Job Description

Location - Remote (Canada)

Reports to -

Manager, Internal Systems and Cyber Security

Job type - Full-time; Average working hours is 40 hours/week

Quorum is currently looking for an Information Security Analyst to join our growing team.

We're on a mission to transform car dealership operations across North America through innovative software (SaaS) and services that enrich the customer journey and drive profitability for dealers. We're the team powering products like QuorumDMS, DealerMine CRM, Autovance, Accessible Accessories, VINN, as well as many more solutions that roll up into Quorum's integrated suite of products.


Life at Quorum is about dreaming big as we reimagine the dealer solutions landscape, while staying humble, curious, and ready to collaborate at all levels. Our incredible tech team is driven to bring their ideas into the world, and work with modern tools and loads of flexibility, while building great products alongside some awesome humans.

Ready to hit the open road of automotive tech? Read on...

We are seeking a technically skilled and compliance-focused

Information Security Analyst

to join our Internal Systems team. This role is instrumental in driving and maintaining

SOC 2 Type II compliance

, with a strong emphasis on securing our

AWS cloud infrastructure

. The ideal candidate will have hands-on experience with SOC 2 audits, deep knowledge of

AWS security services

, and a working familiarity with

CIS Controls

as a preferred framework for hardening and monitoring cloud and hybrid environments.

Here is what we will expect from you at work:

Assist

SOC 2 Type II

compliance initiatives, including control implementation, evidence collection, and audit coordination. Design, implement, and monitor security controls across a hybrid infrastructure with a primary focus on AWS: +

AWS

(IAM, EC2, S3, CloudTrail, Security Hub, Config, GuardDuty)
+

Microsoft 365

(Exchange Online, SharePoint, Teams, Azure AD)
+

On-premise

(Windows/Linux servers, Active Directory)
Align security practices with

CIS Controls

to ensure a robust and standardized security posture. Conduct internal risk assessments and gap analyses aligned with SOC 2 and CIS benchmarks. Develop and maintain security policies, procedures, and technical documentation tailored to AWS and hybrid environments. Collaborate with IT, DevOps, and cloud engineering teams to ensure secure configuration and continuous monitoring of AWS resources. Support incident response and vulnerability management across all platforms. Assist in third-party risk assessments and vendor security reviews. Stay current on AWS security innovations, SOC 2 updates, emerging threats, regulatory changes, and industry best practices. Other duties as assigned.

Here is the kind of candidate we are looking for:

Bachelor's degree in Information Security, Computer Science, or a related field. 3+ years of experience in information security, compliance, or IT audit roles. Proven experience with

SOC 2 Type II

audits and control frameworks. Strong technical knowledge of

AWS security services

and hybrid infrastructure. Familiarity with

CIS Controls

and their application in cloud and on-premise environments. Experience with security tools such as SIEM, endpoint protection, and vulnerability scanners. Excellent communication, documentation, and project management skills.

It would be great if you had the following (but we don't expect you to have it all!):

Certifications such as AWS Security Specialty, CISSP, CISA, or SOC 2 Implementation Specialist. Experience with GRC platforms (e.g., Vanta, Drata, Tugboat Logic). Knowledge of scripting or automation (e.g., PowerShell, Python) for security tasks. Experience with Wazuh for security monitoring and log analysis is considered an asset.

Additional Requirements

Criminal background check required.

How we work:

We believe that to do our best work and solve some interesting challenges, there needs to be freedom to explore and work in a manner that inspires one's most meaningful contribution. At Quorum, we remove traditional hierarchical barriers and collaborate broadly. We also work where it makes the most sense, whether that is remote, hybrid, or on-site. We care more about what you do than where you do it.

People first is how we roll

--

How we team up matters. At Quorum, we crave connection and inclusion. This helps us create a high-trust environment, do more impactful work, and enjoy the journey! After all, we're in the business of people, leading with integrity and transparency as we serve our clients and help them serve theirs.

Forward focus --

We were built on the notion of a better way forward. This mindset of innovation and optimization has us enrich the automotive industry by tapping into our full skill sets and using the latest tech to turbocharge progress.

In the driver's seat

--

At Quorum, you are not a cog in the wheel but a driver of progress for our business, our team, and your career

.

We want your voice to be heard and your ideas to be shared, and we will empower you with an abundance of ownership over your work.

Revved up for growth --

New experiences, learning, and growth energize us, help us evolve and be the best version of ourselves--as individuals, as an organization, and as a team.

Quorum's Family of Brands

Quorum DMS

, a Dealership Management System that automates, integrates, and streamlines key processes across departments in a dealership, and emphasizes revenue generation and customer satisfaction.

DealerMine CRM

, a sales and service Customer Relationship Management system and set of Business Development Center services that drives revenue into the critical sales and service departments in a dealership.

Autovance

, Autovance is a modern retailing platform that helps dealerships attract more business through digital retailing, improve in-store profits and closing rates through our desking tool and maximize efficiency and CSI through our F&I menu solution.

Accessible Accessories

, support leading dealerships profit from dramatically increased accessory sales. Accessible Accessories is focused solely on giving dealerships the tools they need to price, promote, and quote accessories online and on the sales floor.

VINN,

a premier automotive marketplace that streamlines the vehicle research and purchase process for vehicle shoppers while helping retailers sell more efficiently. VINN provides a 5-star Google rated concierge service that assists consumers through the complex vehicle sales process.



To find out

what's in it for you

, please visit

www.QuorumInfoTech.com/Careers

Get to know #LifeAtQuorum and apply today -

careers with endless roads to explore together!

Quorum Information Technologies Inc. is traded on the Toronto Venture Exchange (TSX-V) under the symbol QIS. For additional information please visit our Quorum website.

Quorum is an Equal Employment Opportunity employer - All qualified applicants/employees will receive consideration for employment without regard to that individual's age, race, color, religion or creed, national origin or ancestry, sex, sexual orientation, gender, gender identity, physical or mental disability, genetic information, ethnicity, citizenship, or any other characteristic protected by law.

Only those candidates that meet our requirements for this position will be contacted



INDHP