Senior Infrastructure Security Operator

D2L is a cloud company that is modernizing education and building the Future of Work. The old models of teaching and learning are in the midst of the largest transformation in history, and D2L is at the heart of that fundamental shift. 

New models of teaching and learning enable a personalized, student-centric experience – and deliver improved retention, engagement, satisfaction, and results for learners of all ages – in schools, campuses, and companies.

D2L is disrupting the way the world learns, by providing the next generation learning environment and solutions to engage and inspire learners. And most importantly, by giving customers a platform that is easy, flexible, and smart. No other company provides a solution as robust and innovative as D2L.

D2L has had a singular mission for 25 years and is dedicated to that same mission in the years ahead: to transform the way the world learns – and by doing so, we will help improve human potential globally.

A member of our Talent Acquisition team reviews ALL of our applications - yes a real person reviews resumes! They are excited to read more about what amazing things you could add to D2L. 

This posting will close on October 13 at 9:00am ET, but we encourage interested candidates to apply as soon as possible. Applications received before the closing date will be prioritized. Please note that the posting may remain open beyond the listed date depending on hiring needs.

The Senior Infrastructure Security Operator is a critical member of D2L’s Infrastructure Security team. You will be the operational front line of our cybersecurity program. This role is responsible for on-call security monitoring, incident response, vendor assessments, continuous improvement of security tooling, and cross-functional collaboration to enforce security processes and policies. 

Operators are expected to work hands-on in our security platforms, respond rapidly to cybersecurity events, and help maintain a resilient, secure, and audit-ready infrastructure environment. 

Security Operations & Incident Response 

• Serve as the initial on-call contact for suspected cybersecurity events. 
• Investigate, contain, and remediate incidents including virus, malware, ransomware, and account compromise events. 
• Partner with Managed Security Service Providers (MSSP) and internal stakeholders (such as Arctic Wolf, Microsoft Defender for Endpoint, Amazon Web Services [AWS] GuardDuty, and AWS Security Hub) to triage and resolve alerts. 
• Continuously tune detection systems to reduce false positives while maintaining high-fidelity detections. 
• Contribute to the incident response lifecycle, including root cause analysis, lessons learned, and playbook improvements. 

Continuous Monitoring & Improvement 

• Perform Dynamic Application Security Testing (DAST) on defined cadences (daily, weekly, and monthly) with tracked remediation. 
• Enhance automation of monitoring and Key Performance Indicator (KPI) reporting, covering Mean Time to Detect (MTTD), Mean Time to Respond (MTTR), vulnerability remediation rates, and compliance audit scores. 
• Monitor and track information security risks and artifacts throughout their lifecycle. 
• Drive configuration compliance and secure-by-default practices across enterprise and product infrastructure. 

Vendor & Relationship Management 

• Manage day-to-day relationships with security vendors and service providers. 
• Lead and support vendor risk assessments, Request for Proposal (RFP) reviews, and customer security questionnaires. 
• Review third-party reports (such as System and Organization Controls [SOC] 2, International Organization for Standardization [ISO] 27001, penetration test reports) and ensure identified gaps are tracked and remediated. 

Governance, Policy, and Cross-Functional Collaboration 

• Work with Legal, Compliance, and Information Technology (IT) stakeholders to keep security processes, policies, and procedures current and enforceable. 
• Support internal and external audits and assessments by providing security evidence. 
• Act as a subject matter expert (SME) for security-related questions across the business. 

Competencies

• Strong critical thinking and analysis in high-pressure environments. 
• Ability to engage stakeholders and translate security controls into business context. 
• Strong communicator, able to break down complex concepts for different audiences. 
• Self-directed, with ability to achieve outcomes with minimal supervision. 
• Agile learner, able to synthesize information from diverse sources. 
• Effective team player in matrixed and cross-functional environments. 

Skills & Qualifications

Required

• 5+ years in security operations, Security Operations Center (SOC), or incident response roles. 
• Hands-on experience with security tools (Security Information and Event Management [SIEM], Security Orchestration, Automation, and Response [SOAR], Endpoint Detection and Response [EDR] or Antivirus [AV], vulnerability scanning, and DAST). 
• Strong knowledge of cloud environments such as Amazon Web Services (AWS) and Microsoft Azure, as well as enterprise IT infrastructure. 
• Experience with vulnerability management, penetration testing, and remediation tracking. 
• Familiarity with information security frameworks and standards such as ISO 27001, National Institute of Standards and Technology [NIST] Special Publication 800-53, and SOC 2. 
• Experience supporting vendor risk assessments and security due diligence. 

Preferred

• Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), Global Information Assurance Certification – Certified Incident Handler (GCIH), Global Information Assurance Certification – Certified Intrusion Analyst (GCIA), or equivalent. 
• Experience with Governance, Risk, and Compliance (GRC) tools and audit evidence generation. 
• Knowledge of risk management frameworks and compliance enforcement. 
• Scripting or automation skills to enhance SOC efficiency. 

The expected base salary range for a new hire in this role is listed below. The annualized base salary offered is determined by each candidate’s relevant knowledge, skills, education, training and experience. It is aligned to ensure both internal and external competitiveness using market data for the geographic location and industry. As part of the total compensation at D2L the role may be eligible for additional benefits including a Wellness Subsidy, Equity Grants, Variable Incentive, and more.

Base Salary Range$83,500—$110,500 CAD

Don’t meet every single requirement? We strongly encourage you to still apply! At D2L, we are committed to creating a diverse and inclusive environment. We encourage your application even if you don't believe you meet every single qualification outlined, because we love to help our people grow and develop!

Why We'Re Awesome:

At D2L, we are dedicated to providing you with the tools to do the best work of your life. While some of our perks and benefits may vary depending on location or employment type, we are proud to provide employees with the following through #LifeAtD2L:

• Impactful work transforming the way the world learns
• Flexible work arrangements
• Learning and Growth opportunities
• Tuition reimbursement of up to $4,000 CAD for continuing education through our Catch the Wave Program
• 2 Paid Days off for Catch the Wave related activities like exams or final assignments
• Employee wellbeing (Access to mental health services, EFAP program, financial planning and more)
• Retirement planning
• 2 Paid Volunteer Days
• Competitive Benefits Package
• Home Internet Reimbursements
• Employee Referral Program
• Wellness Reimbursement
• Employee Recognition
• Social Events
• Dog Friendly Offices at our HQ in Kitchener, Winnipeg, Vancouver and Melbourne.