Job Description

Job Description

Who we are. At Mercer International Inc., our vision of transforming biomass into bioproducts for a more sustainable world is being realised every day. We are a diversified global producer of forest products, bioproducts, and green electricity with operations in Canada, Germany, Australia, and the United States. We have a consolidated annual production capacity of approximately 2.2 million tonnes of kraft pulp and 550 million board feet of softwood lumber.

What we believe. We believe that a culture of diversity and inclusion is critical in making the best decisions for our people and achieving sustainable business success. Together, we encourage, support, and celebrate the diverse voices of our employees. We strive to provide an inclusive culture by fostering an environment of mutual respect, fairness, and by providing opportunities to contribute and grow.

Position Description

Reporting to the Director, Cyber Security, the Cyber Security Engineer will be responsible for supporting Mercer's enterprise-wide cyber security program, operations and projects. You will lead the implementation of the cyber roadmap, evaluate and deploy new cyber tools, and maintain the entire cyber stack at Mercer. This position will support security operations, cyber incident response and investigations, and act as a security champion for IT and other teams. The Cyber Security Engineer will utilize hands-on technical and cyber skills with communication and coordination skills to protect Mercer from cyber threats, while meeting the business needs of the organization. This position is a hybrid role based at our corporate headquarters in Vancouver, BC.

Responsibilities

• Take technical ownership of Mercer's cybersecurity stack.
• Research, select, deploy and integrate new cybersecurity tools and technologies as a part of a cyber roadmap and other initiatives to enhance cyber defenses.
• Configure and optimize existing cybersecurity tools to ensure maximum efficiency and protection.
• Perform regular updates, patches, and upgrades to maintain cyber tool effectiveness and compliance.
• Collaborate with vendors and internal teams to troubleshoot and resolve tool-related issues.
• Assist security operations analysts in monitoring and analyzing security events. Maintain a minimum feasible level of security operations services in the absence of all security analysts.
• Provide technical expertise for incident detection, investigation, and response.
• Act as a key resource during security incidents, assisting in containment, eradication, and recovery activities, work with external IR partners.
• Assist in the development and maintenance of security operations documentation, including runbooks and procedures.
• Perform threat analysis and recommend mitigation strategies.
• Assess cyber security exposures of Mercer’s information technology systems. Conduct cyber investigations and prepare detailed reports.
• Ensure the security of Mercer’s data and systems on-premises and in the cloud. implement and support a cloud-aware security architecture and implement appropriate security tools.
• Support the vulnerability management process; remain current with new cyber vulnerabilities, perform vulnerability assessments, analyse findings, provide detailed reporting, establish priorities, and implement and coordinate remediation activities.
• Assist in the development of cyber-related reports and KPIs. Collect and analyse data generated by systems and produce required reports and KPIs for designated audiences.
• Support the delivery of security awareness programs.
• Support the development, documentation, testing, implementation, and enforcement of cybersecurity policies, standards, processes, methodologies, and controls.
• Remain current with cyber security and threat’s landscape, analyse industry trends, and identify potential impact to Mercer’s technology systems and operations.
• Other duties as assigned.

Qualifications and Experience

• Minimum of 5 years of proven cyber security experience in security engineering, security architecture, security operations, or a related role.
• Bachelor’s degree in Computer Science or other equivalent Information Technology and Cyber Security related studies. An equivalent combination of training and/or experience may be considered.
• Strong knowledge of cyber security principles, best practices, and technologies.
• Extensive hands-on experience deploying and configuring cybersecurity tools (e.g., EDR, NDR, ASM, DLP, firewalls, vulnerability scanners, SIEM, etc.).
• Experience in incident response and threat hunting.
• Relevant certifications such as CISSP, CEH, GSEC, CompTIA Security+, or equivalent are highly desirable.
• Strong knowledge of modern cloud-based collaboration and productivity tools. Knowledge of Google Workspace is an asset.
• Demonstrated knowledge of Cyber Security and IT technologies, such as anti-malware and endpoint protection, firewall, email security, IPS, SEIM, AD, Windows security, network security, disaster recovery, incident response, etc..
• Knowledge of cyber security industry standards, such as NIST, ISO, CIS, etc.
• Familiarity with MITRE ATT&CK and Cyber Kill Chain frameworks.
• Knowledge of public cloud platforms, relevant security tools and cloud security architecture.
• Demonstrated ability to influence outcome without direct authority. Ability to explain cyber security risks and concepts to technical and non-technical audiences.
• Required to travel to Mercer’s locations in Canada and internationally.

Benefits

• The salary for this position is $120,000 - $150,000 CAD. Salary will be commensurate with education and experience.
• Our group benefits package, which has no waiting period, includes extended health and dental benefits, in addition to a Health Care Spending Account and a fitness allowance.
• RRSP - We provide a competitive RRSP contribution plan, with base contributions made by Mercer which can be supplemented with personal contributions matched by the company up to a certain %.

We thank all applicants for considering a career with us, however, only those selected for an interview will be contacted. For more information, please visit our website:

At Mercer, we are Sustainable. By Design.

Job Tags

Similar Jobs