Job Description

E INC is the parent company of EBlock and EDealer, unifying our approach to products, services, and strategies under one Vision and one Mission: to create the best digital auction and retailing platform in the world by connecting the automotive wholesale and retail experiences. Our brands and their technologies make it easy for a vehicle to move between buyers and sellers throughout its entire ownership lifecycle. Learn more at https://e.inc/about



We are seeking an experienced, detail-oriented

Cybersecurity Engineer

to strengthen our organization's information security posture across endpoints, networks, cloud services, and applications.



In this role, you will:

Own

threat and vulnerability management

, driving remediation of misconfigurations and weaknesses across our environment. Manage and tune our

security monitoring and incident response

capabilities using SIEM and observability tools (for example,

Datadog

and log pipelines). Administer our

endpoint, web, and Zero Trust security stack

, including

SentinelOne

for EDR/CNAPP,

Zscaler

for secure access and DLP, and

Cloudflare

for WAF, DNS, and Zero Trust web security. Support

compliance and governance

efforts (with a focus on

SOC 2

, and exposure to frameworks like ISO 27001 and NIST). Work closely with development and cloud teams to

secure workloads in AWS

and

fix vulnerable packages and dependencies in existing applications

, not just new builds.


You'll collaborate closely with IT, infrastructure, and application teams to design, implement, and continuously improve security controls that are practical, measurable, and audit-ready.



We offer a competitive salary ($120,000.00 - $140,000.00); a competitive bonus plan; paid time off; participation in our benefits, RRSP, and life insurance programs; continuous learning; an amazing culture; and so much more!

What You Will Do:

Threat & Vulnerability Management

+ Identify, assess, and prioritize vulnerabilities and misconfigurations across endpoints, networks, cloud environments, and applications. + Work with infrastructure and application owners to define and maintain

secure configuration baselines

and ensure timely remediation.
+ Use vulnerability management and configuration assessment tools (including data from platforms like

SentinelOne

, cloud-native security services, and code-repository/package alerts) to track progress and risk reduction over time.
+ Partner with development teams to

review and remediate vulnerable third-party packages and libraries

in existing applications (e.g., upgrading dependencies, adjusting configurations, and validating fixes).

Security Monitoring & Incident Response

+ Configure, manage, and tune

SIEM / security monitoring solutions

(for example,

Datadog

, cloud logs, and other telemetry sources) to ensure high-quality, actionable alerts. + Act as an escalation point for

high-severity security incidents

, including triage, containment, investigation, and recovery.
+ Maintain and improve

Incident Response (IR) runbooks

and procedures, including playbooks for phishing, malware, account compromise, and data exfiltration.
+ Participate in and help design

Disaster Recovery (DR)

and

Business Continuity Planning (BCP)

tabletop exercises, ensuring security scenarios are built into testing.

Endpoint, Network & Cloud Security

+ Administer and optimize

SentinelOne

for endpoint detection and response, ensuring policies, detections, and exclusions are well-tuned. + Configure and manage

Zscaler

(Internet, Private Access, and DLP modules) to enforce secure internet and application access and prevent data loss.
+ Oversee

Cloudflare

security configurations for web applications and network services (including

Zero Trust, WAF, DNS, and related controls

).
+ Work with cloud and infrastructure teams to

secure AWS workloads

(e.g., IAM, security groups, network segmentation, logging, and encryption) and to integrate security controls into existing services running on AWS.
+ Collaborate with network and infrastructure teams to ensure

Zero Trust and defense-in-depth

principles are consistently applied across offices, remote users, and auction environments.

Application & Change Security

+ Collaborate with developers and product teams to understand application architectures and

remediate security findings in existing services

, including: + - Updating or replacing vulnerable packages and libraries,
- Adjusting application and container configurations, and
- Validating fixes with follow-up testing and monitoring.
+ Provide security input into

change management processes

, ensuring significant changes consider security impact and include an appropriate rollback and validation plan.
+ Contribute to secure coding and dependency management guidance that is practical for teams maintaining existing systems.

Compliance, Governance & Audit Support

+ Support

SOC 2

and related compliance programs by maintaining and providing

technical evidence of security controls

(e.g., logs, reports, screenshots, and configuration exports). + Work with internal stakeholders and external auditors to ensure security measures align with

SOC 2, ISO 27001, and NIST-aligned

controls where applicable.
+ Enhance, document, and automate security controls to ensure

continuous audit readiness

, leveraging systems such as

FreshService

(for tickets, changes, and asset records) and

Trelica

(for SaaS visibility and contract mapping).

Email & Data Security

+ Manage and improve

email security

configurations (phishing protection,

DKIM/SPF/DMARC

, impersonation protection, safe links/attachments). + Implement and tune

data loss prevention (DLP)

and encryption controls across endpoints, email, and web traffic (for example, via

Zscaler

,

Cloudflare

, and endpoint agents).
+ Partner with

Hexnode MDM

and IT operations to enforce device posture and encryption requirements for managed endpoints.

Collaboration & Travel

+ Work closely with Infrastructure, IT, Application, and Compliance teams to ensure security is embedded into technical and business processes. + Provide security guidance during new technology evaluations, deployments, and changes, especially those impacting AWS-hosted services and existing applications.
+ Travel up to

25%

(including occasional visits to offices or auction sites) to support assessments, deployments, training, and incident/BCP exercises.

What You Will Need:

Required:

+ 3-5 years of experience in

cybersecurity

or a similar technical security role. + Hands-on experience managing and securing

workloads in AWS

(e.g., IAM, security groups, Cloud Trail, VPC/networking, Security Hub, Inspector, logging/monitoring, and encryption).
+ Strong understanding of

SIEM

, endpoint protection, and network security principles.
+ Hands-on experience with

Zscaler, SentinelOne, and Cloudflare

(or comparable technologies) for secure access, endpoint protection, and web application security.
+ Practical experience

remediating vulnerabilities in existing applications

, including updating or replacing vulnerable endpoint/application packages and libraries and validating fixes with monitoring and logs.
+ Knowledge of

incident response frameworks

and

playbook/runbook development

.
+ Experience providing, organizing, or managing

SOC 2 technical evidence

and working with auditors or external assessors.
+ Excellent troubleshooting, analytical, and problem-solving skills.
+ Ability to work independently in fast-paced environments with minimal supervision.
+ Valid driver's license and ability to travel as required.
+ Languages: English (required), French (an asset)

Preferred:

+ Experience with additional

cloud platforms

(e.g.,

AWS, GCP

) and multi-cloud security patterns. + Background supporting

compliance programs

such as

SOC 2

,

ISO 27001

, and

NIST

-based frameworks.
+ Experience working with

ITSM and asset management tools

(e.g.,

FreshService

),

MDM platforms

(e.g.,

Hexnode

), and

SaaS / cost management tools

(e.g.,

Trelica

).

What We Offer:

Competitive pay Medical, Dental & Vision 401k/RSP programs Company paid Group Life/AD&D insurance Paid time off Flexible working environment Continuous Learning And an amazing culture to top it all off!


At E INC, in the spirit of pay transparency, we are excited to share our base pay as it is one part of our total compensation package and is determined within a range. The base pay range for this full-time position is $120,000.00 - $140,000.00, and this role may be eligible for discretionary bonuses or commission payments. Your base pay will depend on your skills, qualifications, experience, and location. In addition, our ranges are determined by role, level, and location.



E INC is committed to providing employment accommodation in accordance with the Ontario Human Rights Code and the Accessibility for Ontarians with Disabilities Act. If contacted for an employment opportunity, please advise Human Resources if you require accommodation.



E INC is an equal opportunity employer and affirmatively seeks diversity in its workforce. E INC recruits qualified applicants and advances in employment its employees without regard to race, color, religion, gender, sex (including pregnancy), sexual orientation, gender identity, gender expression, age, disability, genetic information, ethnic or national origin, marital status, veteran status, or any other categories protected by law.



E INC takes cybersecurity seriously. E INC will reach out to candidates via our Application Tracking System Rippling, LinkedIn, and Indeed, through company accounts. E INC does not require bank information, date of birth, social identification information, or upfront fees as part of our application process.



As part of our recruitment and hiring process, E INC may use automated tools including artificial intelligence (AI) to support the screening and evaluation of applicants. AI tools support human decision-making and do not replace individualized review by our hiring team. E INC is committed to using these technologies responsibly and in compliance with applicable laws and regulations, and we regularly assess our processes to promote fairness, objectivity, and data protection.



Vacancy status: current vacancy



#EINC