Security Engineer (Remote First)

About Us: Zensurance is redefining commercial insurance for Canadian businesses. As a leading InsurTech, we make getting the right coverage simple, fast, and accessible through a digital-first experience. Our platform combines advanced technology with deep industry expertise to deliver tailored insurance solutions that help businesses thrive. Zensurance has been recognized for its rapid growth and industry impact: ✅ Deloitte’s Technology Fast 50 (2023, 2024, 2025) ✅ Deloitte’s Technology Fast 500 (2024, 2025) ✅ Top Insurance Employers (2022) At Zensurance, we value ownership, collaboration, and innovation. Our team thrives on solving complex challenges, challenging the status quo, and making a real impact in an industry ready for change. If you're looking to build something meaningful in a fast-growing, customer-focused company, we’d love to hear from you! We are looking for a Security Engineer to join our IT Team! Reporting to the Associate Director, IT, you will support our company-wide information security management program to ensure information assets are adequately protected. You will proactively work with Zensurance's business units to implement practices that comply with defined information security policies and standards. The role also assists with a variety of IT-related risk management activities and provides day-to-day support for information security programs and initiatives. As a senior individual contributor, you will collaborate closely with the Associate Director of IT to coach and mentor colleagues across the organization. You'll play a key role in supporting the Technology Leadership Team with employee training and development initiatives, aiming to continuously improve the team's technical capabilities and delivery excellence. Responsibilities: Support and maintain the company-wide information security program, including policies, standards, and guidelines. Facilitate IT risk assessments with business units and help define acceptable levels of residual risk. Monitor the external threat environment and advise stakeholders on emerging risks. Manage day-to-day threat and vulnerability management, including detection, response, and remediation. Coordinate incident management and support disaster recovery and business continuity planning. Liaise with engineering, IT, and enterprise architecture teams to embed security into system design and selection. Produce regular reporting and metrics on program effectiveness for leadership and stakeholders. Oversee security testing procedures and manage remediation of identified risks. Ensure audit trails and system logs comply with policy and audit requirements. Lead security awareness training across the organization. Requirements: 5+ years of experience in Information Security. Hands-on experience with information security frameworks: CIS Controls v8, NIST, ISO 27001, SOC 2, PIPEDA, or PCI. Experience writing cybersecurity policies and conducting security gap analyses. Experience translating business stakeholder needs into technical security requirements. Experience with cloud security controls (AWS or equivalent). Familiarity with security platforms such as CrowdStrike and Mimecast. Experience working alongside legal, audit, and compliance teams. Strong written and verbal communication skills — able to engage technical and non-technical audiences. University degree or college diploma in Information Security, Cybersecurity, or a related field (or equivalent experience). Nice to have: Bachelor's in Information Systems; MBA or MS in Information Security preferred. Security certifications: CISSP, CISA, CISM, GIAC, CBCP, MBCI, or similar. Experience in an agile, fast-paced environment. $110,000 - $150,000 a year The salary range for this role is $110,000 to $150,000, not including the annual discretionary bonus and any additional performance-based incentives. The annual base salary range provided for this position is a nationwide market range and represents a broad range of salaries for this role across the country. The actual salary for this position will be determined by a number of factors, including the scope, complexity and location of the role; the skills, education, training, credentials and experience of the candidate; and other conditions of employment. As part of our comprehensive compensation and benefits program, employees may also be eligible for performance-based case incentive awards. Benefits & Perks at Zensurance: At Zensurance, we know that when our people thrive, so does our business. That’s why we offer a flexible, people-first work environment designed to support your well-being, growth, and success. Work Your Way

• Remote-first setup for added flexibility
• Home office allowance to create a comfortable workspace
• Top-tier tech: "Office in a box" with all necessary tech equipment
• Half days before public holidays: Enjoy half days before long weekend