Senior Security Consultant - Cyberseurity Operations (AIR MILES)
Top Benefits
About the role
250 Yonge Street Toronto Ontario,M5B 2L7
Position Overview:
The Senior Security Consultant – Cybersecurity Operations plays a critical role in safeguarding AIR MILES’ digital assets through expert-level monitoring, detection, and response to cyber threats. This role focuses on SIEM monitoring, incident response, and data loss prevention (DLP), while also contributing to the broader security operations strategy. The ideal candidate will bring deep technical expertise, operational leadership, and a proactive mindset to strengthen the organization’s cyber defense capabilities.
Responsibilities:
- Lead and manage SIEM operations, ensuring continuous monitoring, threat detection, and alert triage using advanced log correlation and analytics tools.
- Coordinate and execute incident response activities, including threat identification, containment, eradication, recovery, and post-incident reviews; maintain and evolve IR playbooks and runbooks.
- Implement and manage DLP solutions across endpoints, email, and cloud platforms to prevent unauthorized data access, movement, or exfiltration.
- Analyze and respond to security alerts and anomalies from SIEM, EDR, and other telemetry sources; escalate and investigate potential threats.
- Collaborate with internal teams to fine-tune SIEM rules, use cases, and dashboards for improved visibility and actionable intelligence.
- Conduct forensic investigations and root cause analysis of security incidents, documenting findings and recommending remediation strategies.
- Develop and maintain threat intelligence feeds and integrate them into SIEM and IR workflows to enhance detection capabilities.
- Support compliance and audit efforts by ensuring logging, monitoring, and DLP controls align with regulatory and policy requirements.
- Provide technical leadership and mentorship to junior analysts and consultants in cybersecurity operations.
- Continuously evaluate and optimize security tools, including SIEM, DLP, and IR platforms, to improve efficiency and effectiveness.
- Report on key cybersecurity metrics, incident trends, and risk indicators to leadership and stakeholders.
- Stay abreast of emerging threats, attack techniques, and security technologies to inform operational improvements.
Qualifications:
- Bachelor’s degree in Cybersecurity, Computer Science, or a related field.
- Minimum 5 years of experience in cybersecurity operations, with a focus on SIEM monitoring, incident response, and DLP.
- Hands-on experience with leading SIEM platforms (e.g., Splunk, Helix, Google SecOps), DLP solutions (e.g., Microsoft Purview, Cisco Umbrella), and security defense tools and technologies (EDR, SIEM, IDS/IPS, vulnerability scanners, email security platforms, PAM, etc.)
- Strong understanding of threat detection methodologies, log analysis, and forensic investigation techniques.
- Familiarity with cybersecurity frameworks and standards (e.g., NIST, MITRE ATT&CK, ISO 27001, CIS, OWASP, MITRE).
- Excellent analytical, communication, and documentation skills; ability to translate technical findings into business-focused recommendations; strong analytical and problem-solving skills, with a keen eye for detail.
- Proven ability to lead incident response efforts and manage high-pressure situations effectively.
- Professional certifications such as CISSP, GCIH, CEH, or vendor-specific SIEM/DLP certifications are highly desirable.
- Demonstrated leadership and mentoring abilities within a security operations environment, ability to work effectively as part of a team and independently, managing multiple tasks, priorities and expectations.
This role is ideal for a seasoned security professional with a passion for operational excellence, technical depth, and the ability to influence security culture across a complex organization.
Salary:
$69,000.00 - $129,000.00
Pay Type:
Salaried
The above represents BMO Financial Group’s pay range and type.
Salaries will vary based on factors such as location, skills, experience, education, and qualifications for the role, and may include a commission structure. Salaries for part-time roles will be pro-rated based on number of hours regularly worked. For commission roles, the salary listed above represents BMO Financial Group’s expected target for the first year in this position.
BMO Financial Group’s total compensation package will vary based on the pay type of the position and may include performance-based incentives, discretionary bonuses, as well as other perks and rewards. BMO also offers health insurance, tuition reimbursement, accident and life insurance, and retirement savings plans. To view more details of our benefits, please visit: https://jobs.bmo.com/global/en/Total-Rewards
About Us
At BMO we are driven by a shared Purpose: Boldly Grow the Good in business and life. It calls on us to create lasting, positive change for our customers, our communities and our people. By working together, innovating and pushing boundaries, we transform lives and businesses, and power economic growth around the world.
As a member of the BMO team you are valued, respected and heard, and you have more ways to grow and make an impact. We strive to help you make an impact from day one – for yourself and our customers. We’ll support you with the tools and resources you need to reach new milestones, as you help our customers reach theirs. From in-depth training and coaching, to manager support and network-building opportunities, we’ll help you gain valuable experience, and broaden your skillset.
To find out more visit us at https://jobs.bmo.com/ca/en
BMO is committed to an inclusive, equitable and accessible workplace. By learning from each other’s differences, we gain strength through our people and our perspectives. Accommodations are available on request for candidates taking part in all aspects of the selection process. To request accommodation, please contact your recruiter.
Note to Recruiters: BMO does not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to BMO, directly or indirectly, will be considered BMO property. BMO will not pay a fee for any placement resulting from the receipt of an unsolicited resume. A recruiting agency must first have a valid, written and fully executed agency agreement contract for service to submit resumes.
About BMO
At BMO, banking is our personal commitment to helping people at every stage of their financial lives.
The truth is, people’s needs change: so we change too. But we never change who we are. Which means we’ll never waiver from providing our customers the best possible banking experience in the industry.
Our incredible team of over 46,000 people is just the tip of the iceberg. You should get to know us. We’re here to help.
Our social media terms of use: https://www.bmo.com/socialmediatermsofuse
Senior Security Consultant - Cyberseurity Operations (AIR MILES)
Top Benefits
About the role
250 Yonge Street Toronto Ontario,M5B 2L7
Position Overview:
The Senior Security Consultant – Cybersecurity Operations plays a critical role in safeguarding AIR MILES’ digital assets through expert-level monitoring, detection, and response to cyber threats. This role focuses on SIEM monitoring, incident response, and data loss prevention (DLP), while also contributing to the broader security operations strategy. The ideal candidate will bring deep technical expertise, operational leadership, and a proactive mindset to strengthen the organization’s cyber defense capabilities.
Responsibilities:
- Lead and manage SIEM operations, ensuring continuous monitoring, threat detection, and alert triage using advanced log correlation and analytics tools.
- Coordinate and execute incident response activities, including threat identification, containment, eradication, recovery, and post-incident reviews; maintain and evolve IR playbooks and runbooks.
- Implement and manage DLP solutions across endpoints, email, and cloud platforms to prevent unauthorized data access, movement, or exfiltration.
- Analyze and respond to security alerts and anomalies from SIEM, EDR, and other telemetry sources; escalate and investigate potential threats.
- Collaborate with internal teams to fine-tune SIEM rules, use cases, and dashboards for improved visibility and actionable intelligence.
- Conduct forensic investigations and root cause analysis of security incidents, documenting findings and recommending remediation strategies.
- Develop and maintain threat intelligence feeds and integrate them into SIEM and IR workflows to enhance detection capabilities.
- Support compliance and audit efforts by ensuring logging, monitoring, and DLP controls align with regulatory and policy requirements.
- Provide technical leadership and mentorship to junior analysts and consultants in cybersecurity operations.
- Continuously evaluate and optimize security tools, including SIEM, DLP, and IR platforms, to improve efficiency and effectiveness.
- Report on key cybersecurity metrics, incident trends, and risk indicators to leadership and stakeholders.
- Stay abreast of emerging threats, attack techniques, and security technologies to inform operational improvements.
Qualifications:
- Bachelor’s degree in Cybersecurity, Computer Science, or a related field.
- Minimum 5 years of experience in cybersecurity operations, with a focus on SIEM monitoring, incident response, and DLP.
- Hands-on experience with leading SIEM platforms (e.g., Splunk, Helix, Google SecOps), DLP solutions (e.g., Microsoft Purview, Cisco Umbrella), and security defense tools and technologies (EDR, SIEM, IDS/IPS, vulnerability scanners, email security platforms, PAM, etc.)
- Strong understanding of threat detection methodologies, log analysis, and forensic investigation techniques.
- Familiarity with cybersecurity frameworks and standards (e.g., NIST, MITRE ATT&CK, ISO 27001, CIS, OWASP, MITRE).
- Excellent analytical, communication, and documentation skills; ability to translate technical findings into business-focused recommendations; strong analytical and problem-solving skills, with a keen eye for detail.
- Proven ability to lead incident response efforts and manage high-pressure situations effectively.
- Professional certifications such as CISSP, GCIH, CEH, or vendor-specific SIEM/DLP certifications are highly desirable.
- Demonstrated leadership and mentoring abilities within a security operations environment, ability to work effectively as part of a team and independently, managing multiple tasks, priorities and expectations.
This role is ideal for a seasoned security professional with a passion for operational excellence, technical depth, and the ability to influence security culture across a complex organization.
Salary:
$69,000.00 - $129,000.00
Pay Type:
Salaried
The above represents BMO Financial Group’s pay range and type.
Salaries will vary based on factors such as location, skills, experience, education, and qualifications for the role, and may include a commission structure. Salaries for part-time roles will be pro-rated based on number of hours regularly worked. For commission roles, the salary listed above represents BMO Financial Group’s expected target for the first year in this position.
BMO Financial Group’s total compensation package will vary based on the pay type of the position and may include performance-based incentives, discretionary bonuses, as well as other perks and rewards. BMO also offers health insurance, tuition reimbursement, accident and life insurance, and retirement savings plans. To view more details of our benefits, please visit: https://jobs.bmo.com/global/en/Total-Rewards
About Us
At BMO we are driven by a shared Purpose: Boldly Grow the Good in business and life. It calls on us to create lasting, positive change for our customers, our communities and our people. By working together, innovating and pushing boundaries, we transform lives and businesses, and power economic growth around the world.
As a member of the BMO team you are valued, respected and heard, and you have more ways to grow and make an impact. We strive to help you make an impact from day one – for yourself and our customers. We’ll support you with the tools and resources you need to reach new milestones, as you help our customers reach theirs. From in-depth training and coaching, to manager support and network-building opportunities, we’ll help you gain valuable experience, and broaden your skillset.
To find out more visit us at https://jobs.bmo.com/ca/en
BMO is committed to an inclusive, equitable and accessible workplace. By learning from each other’s differences, we gain strength through our people and our perspectives. Accommodations are available on request for candidates taking part in all aspects of the selection process. To request accommodation, please contact your recruiter.
Note to Recruiters: BMO does not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to BMO, directly or indirectly, will be considered BMO property. BMO will not pay a fee for any placement resulting from the receipt of an unsolicited resume. A recruiting agency must first have a valid, written and fully executed agency agreement contract for service to submit resumes.
About BMO
At BMO, banking is our personal commitment to helping people at every stage of their financial lives.
The truth is, people’s needs change: so we change too. But we never change who we are. Which means we’ll never waiver from providing our customers the best possible banking experience in the industry.
Our incredible team of over 46,000 people is just the tip of the iceberg. You should get to know us. We’re here to help.
Our social media terms of use: https://www.bmo.com/socialmediatermsofuse