your presence at one of our office locations at least three days per week. This requirement is integral to our commitment to team collaboration and the overall success of our office culture.
We offer a comprehensive Total Rewards package, which varies by role and designed to help our teammates to live better – physically, financially and emotionally.
Some websites share our job opportunities and may provide salary estimates without our knowledge. These estimates are based on similar jobs and postings for general comparison, but these numbers are not provided by our organization nor monitored for accuracy.
We will consider factors such as your working location, work experience and skills as well as internal equity, and market conditions to ensure the selected candidate is paid fairly and competitively. We look forward to discussing the specific compensation details relevant to this role with candidates who are selected to move forward in the recruitment process.
Our Total Rewards programs, for full-time teammates, goes well beyond your paycheque:
- Competitive Benefits Package, tailored to meet your needs, including health and dental coverage, life, short- and long-term disability insurance.
- Access to Virtual Health Care Platform and Employee and Family Assistance Program.
- A Retirement and Savings Plan that provides you with the opportunity to build and add value to your savings.
- A 10% in-store discount at our participating banners and access to a wide range of other discount programs, making your purchases more affordable.
- Learning and Development Resources to fuel your professional growth.
- Parental leave top-up
- Paid Vacation and Days-off
We are committed to accommodating applicants with disabilities throughout the hiring process and will work with applicants requesting accommodation at any stage of this process.
Job Tags
Full time, Temporary work, Internship, Long term contract, Work at office, 3 days per week,