Job Summary

HyperMabs Inc. is a fast-growing biotechnology company focussed on research and development of novel treatments for diseases with high unmet medical need. The team uses cutting edge protein engineering technologies to achieve its mission of discovering new medicines with transformative potential.

We are looking for a hands-on security operator. The IT Security Specialist is responsible for operating and improving a modern security stack across endpoint, network, and cloud environments in a Mac-first, cloud-native pharma organization. You will work directly with production systems, investigate real incidents, and be expected to act decisively under pressure.

This position is best suited for candidates with practical, operational security experience rather than primarily theoretical, audit‑focused, or dashboard‑level work.

This is a full-time, on-site role based in Montreal, QC.

Main Responsibilities:

• Monitor, investigate, and respond to security alerts and incidents (L2 escalation)
• Operate and tune core security controls: Content filtering, DNS security, VPN (remote access and site-to-site), IPS, network threat detection, Anti-malware endpoint protection, DLP and CASB controls.
• Support and maintain AWS IAM (roles, policies, least privilege enforcement)
• Perform vulnerability assessments, prioritize risk, and drive remediation
• Lead or support incident response (triage, containment and root cause)
• Improve signal-to-noise ratio in alerting (reduce false positives, tune controls)
• Maintain security runbooks, incident records, and audit evidence
• Partner with IT and vendors to close gaps and strengthen controls
• Investigate real incidents beyond standard alert review

Qualifications

• 5+ years of experience in IT security, security operations and infrastructure security
• Strong operational experience with macOS and/or Linux or equivalent
• Prior experience in a SOC, security analyst, or incident response role
• Proven, hands-on experience operating: Content filtering, DNS security platforms, VPN technologies, IPS, network security controls, Endpoint anti-malware, DLP and CASB solutions
• Strong working knowledge of AWS IAM: Roles, policies, permission boundaries, least privilege
• Solid networking foundation
• Ability to trace and correlate events across technology domains
• Operate comfortably on production systems under pressure.

Strongly Preferred Experience:

• Experience with Cisco security stack (Meraki MX, Umbrella, Secure Endpoint, Duo)
• Experience tuning DLP and CASB policies in real environments
• Exposure to SIEM / log aggregation platforms
• Experience in regulated environments (pharma, biotech, healthcare)
• Scripting/automation (Python, Bash) for investigation or response

Certifications:

• CCNA (required)
• AWS Certified Cloud Practitioner (required)
• At least one of: Security+, CySA+, CCNP Security, or equivalent (higher-level certifications strongly preferred)

Expectations:

• You own incidents from detection to resolution
• You understand how controls actually behave in production beyond theoretical knowledge.
• You can separate noise from real threats quickly
• You bring discipline in documentation, repeatable response, clear escalation
• You are comfortable working on-site and during live incidents
• You continuously improve the environment rather than simply maintaining it.

Contact

Please send your CV and cover letter outlining your motivation and relevant experience for the role to careers@hypermabs.com quoting “HyperMabs Posting ISS0424” in the subject line – we are looking forward to hearing from you!

HyperMabs Inc. is an equal opportunity employer and encourages applications from persons of any race, religion, ethnicity, gender identity, sexual orientation, age, immigration status, disability, or other legally protected characteristics.

We thank all applicants for their interest, however, only those under consideration will be contacted.

Job Types: Full-time, Permanent

Benefits

• Commuter benefits
• Dental care
• Disability insurance
• Employee assistance program
• Extended health care
• Flexible schedule
• Life insurance
• Paid time off
• Vision care
• Wellness program

Application question(s):

• Do you currently hold a CCNA, an AWS Certified Cloud Practitioner certification, and at least one of the following: Security+, CySA+, or CCNP Security?
• Do you have hands-on experience with macOS and/or Linux?

Experience

• practical operational security: 5 years (preferred)

Work Location: In person