Cyber Security Specialist (SecOps & Platform)
Top Benefits
About the role
RIMEX is recognized as the premier manufacturer and innovator of wheels and rims for the world’s most challenging industrial applications. By focusing on the requests and requirements of its customers, RIMEX builds custom solutions and specialized products that range from the most advanced wheels and rims on the market to the TyreSense TPMS and peripheral technology that sets new standards for tire monitoring and asset management. With sales and inspection/repair centers around the world, and a track record second to none, RIMEX continues to strive for shared success with its customers as it explores and embraces the future.
This role is a hands-on security engineering and operations position. The specialist owns the day-to-day operation, tuning, and continuous improvement of RIMEX’s security controls across identity, endpoints, cloud, email, network, and OT/product environments. The focus is not only on drafting policies but on implementing, operating, and evidencing controls aligned to NIST CSF/ISO 27001, in partnership with IT and regional sites.
Key Responsibilities:
- Endpoint & XDR engineering: policies, health, agent coverage, threat hunting, and identity protection.
- SIEM engineering & detections: Ensure complete, reliable log, build/maintain detections and dashboards; prep for AI SIEM cutover.
- Identity & access: Operate IAM, MFA, PIM/PAM workflows; maintain secure baseline for privileged identities and service principals.
- MDM & device compliance: Operate compliance policies, hardening baselines, app protection; integrate with Conditional Access and EDR.
- Vulnerability & patch management: Drive scan cadence, SLAs, and remediation with IT, validate via rescans and metrics.
- Email security & anti-phishing: Operate policies, submissions, simulations and user-reporting pipeline; improve TTP coverage.
- Network security: Partner with network team on policies, segmentation, geoblocking; enforce secure remote access and travel controls.
- Incident response: Maintain IR runbooks, on-call rotations, and tabletop exercises; lead triage/contain/eradicate/recover with clear communications.
- OT & product security: Inventory assets and data flows; extend monitoring/EDR where feasible; support secure integration with partners.
- Data protection & governance: Align data classification, DLP, encryption, and cross-border data controls with legal/regional requirements.
- Third-party risk: Support due diligence, log/alert integrations, and minimum control requirements for vendors and product integrations.
- Automation & scripting: Build PowerShell/KQL/Python automations for response, hygiene, and reporting.
- Metrics & reporting: Publish monthly security posture (coverage, vulns, detections, mean-time metrics, training completion).
Qualifications
- Experience: 3-5+ years in security engineering or operations with strong IT foundations (Windows, networking, identity management).
- Technical breadth: Hands-on experience with multiple enterprise security technologies such as endpoint protection, SIEM platforms, identity and access management, mobile device management, vulnerability management, and network security.
- Framework knowledge: Solid understanding of recognized security frameworks and standards (e.g., NIST Cybersecurity Framework, ISO 27001) and ability to produce audit-ready evidence.
- Automation skills: Proficiency in scripting and automation (PowerShell, query languages, Python) with an infrastructure-as-code mindset.
- Incident response: Demonstrated experience in triage, containment, and recovery, including coordination across IT and business teams.
- Certifications: Industry certifications are a plus (e.g., CISSP, CompTIA Security+, cloud security or incident response certifications) Relevant certifications a plus (e.g., CISSP/CC, S1, MS-500/SC series, GCIA/GCED/GCIH).
- Hybrid Position (WFH/in-office)
Benefits
- Great company culture
- Family owned with Family values
- RRSP Program
- Performance Incentive Program
- Competitive wages
- Company paid events
- Gift cards
- Extended health coverage
- Dental & Vision care
- Travel Medical insurance
- Employee assistance program
- Life Insurance / Accidental Death
We would like to take this opportunity to thank all applicants in advance; however, only those short-listed will be contacted.
About Rimex Supply
RIMEX is recognized as the premier manufacturer and innovator of wheels and rims for the world’s most challenging industrial applications. By focusing on the requests and requirements of its customers, RIMEX builds custom solutions and specialized products that range from the most advanced wheels and rims on the market to the TyreSense TPMS and peripheral technology that sets new standards for tire monitoring and asset management. With sales and inspection/repair centers around the world, and a track record second to none, RIMEX continues to strive for shared success with its customers as it explores and embraces the future.
Cyber Security Specialist (SecOps & Platform)
Top Benefits
About the role
RIMEX is recognized as the premier manufacturer and innovator of wheels and rims for the world’s most challenging industrial applications. By focusing on the requests and requirements of its customers, RIMEX builds custom solutions and specialized products that range from the most advanced wheels and rims on the market to the TyreSense TPMS and peripheral technology that sets new standards for tire monitoring and asset management. With sales and inspection/repair centers around the world, and a track record second to none, RIMEX continues to strive for shared success with its customers as it explores and embraces the future.
This role is a hands-on security engineering and operations position. The specialist owns the day-to-day operation, tuning, and continuous improvement of RIMEX’s security controls across identity, endpoints, cloud, email, network, and OT/product environments. The focus is not only on drafting policies but on implementing, operating, and evidencing controls aligned to NIST CSF/ISO 27001, in partnership with IT and regional sites.
Key Responsibilities:
- Endpoint & XDR engineering: policies, health, agent coverage, threat hunting, and identity protection.
- SIEM engineering & detections: Ensure complete, reliable log, build/maintain detections and dashboards; prep for AI SIEM cutover.
- Identity & access: Operate IAM, MFA, PIM/PAM workflows; maintain secure baseline for privileged identities and service principals.
- MDM & device compliance: Operate compliance policies, hardening baselines, app protection; integrate with Conditional Access and EDR.
- Vulnerability & patch management: Drive scan cadence, SLAs, and remediation with IT, validate via rescans and metrics.
- Email security & anti-phishing: Operate policies, submissions, simulations and user-reporting pipeline; improve TTP coverage.
- Network security: Partner with network team on policies, segmentation, geoblocking; enforce secure remote access and travel controls.
- Incident response: Maintain IR runbooks, on-call rotations, and tabletop exercises; lead triage/contain/eradicate/recover with clear communications.
- OT & product security: Inventory assets and data flows; extend monitoring/EDR where feasible; support secure integration with partners.
- Data protection & governance: Align data classification, DLP, encryption, and cross-border data controls with legal/regional requirements.
- Third-party risk: Support due diligence, log/alert integrations, and minimum control requirements for vendors and product integrations.
- Automation & scripting: Build PowerShell/KQL/Python automations for response, hygiene, and reporting.
- Metrics & reporting: Publish monthly security posture (coverage, vulns, detections, mean-time metrics, training completion).
Qualifications
- Experience: 3-5+ years in security engineering or operations with strong IT foundations (Windows, networking, identity management).
- Technical breadth: Hands-on experience with multiple enterprise security technologies such as endpoint protection, SIEM platforms, identity and access management, mobile device management, vulnerability management, and network security.
- Framework knowledge: Solid understanding of recognized security frameworks and standards (e.g., NIST Cybersecurity Framework, ISO 27001) and ability to produce audit-ready evidence.
- Automation skills: Proficiency in scripting and automation (PowerShell, query languages, Python) with an infrastructure-as-code mindset.
- Incident response: Demonstrated experience in triage, containment, and recovery, including coordination across IT and business teams.
- Certifications: Industry certifications are a plus (e.g., CISSP, CompTIA Security+, cloud security or incident response certifications) Relevant certifications a plus (e.g., CISSP/CC, S1, MS-500/SC series, GCIA/GCED/GCIH).
- Hybrid Position (WFH/in-office)
Benefits
- Great company culture
- Family owned with Family values
- RRSP Program
- Performance Incentive Program
- Competitive wages
- Company paid events
- Gift cards
- Extended health coverage
- Dental & Vision care
- Travel Medical insurance
- Employee assistance program
- Life Insurance / Accidental Death
We would like to take this opportunity to thank all applicants in advance; however, only those short-listed will be contacted.
About Rimex Supply
RIMEX is recognized as the premier manufacturer and innovator of wheels and rims for the world’s most challenging industrial applications. By focusing on the requests and requirements of its customers, RIMEX builds custom solutions and specialized products that range from the most advanced wheels and rims on the market to the TyreSense TPMS and peripheral technology that sets new standards for tire monitoring and asset management. With sales and inspection/repair centers around the world, and a track record second to none, RIMEX continues to strive for shared success with its customers as it explores and embraces the future.