CSIRT L3 Relay – Cybersecurity Operational Coordinator

Sopra Steria is a European leader in consulting, digital services, and software development, supporting its clients in their digital transformation through innovative and collaborative solutions. With 50,000 employees in nearly 30 countries and a revenue of €5.1 billion in 2022, we are committed to achieving sustainable results and placing people at the heart of technology. The world is how we shape it. For more information, visit us at www.soprasteria.ca.

Are you ready to take on the challenge with us?

Sopra Steria Infrastructure & Security Services (I2S) is a subsidiary of Sopra Steria specializing in infrastructure, cloud, and cybersecurity solutions. With 3,000 experts, I2S plays a key role in delivering the group’s end‑to‑end services. Our model is built around a strong client‑centric approach: the proximity and agility of our 8 regional agencies combined with the industrial strength of our offshore service centers. This enables us to deliver tailored, high‑quality solutions that align with each client’s unique needs and ambitions.

The CSIRT L3 Relay acts as a Level 3 (N3) cybersecurity operational coordinator and CSIRT support relay for a large international automotive customer. Working closely with central Cyber Detection & Response (CDOC) teams, this role strengthens local operational support, accelerates response to complex or critical incidents, and provides expert guidance when needed.

The role also supports collaboration across business, functional, and technical teams, ensuring effective escalation management, mitigation tracking, and incident coordination.

Key Responsibilities:

Operational Coordination & Proximity

• Act as the local cybersecurity contact for client sites
• Maintain strong operational proximity with onsite teams
• Liaise between local stakeholders and central CDOC teams

Incident & Escalation Management

• Coordinate incident escalations and expert support
• Track mitigation, remediation, and corrective actions

Advanced Incident Response Support

• Support complex or critical cybersecurity incidents
• Lead or assist response, remediation, and recovery activities
• Align technical risks with business and operational priorities

Crisis Management

• Provide expert support and coordinate response during major incidents or cyber crises

Requirements Translation & Solution Alignment

• Translate business needs into cybersecurity requirements and global solutions
• Support continuous improvement of detection and response processes

Communication & Continuous Improvement

• Ensure clear two-way communication between local and central teams
• Promote knowledge sharing, best practices, and service quality improvements

Required Skills:

• Strong knowledge of cybersecurity operations, SOC/CDOC environments, and incident response
• Experience coordinating technical and non-technical stakeholders
• Skilled in incident management, escalation handling, and mitigation tracking
• Ability to translate business needs into technical cybersecurity requirements
• Strong communication, facilitation, and coordination skills
• Autonomous, proactive, and solution-oriented mindset
• Hands-on experience with SIEM platforms such as Microsoft Sentinel, QRadar, or Splunk/ELK
• Experience with EDR solutions such as CrowdStrike and/or Microsoft Defender
• Mandatory or equivalent certifications: GCIH or GCFE/GCFA; Microsoft SC-200 (Sentinel)
• English required; French is an asset
• Bachelor’s degree in Cybersecurity, IT, or a related field, or equivalent experience

Nice to have skills:

• Experience with Logic Apps, SOAR platforms, or threat intelligence tools such as MISP or OpenCTI
• Additional certifications such as CISSP, CISM, GREM, CEH, or CHFI
• Experience in large enterprise environments or IT/OT boundary contexts
• Background in automotive, manufacturing, OT/ICS security, or 24/7 SOC environments

At Sopra Steria, we’re proud to be an equal opportunity employer and to nurture a workplace where everyone feels welcome, respected, and supported. We are committed to fighting all forms of discrimination and building an environment where every individual can thrive. We warmly encourage applications from all qualified candidates, including women, visible minorities, Indigenous peoples, and persons with disabilities. If you require accommodations at any stage of the selection process, we will be happy to provide them upon request.

Why Join Sopra Steria Canada?

Sopra Steria Canada is proud to be certified as a “Great Place to Work” 2026, a recognition that reflects our commitment to creating an inspiring, supportive, and people‑first environment where every employee can thrive.

What you can look forward to:

• Competitive compensation including a strong base salary and annual performance bonus.
• A comprehensive, fully covered benefits package designed with your well‑being in mind:
  • life insurance,
  • long-term disability,
  • health, dental, and vision coverage,
  • HSA (Health Spending Account) 
  • Access to Dialogue telehealth,
  • Sopra Steria covers 100% of premiums, so you can focus on growing your career with total peace of mind. 
• Generous paid time off, including sick leave, personal days, and 3 weeks of vacation to recharge and take care of what matters most.
• A monthly transportation allowance, making your commute smoother and more affordable.
• Excellent learning, development, and career advancement opportunities, backed by active support to help you strengthen your skills. You’ll grow within a company culture that is caring, collaborative, and genuinely inclusive.
• A hybrid work environment that offers the best of both flexibility and connection.
• All the equipment you need to stay productive and perform at your best from day one.

We sincerely thank all applicants for their interest in this opportunity. We truly appreciate the time and effort you put into applying.