The AIR MILES Reward Program is one of Canada's most recognized loyalty programs, with over 10 million active collector accounts, representing more than half of all Canadian households. AIR MILES collectors earn Reward Miles at more than 300 leading Canadian, global and online brands and at thousands of retail and service locations across the country. AIR MILES is a wholly-owned subsidiary of the Bank of Montreal (BMO). BMO is Canada's oldest bank and the 8th largest in North America with more than 12 million customers globally.
Position Overview:
The Senior Security Consultant (Security Operations) is a pivotal technical and advisory role responsible for leading and advancing the AIR MILES' Security Operations, with a focus on vulnerability management, incident response, phishing simulations, security awareness programs, email and endpoint security. This position combines hands-on technical expertise, strategic planning, and cross-functional collaboration to reduce risk, strengthen defenses, and foster a culture of security across the enterprise.
Responsibilities:
- Lead day-to-day security operations including endpoint protection, vulnerability assessments, and incident response activities.
- Develop and mature vulnerability management processes, ensuring timely identification, assessment, and advisory on remediation of security vulnerabilities and implementation of security controls across endpoints, servers, and cloud infrastructure.
- Oversee and coordinate incident response activities, including threat detection, investigation, containment, eradication, and post-incident analysis; lead the development and maintenance of incident response playbooks and runbooks.
- Design, execute, and analyze phishing simulations and other social engineering campaigns to assess and improve AIR MILES employee's resilience to cyber threats; report on outcomes and recommend improvements.
- Develop, deliver, and manage ongoing security awareness training and campaigns to build a strong security culture and ensure compliance with organizational policies and regulatory requirements.
- Proactively monitor security environments using advanced SIEM, EDR, and log analysis tools to detect and respond to abnormal activities and emerging threats.
- Collaborate with IT, development, and business teams to design, implement, and refine security controls across systems, networks, and applications.
- Mentor and guide junior security team members, providing technical leadership and knowledge sharing.
- Review and optimize security tools and technologies to strengthen the organization's security posture.
- Prepare and report to leadership detailed cybersecurity metrics and KRIs on security-related findings, incidents, and actions taken.
- Maintain comprehensive documentation of systems, protocols, incident reports, and security processes.
- Stay current with evolving security threats, trends, and best practices; participate in professional development and industry forums.
Qualifications:
- Bachelor's degree in Computer Science, Cybersecurity, or a related field.
- Minimum 5 years of experience in security operations, including vulnerability management, incident response, and endpoint security.
- Deep knowledge of security defense tools and technologies (EDR, SIEM, IDS/IPS, vulnerability scanners, email security platforms, PAM, etc.)
- Knowledge of common cybersecurity frameworks, standards, and best practices (e.g., NIST, ISO 27001, CIS, OWASP, MITRE).
- Experience with risk assessment methodologies and compliance requirements relevant in the financial sector.
- Excellent analytical, communication, and documentation skills; ability to translate technical findings into business-focused recommendations; strong analytical and problem-solving skills, with a keen eye for detail.
- Demonstrated leadership and mentoring abilities within a security operations environment, ability to work effectively as part of a team and independently, managing multiple tasks, priorities and expectations.
- Recognized and advanced professional certifications such as CISSP, CISM, GIAC Incident Handler (GCIH), Certified Ethical Hacker (CEH or CEH-Practical) or relevant cloud certifications from major public cloud providers (e.g., AWS, GCP, Azure) are highly desirable.
This role is ideal for a seasoned security professional with a passion for operational excellence, technical depth, and the ability to influence security culture across a complex organization.
