Sr Risk Specialist, Cyber Security
Top Benefits
About the role
Company: Sovereign General
Department: SG - Risk Engineering
Employment Type: Regular Full-Time
Work Model: Hybrid
Language: English is required, French is an asset
Additional Information: This/these role(s) is/are currently vacant
The Opportunity:
As a wholly owned subsidiary of the Cooperators General Insurance company, Sovereign Insurance believes your experience matters. This is our promise to not only our clients but to our employees as well, because we know the strength of our company starts with our people. The smart, curious and collaborative people who bring their whole heart and passion to work each day. But you can't pour from an empty cup; we take care of the well-being of our people so that they are inspired to protect Canadian businesses and the lives, families and communities we impact. Join us and begin shaping your experience at Sovereign.
Reporting to the AVP, Risk Engineering, the Senior Risk Specialist, Cyber Security provides expertise and strategic consulting to both our internal underwriting teams and external business clients, helping them assess, maintain, and enhance their cybersecurity posture. This role will play an integral part in supporting sustainable growth in our cyber business, and in strengthening our understanding of accounts and overall portfolio risk. Offering deep expertise in cybersecurity standards and frameworks, the threat landscape, and risk management practices, you will translate technical insights into actionable business strategies for a diverse range of businesses and industries across Canada.
How you will create impact:
- Represent Sovereign Insurance on business committees and share knowledge with colleagues to drive innovation and continuous improvement across the Risk Engineering team.
- Interpret and translate complex cybersecurity controls and posture into clear, underwriting-relevant insights.
- Design, refine, and maintain cyber risk assessment tools and methodologies to strengthen underwriting decisions.
- Meet with clients to understand their business, assess technical requirements, and provide tailored guidance on security architecture, systems, and capabilities.
- Evaluate developments in digital business and the threat environment to ensure client security strategies, standards, and procedures remain effective.
- Validate IT infrastructures, architectures, and security configurations (e.g., firewalls, IPS, WAF, endpoint protection) against best practices, recommending enhancements where required.
- Identify vulnerabilities and recommend practical mitigation strategies aligned with industry standards and frameworks (e.g., NIST, ISO 27001, CIS Controls).
- Build and maintain strong relationships with technology vendors and internal IT Solutions teams to support the integration of Risk Engineering technology enablers.
How you will succeed:
- You thrive on delivering our exceptional client experience through positive and engaging relationships, embracing accountability to achieve effective results.
- You ensure your day-to-day actions are in harmony with the company’s purpose, vision, and values even when challenged.
- You will support and guide others through changing conditions and encourage the exploration of new opportunities or innovations.
- You value cooperative and collaborative dialogue because diverse perspectives offer more creative and productive solutions.
To join our team:
- You have 6–9+ years of professional experience beyond post-secondary education, preferably in cyber risk consulting or cybersecurity operations across diverse industries.
- You have experience working within or in close collaboration with insurance underwriting teams (an asset).
- You have knowledge of cybersecurity domains and related frameworks used to assess client risk, including security and risk management, asset security, security architecture and engineering, network security, identity and access management, security operations, software development security, and testing/assessment practices.
- You have a strong understanding of cybersecurity standards, frameworks, threat intelligence, and risk quantification methodologies.
- You have the ability to translate complex technical concepts into clear, actionable insights for both technical and non-technical.
What you need to know:
- You will be subject to a background check as a condition of employment, in the event you are the successful candidate.
- A high degree of confidentiality and discretion is required.
- Occasional travel may be required
What’s in it for you?
- The opportunity to take on challenging work and contribute your expertise, creativity, and passion in meaningful ways.
- A comprehensive total rewards package, including competitive salary, bonus, paid time off, pension and benefits.
- A holistic approach to your well-being, with physical and mental health programs and flexible work options.
- The opportunity to work on an inclusive team who inspire each other to explore and achieve what’s possible.
- An organizational commitment to sustainability and charitable giving; positively impacting the social, environmental and economic well-being of Canadian businesses, families and communities.
About Sovereign Insurance
The Sovereign General Insurance Company (Sovereign Insurance) empowers Canadian businesses to succeed by developing and distributing risk solutions they trust and value. Sovereign is passionate about protecting Canadian businesses and the communities they serve and is driven by the belief that whether you’re a partner, client or employee, your experience matters. Sovereign operates in six offices across Canada and is proud to carry an AM Best A- (Excellent) rating.
To learn more, visit sovereigninsurance.ca.
Sr Risk Specialist, Cyber Security
Top Benefits
About the role
Company: Sovereign General
Department: SG - Risk Engineering
Employment Type: Regular Full-Time
Work Model: Hybrid
Language: English is required, French is an asset
Additional Information: This/these role(s) is/are currently vacant
The Opportunity:
As a wholly owned subsidiary of the Cooperators General Insurance company, Sovereign Insurance believes your experience matters. This is our promise to not only our clients but to our employees as well, because we know the strength of our company starts with our people. The smart, curious and collaborative people who bring their whole heart and passion to work each day. But you can't pour from an empty cup; we take care of the well-being of our people so that they are inspired to protect Canadian businesses and the lives, families and communities we impact. Join us and begin shaping your experience at Sovereign.
Reporting to the AVP, Risk Engineering, the Senior Risk Specialist, Cyber Security provides expertise and strategic consulting to both our internal underwriting teams and external business clients, helping them assess, maintain, and enhance their cybersecurity posture. This role will play an integral part in supporting sustainable growth in our cyber business, and in strengthening our understanding of accounts and overall portfolio risk. Offering deep expertise in cybersecurity standards and frameworks, the threat landscape, and risk management practices, you will translate technical insights into actionable business strategies for a diverse range of businesses and industries across Canada.
How you will create impact:
- Represent Sovereign Insurance on business committees and share knowledge with colleagues to drive innovation and continuous improvement across the Risk Engineering team.
- Interpret and translate complex cybersecurity controls and posture into clear, underwriting-relevant insights.
- Design, refine, and maintain cyber risk assessment tools and methodologies to strengthen underwriting decisions.
- Meet with clients to understand their business, assess technical requirements, and provide tailored guidance on security architecture, systems, and capabilities.
- Evaluate developments in digital business and the threat environment to ensure client security strategies, standards, and procedures remain effective.
- Validate IT infrastructures, architectures, and security configurations (e.g., firewalls, IPS, WAF, endpoint protection) against best practices, recommending enhancements where required.
- Identify vulnerabilities and recommend practical mitigation strategies aligned with industry standards and frameworks (e.g., NIST, ISO 27001, CIS Controls).
- Build and maintain strong relationships with technology vendors and internal IT Solutions teams to support the integration of Risk Engineering technology enablers.
How you will succeed:
- You thrive on delivering our exceptional client experience through positive and engaging relationships, embracing accountability to achieve effective results.
- You ensure your day-to-day actions are in harmony with the company’s purpose, vision, and values even when challenged.
- You will support and guide others through changing conditions and encourage the exploration of new opportunities or innovations.
- You value cooperative and collaborative dialogue because diverse perspectives offer more creative and productive solutions.
To join our team:
- You have 6–9+ years of professional experience beyond post-secondary education, preferably in cyber risk consulting or cybersecurity operations across diverse industries.
- You have experience working within or in close collaboration with insurance underwriting teams (an asset).
- You have knowledge of cybersecurity domains and related frameworks used to assess client risk, including security and risk management, asset security, security architecture and engineering, network security, identity and access management, security operations, software development security, and testing/assessment practices.
- You have a strong understanding of cybersecurity standards, frameworks, threat intelligence, and risk quantification methodologies.
- You have the ability to translate complex technical concepts into clear, actionable insights for both technical and non-technical.
What you need to know:
- You will be subject to a background check as a condition of employment, in the event you are the successful candidate.
- A high degree of confidentiality and discretion is required.
- Occasional travel may be required
What’s in it for you?
- The opportunity to take on challenging work and contribute your expertise, creativity, and passion in meaningful ways.
- A comprehensive total rewards package, including competitive salary, bonus, paid time off, pension and benefits.
- A holistic approach to your well-being, with physical and mental health programs and flexible work options.
- The opportunity to work on an inclusive team who inspire each other to explore and achieve what’s possible.
- An organizational commitment to sustainability and charitable giving; positively impacting the social, environmental and economic well-being of Canadian businesses, families and communities.
About Sovereign Insurance
The Sovereign General Insurance Company (Sovereign Insurance) empowers Canadian businesses to succeed by developing and distributing risk solutions they trust and value. Sovereign is passionate about protecting Canadian businesses and the communities they serve and is driven by the belief that whether you’re a partner, client or employee, your experience matters. Sovereign operates in six offices across Canada and is proud to carry an AM Best A- (Excellent) rating.
To learn more, visit sovereigninsurance.ca.