Cyber Incident Response Commander

Sopra Steria is a European leader in consulting, digital services, and software development, supporting its clients in their digital transformation through innovative and collaborative solutions. With 50,000 employees in nearly 30 countries and a revenue of €5.1 billion in 2022, we are committed to achieving sustainable results and placing people at the heart of technology. The world is how we shape it. For more information, visit us at www.soprasteria.com.

Are you ready to take on the challenge with us?

Sopra Steria Infrastructure & Security Services (I2S) is a subsidiary of Sopra Steria specializing in infrastructure, cloud, and cybersecurity solutions. With 3,000 experts, I2S plays a key role in delivering the group’s end‑to‑end services. Our model is built around a strong client‑centric approach: the proximity and agility of our 8 regional agencies combined with the industrial strength of our offshore service centers. This enables us to deliver tailored, high‑quality solutions that align with each client’s unique needs and ambitions.

.

The Cyber Incident Response Commander plays a critical leadership role in managing and coordinating the organization’s response to cybersecurity incidents. This role is responsible for ensuring that security events are effectively identified, assessed, contained, and remediated, while minimizing business impact.

As part of the CERT (Computer Emergency Response Team), the Incident Response Commander works at the intersection of technical teams and business stakeholders, leading incident response activities and ensuring alignment with internal policies and regulatory requirements.

The role reports to the Incident Response Manager.

Key Responsibilities

1. Incident Response Governance & Continuous Improvement

• Maintain and continuously improve the Incident Response Plan (IRP) and its appendices
• Ensure alignment between the IRP and other relevant security policies and frameworks
• Develop and refine incident response playbooks to ensure clarity of roles and operational efficiency
• Collaborate with Legal and Communications teams to strengthen response processes
• Tailor IRPs to specific scopes (e.g., regions, subsidiaries, maritime operations)
• Capture lessons learned from incidents and provide actionable improvement recommendations
• Identify links and patterns between incidents to improve detection and response strategies
• Support internal and external audits by providing required documentation and evidence

2. Incident Management & Command

• Act as Incident Commander during security incidents, coordinating cross-functional teams
• Assess incident severity and determine appropriate escalation levels
• Formally declare major incidents in line with risk and regulatory criteria
• Lead incident response activities in accordance with defined plans and playbooks
• Ensure effective collaboration between technical and business stakeholders
• Prioritize and oversee forensic investigations and evidence collection
• Monitor incident lifecycle: analysis, containment, mitigation, and recovery
• Ensure timely and clear communication, reporting, and stakeholder notifications

3. Collaboration & Contribution

• Contribute to Cyber Defense Center initiatives and transversal activities
• Support cybersecurity projects, compliance efforts, and continuous improvement programs
• Participate in strengthening CERT capabilities and overall cyber resilience

Profile & Experience

• Bachelor’s degree (or equivalent) in Cybersecurity, Computer Science, or related STEM field
• Minimum 5 years of experience in cybersecurity roles such as:
  • CERT / CSIRT
  • SOC / SecOps
  • GRC (Governance, Risk & Compliance)

Required Certifications (or equivalent experience):

• GCFA, CIH, CISSP, CEH, ECSA, ITIL Foundation

Technical & Functional Skills

• Strong knowledge of incident response methodologies (e.g., NIST, ISO 27035, SANS)
• Experience with SOC operations and forensic investigations
• Good understanding of security tools, detection, and response techniques
• Ability to communicate complex cybersecurity topics to senior leadership and executives
• Experience in transport, shipping, or logistics environments is an asset

Languages

• Professional proficiency in English (written and spoken)

Why Join Sopra Steria Canada?

Sopra Steria Canada is proud to be certified as a “Great Place to Work” 2026, a recognition that reflects our commitment to creating an inspiring, supportive, and people‑first environment where every employee can thrive.

What you can look forward to:

• Competitive compensation including a strong base salary and annual performance bonus.
• A comprehensive, fully covered benefits package designed with your well‑being in mind:
  • life insurance,
  • long-term disability,
  • health, dental, and vision coverage,
  • plus a health spending account for additional flexibility.
  • Sopra Steria covers 100% of premiums, so you can focus on growing your career with total peace of mind. 
• Generous paid time off, including sick leave, personal days, and 3 weeks of vacation to recharge and take care of what matters most.
• A monthly transportation allowance, making your commute smoother and more affordable.
• Excellent learning, development, and career advancement opportunities, backed by active support to help you strengthen your skills. You’ll grow within a company culture that is caring, collaborative, and genuinely inclusive.
• A hybrid work environment that offers the best of both flexibility and connection.
• All the equipment you need to stay productive and perform at your best from day one.

We sincerely thank all applicants for their interest in this opportunity. We truly appreciate the time and effort you put into applying. Please note that only candidates selected for the next steps in the recruitment process will be contacted.

At Sopra Steria, we’re proud to be an equal opportunity employer and to nurture a workplace where everyone feels welcome, respected, and supported. We are committed to fighting all forms of discrimination and building an environment where every individual can thrive. We warmly encourage applications from all qualified candidates, including women, visible minorities, Indigenous peoples, and persons with disabilities. If you require accommodations at any stage of the selection process, we will be happy to provide them upon request.