Senior Security Principal

About the Role

Our primary objective for this position is to find enthusiastic candidates that are interested in joining our growing SecOps practice to help Iceberg meet the increasing cyber risk demand for our risk-based solutions.  The successful candidate is ideally a strong hands-on leader, experienced with cyber risk and security solutions, regulatory and industry frameworks, and the growing demands of the SecOps marketplace.  Furthermore, the candidate should be capable of being a leader in the delivery of consulting, implementation and integration services of risk-based SecOps solutions to external customers, primarily on the ServiceNow platform.

The right candidates will like taking on new challenges, solving problems, learning continuously, and working in a collaborative team environment.


Your primary duties will include:

  • Facilitate executive level workshops, translating business requirements into prioritized outcomes
  • Facilitate executive level workshops, translating business requirements into prioritized outcomes
  • Facilitate sessions on requirements definition, product architecture and workflow, develop mapping between current modes of operations and future modes of operation
  • Develop strategic plans for measurable implementation approach
  • Develop supporting tactical plans for strategic scope
  • Develop and present SOWs with supporting task breakdowns with the Program Managers and Account Managers
  • Support PMs by assisting in the planning and management of implementation projects
  • Working with PMs, provide mentoring and coaching to delivery resources to reach milestone completion and overcome project issues
  • Working with Solution Architects, provide technical oversight and direction to technical staff to ensure that development and delivery standards are being consistently applied
  • Working with Solution Architects, design integration architecture and detailed specifications for information exchange between systems
  • Develop and maintain delivery standards for SecOps solutions and the enabling technology from vendor partners
  • Develop and nurture relationships with technology vendors and services partners
  • Maintain an updated holistic view of changing architecture for solution environments, updated with each release of capability
  • Mentor customer and partner technical resources during implementation projects. As needed, conduct informal, ad hoc training sessions.

Qualifications and Experience:

  • BSc in CS, IT or similar technical discipline or equivalent experience
  • Recognized industry certification such as Certified Ethical Hacker or Certified Information Systems Security Professional
  • Experience minimum of five (5) years’ experience working in Cyber Security environment such as Vulnerability Management or Security Incident Management experience as a client facing consultant, advising customers in a Security field as a billable resource OR designing/leading the internal SecOps program at a large enterprise, such as a financial institution.
  • Experience working with industry security regulations, standards and frameworks such as NIST, ISO, CoBIT, ISF, PCI, SANS, FedRAMP
  • Experience facilitating executive level workshops
  • Experience conducting formal training sessions
  • Experience designing business processes around software tools. Must be able to guide customers through the implementation both from process and technology perspective.
  • Experience managing the efforts of others
  • Consulting orientation, able to handle stressful customer situations diplomatically
  • Excellent written and oral communication skills. Must be able to communicate effectively with both business-oriented and technically oriented customers and partners. Also, must be able to effectively communicate customer requirements and issues to other team members.
  • Ability to thrive in a fast-paced, multi-tasking, startup environment while simultaneously serving large enterprise customers and complex organizations
  • Knowledge of Waterfall, Agile, Kanban, Scrum processes and methodologies
  • Knowledge of ServiceNow GRC and/or SecOps an asset
  • Exposure to IT Governance, Risk and Compliance (IT-GRC) applications and frameworks helpful but not essential


Please email resume to


Iceberg Networks is an equal opportunity employer. In addition, Iceberg is committed to providing accommodations for people with disabilities in accordance with provincial legislation. Please let us know if you require a reasonable accommodation due to a disability during any aspect of the recruitment process and we will work with you to address your needs.

Start your GRC journey.
We’ll be your trusted partner.

Start your journey