Principal Information Security Advisor

Montreal, QC
Permanent
Full-time

29 days ago

Established in 2004, we are a tech pioneer offering world-class adult entertainment and games on some of the internet's safest and most popular platforms. With the support of an international team of dynamic and collaborative innovators, we are on a mission to enable safe user experiences and empower our communities by celebrating diversity, inclusion, and expression - all while maintaining robust trust-and-safety protocols.We embrace the best of both worlds! Local talent can thrive in our collaborative office space with the flexibility of a hybrid work environment, while remote team members play an integral role in shaping our dynamic culture from afar. We have offices in Montreal (Quebec), Austin (Texas) and Nicosia (Cyprus).*A select number of positions require full-time in office attendance*As the Principal Information Security Advisor, you will act as a senior subject matter expert and a key partner to the Information and GRC Director. our role is critical in strategically guiding and maturing our information security program. Leveraging your deep expertise, you will provide expert counsel to product, engineering, compliance, and legal teams to ensure our platforms, data, and user experiences remain secure and aligned with business objectives.What You'll Be Doing:

Serve as the primary technical expert for information security, providing guidance and recommendations on security strategy, architecture, and best practices.
Architect, review, and mature information security policies, standards, and procedures in collaboration with internal and external stakeholders.
Identify, assess, and advise on information security risks across the organization, recommending effective mitigation strategies.
Act as the lead technical advisor during security incidents, guiding investigation, root cause analysis, and remediation planning.
Drive and oversee regular risk assessments, audits, and third-party vendor security reviews, and communicate findings to relevant stakeholders.
Drive security awareness initiatives and contribute to training programs across the company.
Partner with product, engineering, and business teams to embed security controls into product design and business processes.
Monitor industry trends, threat landscapes, and regulatory changes, translating these insights into actionable recommendations.
Serve as the senior subject matter expert for compliance initiatives, providing critical guidance during audits and regulatory reviews.

What You'll Need to Be Successful:Must-Haves:

10+ years of progressive experience in information security, with a strong record of hands-on technical contributions.
Bachelor's or Master's degree in Information Security, Computer Science, or a related field, or equivalent experience.
Deep knowledge of information security frameworks (e.g., ISO 27001, NIST, SOC 2).
Demonstrated experience in the architecture, development, and implementation of security programs in a technology-driven environment.
Strong understanding of risk management, incident response, and compliance.
Proven ability to collaborate cross-functionally with both technical and non-technical stakeholders.
Excellent communication and interpersonal skills, with the ability to influence and educate at all levels.
Professional certifications such as CISSP, CISM, CIPP, or equivalent.

Nice-to-Haves:

Experience in the digital media or online entertainment industry.
Familiarity with Jira, Confluence, or similar tools for project management.
Experience presenting complex security topics and strategies to executive leadership.
Knowledge of cloud security and DevSecOps best practices.

As an equal opportunity employer, we celebrate diversity and are committed to creating an inclusive environment for all employeesIn this role you may be exposed to adult content

MindGeek

Apply Now