CAAT Pension Plan

www.caatpension.ca

1 Job

583 Employees

About the Company

CAAT Pension Plan provides workplaces with lifetime retirement income plans for employees. We are an industry-leading innovator in helping more Canadian workplaces and their employees participate in a sustainable pension plan. Seen as one of the most successful plans in Canada, CAAT is highly respected for its successful investment program, pension management expertise and strong governance structure. The CAAT Plan is funded at 124% with a funding reserve of $5.3B and $20.1B in assets under management as of January 1, 2024. We have 94,500 members in our Plan and 370 participating employers, and we're growing! What's different about CAAT? We are a highly engaged team of passionate and dedicated professionals who believe in our mission to improve the financial security of our members in their retirement. We are committed to our core belief in the power and efficiency of a jointly governed, multi-employer defined benefit pension plan. We offer the pension benefits Canadians want and are more sustainable and efficient than single-employer pension plans. We are award winning! We have been recognized as a top employer and recipient of: Greater Toronto's Top Employers 2020, 2021, 2022, 2023, 2024 and 2025; Canada's Most Admired Corporate Cultures 2020, 2021, 2022, and 2023; Kudos' Best Culture Leader 2021, 2022, 2023, and 2024; and Canadian HR Reporter's Best Places to Work 2021 and 2024 and 5-Star Rewards & Recognition 2022 and 2023. Our success is built on shared governance by members and employers, and its collective focus on benefit security, stable contributions, and fair treatment of all members. With our DBplus pension plan design, we make it easy for employees and their employers to be part of a plan that provides secure lifetime pensions. As CAATsters, we have fun together and give back to our community!

Listed Jobs

Company Name: CAAT Pension Plan
Job Title: Senior Information Security Analyst
Job Description: Job Title: Senior Information Security Analyst Role Summary: Owns the design, implementation, and monitoring of security controls across the organization. Leads risk assessment, vulnerability management, and security architecture initiatives to safeguard data and critical assets. Expectations: Five+ years of hands‑on cybersecurity experience, strong command of security frameworks (ISO 27001, NIST, CIS), and relevant professional certifications. Proven ability to steer multi‑project technical initiatives independently and collaborate across business units. Key Responsibilities: - Develop and maintain the cybersecurity roadmap, ensuring alignment with operational standards. - Lead security risk assessments, vulnerability scans, penetration tests, and security audits for applications and infrastructure, including cloud environments. - Define and enforce secure configuration baselines for firewalls, IDS/IPS, SIEM, DLP, IAM, endpoint protection, and related tools. - Advise on security‑by‑design implementation in SDLC and application development initiatives. - Coordinate remediation tracking, reporting, and metrics to demonstrate control effectiveness. - Support ISO 27001 certification activities and internal/external cyber maturity assessments. - Provide technical guidance to the Cybersecurity Architecture & Program Delivery Manager on initiatives such as Data Loss Prevention, Privileged Access Management, and threat modelling. Required Skills: - Advanced knowledge of security operations, threat detection, and incident response. - Proficiency with Windows, Linux, VMware, IDS/IPS, DLP, SIEM, WAF, VPN, and encryption technologies. - Deep understanding of cloud security principles and experience securing cloud platforms. - Strong analytical, problem‑solving, and critical‑thinking abilities. - Effective communication skills for documentation, reporting, and stakeholder engagement. - Project management competence, capable of handling multiple concurrent initiatives. Required Education & Certifications: - Post‑secondary degree or diploma in Computer Science, Information Technology, or a related discipline. - Relevant security certifications (e.g., CISSP, CCSP, Security+, CEH, CompTIA Security+, ISO 27001 Lead Implementer).