IT Operations Analyst (Canada)
Apply NowCompany: FileCloud
Location: Ottawa, ON K1A 0A5
Description:
FileCloud is on the lookout for an experienced and hands-on IT Operations Analyst to join our team in Canada. This role will lead and support our IT operations, ensuring the security, reliability, and efficiency of our company operational environment for a remote-first global tech company. This role requires a strong focus on cybersecurity, compliance, and operational excellence, aligning with industry standards and FileCloud's business requirements.
About the Product & Company:
FileCloud is a hyper-secure EFSS (enterprise file sync and share) platform that provides industry leading compliance, data governance, data leak protection, data retention and digital rights management capabilities. FileCloud is a leader in content governance and collaboration for unstructured data, trusted and used worldwide across Global 1000 enterprises, educational institutions, government organizations, and service providers. In addition to its enterprise file sharing solution, FileCloud's product portfolio also includes Signority (acquired in May 2024), a Canadian-based e-signature and document workflow platform. We are currently expanding our team as we grow and improve FileCloud.
Key Responsibilities
Qualifications and Skills
Preffered Experience:
What We Offer
The ideal candidate will have a deep understanding of IT operations, regulatory compliance (e.g., HIPAA, GDPR, ISO 27001, SOC2), and vendor management, coupled with strong leadership and planning capabilities. They will be responsible for overseeing day-to-day IT operations, managing key tools and systems, optimizing processes, and driving IT projects that support the company's business objectives. This role is remote and will require working remotely with other team members.
Please note that we conduct background security checks for everyone joining our team.
About the Product & Company:
FileCloud is a hyper-secure EFSS (enterprise file sync and share) platform that provides industry leading compliance, data governance, data leak protection, data retention and digital rights management capabilities. FileCloud is a leader in content governance and collaboration for unstructured data, trusted and used worldwide across Global 1000 enterprises, educational institutions, government organizations, and service providers. In addition to its enterprise file sharing solution, FileCloud's product portfolio also includes Signority (acquired in May 2024), a Canadian-based e-signature and document workflow platform. We are currently expanding our team as we grow and improve FileCloud.
Key Responsibilities
- Manage and maintain IT infrastructure to ensure system reliability, performance, and security in a remote-first cloud environment (not traditional telecom).
- Oversee and optimize internal IT applications on the Vendor Approved List (AVL).
- Implement and manage end-device security for company-owned devices and BYOD, ensuring security without intruding on personal privacy.
- Conduct vendor security assessments for IT operations, ensuring compliance, security, and integration within existing systems.
- Evaluate, implement, and manage third-party applications for internal business use, ensuring they meet security and compliance requirements (Vendor Risk Assessments).
- Implement and administer SSO and access management for internal applications, ensuring secure and streamlined authentication across systems.
- Design, implement, and manage company Role-Based Access Control (RBAC) and identity management systems to ensure secure and appropriate user access.
- Ensure compliance with security frameworks such as ISO 27001 series, NIST, and SOC2, working closely with the Compliance Manager.
- Define and enforce practical and achievable high-level IT operational security policies compliant with ISO 27001, SOC 2, and HIPAA.
- Lead Security Response Team and Risk Management Committee and run related tabletop exercises.
- Evaluate and maintain the Approved Vendor List (AVL) for IT applications, ensuring security, compliance, and interoperability.
- Provide IT help desk support, managing IT support staff and handling complex tickets when needed.
- Oversee and optimize secure data storage and collaboration tools for internal teams.
- Prioritize and manage daily IT operations effectively, balancing long-term projects with immediate support needs.
- Plan and execute IT projects aligned with business objectives, ensuring on-time and cost-effective delivery.
- Effectively communicate IT policies, security requirements, and best practices to internal teams.
- Conduct risk assessments and implement security best practices to protect IT infrastructure.
Qualifications and Skills
- 5+ years of experience in IT operations, compliance, and security within a remote-first cloud company (not traditional telecom).
- Familiarity with NIST standards related to access control and cybersecurity best practices, including encryption methods.
- Goal-oriented and highly organized, with the ability to prioritize daily tasks while balancing long-term objectives.
- Strong team player with a clear understanding of role boundaries and collaboration with the Compliance team.
- Expertise in device management for company-owned and BYOD environments with a strong privacy-preserving approach.
- Proven experience in vendor security assessments and IT application evaluation.
- Hands-on experience implementing SSO and access management for internal applications.
- Hands-on experience managing RBAC and identity management systems to ensure secure and appropriate user access.
- Strong familiarity with ISO 27001, NIST, and SOC2 compliance frameworks.
- Experience managing RBAC and AVL to maintain security and compliance standards.
- Excellent written and verbal communication skills to document policies, train staff, and effectively communicate IT-related decisions.
- Strong problem-solving and troubleshooting skills, with experience evaluating third-party applications for security and compliance.
- Ability to manage a junior IT support staff and provide guidance on complex IT tickets.
Preffered Experience:
- Understanding of penetration test reports and security assessments, with the ability to address findings through IT security controls and policies.
- Experience working with modern compliance platforms that streamline ISO 27001, NIST, and SOC2 compliance.
- Knowledge of IT automation tools to improve security and compliance efficiency.
What We Offer
- Be part of a team of passionate, committed individuals dedicated to building a world-class product
- Dedicated time for training and education opportunities
- A mentorship model wherein your mentor and team support your development
- A competitive salary with an annual bonus
- Fully remote working whilst offering flexible hours that fall outside of the companywide core hours of 9am -12pm (US Eastern Standard Time)
- 20 days of paid time off which increases by a further 2 days after 3 years of service and 3 days after 5 years of service (in addition to 10 public holidays in your country)
- Paid day off on your birthday or on an alternative day if your birthday falls outside a normal working day
- Paid day off to volunteer with the charity of your choice
- Paid monthly internet cost, as well as lunch and wellbeing stipend provided
- Reimbursement of all hardware costs associated with the role
The ideal candidate will have a deep understanding of IT operations, regulatory compliance (e.g., HIPAA, GDPR, ISO 27001, SOC2), and vendor management, coupled with strong leadership and planning capabilities. They will be responsible for overseeing day-to-day IT operations, managing key tools and systems, optimizing processes, and driving IT projects that support the company's business objectives. This role is remote and will require working remotely with other team members.
Please note that we conduct background security checks for everyone joining our team.