Work Location: Vancouver, BC or Toronto, ON (On-site)
Role:
The Cybersecurity Engineer is responsible for designing, building, implementing, and continuously improving technical security controls that protect the organization’s information systems, networks, and data from cyber threats. This role has a strong hands-on engineering focus and works closely with IT infrastructure, cloud, network, and application teams to embed security into platforms and services by design. The Cybersecurity Engineer translates security requirements and risk management objectives into scalable, resilient, and automated security solutions aligned with the organization’s risk appetite, policies, and regulatory requirements.
Our Company:
Pan American Silver was created with the intention to provide investors with the best vehicle to gain exposure to higher silver prices. Our vision is to be the world’s pre-eminent silver producer, with a reputation for excellence in discovery, engineering, and sustainable development. Pan American Silver has several underground and open pit operations in Canada, Mexico, Guatemala, Peru, Chile, Brazil, Bolivia, and Argentina.
Pan American Silver is committed to advancing diversity and developing inclusive leadership teams that are representative of the communities we serve. The Company provides equal opportunities to all persons regardless of age, color, national origin, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression or any other characteristic protected by federal, provincial, or local law.
Major Responsibilities:
Security Operations & Monitoring
- Engineer and optimize security tooling such as SIEM, EDR, IDS/IPS, SASE, and firewalls
- Improve detection capabilities through log onboarding, correlation rules, alerts, and use case development
- Support incident response by providing deep technical analysis, improving tools, and automation for containment and recovery
- Perform root cause analysis and implement long-term engineering fixes to prevent recurrence
Security Engineering & Architecture
- Design, implement, and maintain security architectures and technical controls across on-premises, cloud, and hybrid environments
- Engineer and harden security solutions including endpoint protection, identity controls, network security, encryption, and logging
- Review system and application designs to ensure security is embedded early in projects (secure by design principles)
- Develop and maintain secure configuration baselines for servers, endpoints, network devices, and cloud resources
Vulnerability & Threat Management
- Design and maintain vulnerability management processes, including scanning, prioritization, remediation tracking, and validation
- Integrate vulnerability and threat intelligence into security controls and engineering decisions
- Partner with infrastructure and application teams to remediate systemic weaknesses through engineering improvements
Identity & Access Management
- Engineer and maintain identity and access management (IAM) solutions, including MFA, conditional access, and privileged access controls
- Automate identity lifecycle processes such as provisioning, de-provisioning, and access reviews
- Enforce least privilege and zero trust principles through technical controls and continuous validation
Governance, Risk & Compliance
- Translate security policies, standards, and regulatory requirements into technical controls and reference architecture
- Support security risk assessments by identifying control gaps and engineering mitigation strategies
- Provide technical evidence and control design support during audits and compliance activities
Collaboration & Enablement
- Partner with IT, Infrastructure, and business teams to integrate security into day-to-day operations and platform roadmaps
- Provide technical guidance on secure implementation patterns and best practices
- Contribute to security awareness by enabling teams with secure defaults and guardrails rather than manual processes
Qualifications:
- Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
- Seven (7) or more years of experience in cybersecurity, IT security, or a related technical role
- Relevant certifications are an asset, such as:
CISSP
CCSP
CySA+
Cloud or vendor‑specific security certifications
Technical Knowledge
- Strong understanding of cybersecurity fundamentals (confidentiality, integrity, availability)
- Strong hands-on knowledge of networking (TCP/IP, DNS, routing, VLANs, firewalls)
- Practical experience engineering and operating security technologies, such as:
- Firewalls and network security controls
- Endpoint Detection and Response (EDR)
- SIEM and log analysis
- Vulnerability scanning tools
- Solid understanding of identity and access management (IAM) concepts, including MFA and privileged access
- Working knowledge of encryption and PKI (TLS/SSL, certificates)
- Hands-on experience with cloud security (e.g., Azure, AWS, or GCP) is an asset
- Understanding of common threats and attack techniques (phishing, malware, ransomware, lateral movement)
Security Frameworks & Standards
- Familiarity with one or more of the following:
- NIST Cybersecurity Framework
- NIST SP 800‑53 / 800‑61
- ISO/IEC 27001
- CIS Critical Security Controls
- Strong understanding of risk management and defense‑in‑depth principles
Automation & Problem‑Solving Skills
- Ability to design scalable and repeatable security solutions
- Strong analytical and troubleshooting skills and attention to detail
- Ability to assess risk and engineer pragmatic, sustainable mitigation strategies
Communication & Collaboration
- Ability to document architecture, controls and technical decisions clearly and concisely
- Strong verbal communication skills to explain technical risks and solutions to non‑technical stakeholders
- Ability to collaborate effectively across security, IT, operations, and business teams
Language & Collaboration
- Proficiency in Spanish and English
- Proficiency in Portuguese is a plus
Preferred qualifications:
- Strong engineering mindset with a focus on building durable solutions
- High sense of accountability, ethics, and ownership
- Curiosity and continuous learning orientation
- Ability to perform effectively in high-priority or incident situations
- Strong interest in emerging threats, security architectures, and modern security engineering practices
- Effective collaboration and teamwork skills.
Annual Salary Range: CAD 110,000.00-125,000,00
Competitive benefits package:
- Bonus program
- Comprehensive group benefits, including health, dental & vision coverage
- Group RRSP
- Fitness/Gym allowance
- Professional development, training and certification
Job Type: Full-time, Permanent.
Work Location: Vancouver, BC or Toronto, BC (On-site)
We thank all applicants for showing an interest. Only candidates under consideration will be contacted.
Pan American Silver is committed to accommodating persons with disabilities. Accommodations are available upon request for candidates taking part in all aspects of the selection process by contacting the Human Resources department. This job posting is for an existing vacancy.
