Information Security Lead

Information Security Lead

Calgary, AB, CA Vancouver, British Columbia, CA Ottawa, ON, CA Edmonton, AB, CA Toronto, ON, CA

Dentons Canada LLP is currently recruiting for an Information Security Lead who will be responsible for ensuring the security, integrity, and availability of Dentons Canada information assets. The candidate will contribute to the management and continuous improvement of multiple security programs. The position entails the development, implementation, and maintenance of security controls, through people, processes, and technology, across the organization.

• Provide technical leadership and architectural oversight for the Firm’s security controls across on-premises and cloud environments.
• Lead the design and implementation of secure architecture patterns for enterprise infrastructure, cloud platforms, identity services, and network security.
• Act as a key security advisor to Infrastructure, Cloud, and Application teams to ensure security is embedded into platform design, deployments, and operational processes.
• Support the secure adoption and governance of Microsoft Azure, including the design and implementation of security controls for identity, networking, workloads, and platform services.
• Lead the configuration and optimization of Azure security capabilities including Microsoft Defender for Cloud, Conditional Access, Azure Policy, identity protection controls, and security monitoring integrations.
• Provide architectural guidance for secure network connectivity and access models, including integration with enterprise network security platforms such as Palo Alto and secure access platforms such as Netskope or Zscaler.
• Contribute to the development and automation of security guardrails for cloud environments, including policy enforcement, configuration standards, and monitoring integrations.
• Monitor emerging threats, vulnerabilities, and technology trends and recommend improvements to strengthen the Firm’s security architecture and overall security posture.
• Mentor and provide technical guidance to Information Security team members across operational and engineering initiatives.

• Lead the day‑to‑day security operations function, ensuring effective monitoring, detection, and response across enterprise and cloud environments.
• Provide hands‑on technical leadership to team members responsible for security monitoring, threat detection, and vulnerability management activities.
• Serve as the primary escalation point for security incidents and high‑risk vulnerabilities, providing technical direction on investigation, containment, remediation, and recovery.
• Oversee the development and continuous improvement of incident response playbooks, operational procedures, and response readiness activities, including incident simulations and tabletop exercises.
• Analyze vulnerability intelligence and security findings, guiding prioritization and remediation efforts with infrastructure, cloud, and application teams.
• Coordinate vulnerability scanning, penetration testing activities, and remediation tracking to ensure security findings are appropriately assessed and addressed.
• Support the integration, tuning, and optimization of security technologies including SIEM, endpoint protection, network security, and secure access platforms.
• Drive continuous improvement in detection, response, and threat exposure management capabilities.

• Support the implementation and maturity of the Firm’s data protection program, including data classification, data loss prevention (DLP), and information protection controls.
• Provide guidance on protecting sensitive client and Firm data across collaboration platforms, cloud services, and enterprise systems.
• Assist in designing and implementing data classification standards and enforcement mechanisms to ensure sensitive data is properly identified and protected.
• Support the configuration and management of DLP policies and controls across email, endpoints, cloud services, and collaboration platforms.
• Work closely with legal,…