Asociate Cyber Security Engineer

Join Team CARFAX as an Associate Cyber Security Engineer 

Isn't it time you bragged about where you work? At CARFAX, we do, every day. We pride ourselves on being mission-focused on helping to grow a brand built on accuracy and integrity. We care deeply about our products and our customers. We’re more than just a company: We help millions of consumers make more informed decisions every day. We know that our teammates are our most valuable asset, and we value a balanced life while tackling challenging projects in a fast-paced environment. 

We are seeking a highly skilled and motivated Associate Cyber Security Engineer to join our dynamic Information Security team. The Associate Cyber Security Engineer plays an essential role in supporting and enhancing the organization's cybersecurity posture. This entry-level position offers an excellent opportunity to work closely with senior cybersecurity professionals to protect the organization's data and IT infrastructure from cyber threats. The Associate Cyber Security Engineer will be actively involved in monitoring, incident response, security assessments, and various strategic projects designed to enhance our cybersecurity framework.

At CARFAX, we believe in the power of teamwork and value in-person interactions so that we can collaborate and thrive together. This position will require 2 days per week in our London, ON office subject to change with future business needs.

What you’ll be doing:

• Monitor, research, and respond to cybersecurity-related events and incidents such as malicious code detection, intrusion detection, system configuration, and vulnerability management issues.
• Conduct thorough investigations of security incidents and vulnerabilities, including identifying the root cause, impact assessment, containment, mitigation, and documentation of the security event.
• Generate comprehensive risk-based security reports, ensuring clarity for stakeholders, and prioritize remediation efforts based on their potential impact on the organization.
• Manage and maintain plans of actions and milestones, track remediation efforts, validate closure evidence, prioritize and communicate risk, and ensure timely delivery.
• Develop and present reports on key cybersecurity metrics, risk assessments, and compliance status, while escalating critical findings to senior team members or management according to risk severity.
• Maintain ongoing engagement with key stakeholders, ensuring continuous communication, collaboration, and alignment on security priorities, progress, and requirements.
• Develop, maintain, and review security documentation such as policies, standard operating procedures, wikis, and guidelines to ensure consistent division-wide operations, while also supporting the development and delivery of cybersecurity awareness programs across the enterprise.
• Implement solutions that streamline and improve the efficiency and accuracy of reporting functions through automation.
• Assess, enhance, and maintain automation scripts while adapting existing scripts to meet evolving needs, ensuring that automated workflows are optimized to reduce manual effort, minimize errors, and provide timely, reliable data to stakeholders.

What we're looking for:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Relevant certifications such as CompTIA Security+, CEH, or other entry-level cybersecurity credentials are a plus.
• Basic understanding of cybersecurity principles, networking, and common threats.
• Familiarity with security technologies and tools (e.g., SIEM, Endpoint Detect & Response, firewalls, IDS/IPS).
• Knowledge of security tools, programming languages, and operating systems used in security practices (e.g., BURP Suite, Nessus, NMAP, Python, Kali Linux, etc.).
• Strong analytical and problem-solving skills, with the ability to conduct risk assessments.
• Excellent written and verbal communication skills, with an emphasis on clear and concise risk-based reporting.
• Ability to work both collaboratively in a team environment and independently.
• Eagerness to learn and a proactive attitude towards professional development.

Why join us:

• Opportunity to work and learn in a dynamic, supportive environment with senior cybersecurity professionals.
• Exposure to a variety of challenging projects aimed at enhancing the cybersecurity landscape.
• Continuous learning and professional growth opportunities.

What’s in it for you:

• Competitive compensation, benefits and generous time-off policies
• 4-Day summer work weeks and a winter holiday break
• 401(k)/DCPP matching
• Annual bonus program
• Casual, dog-friendly, and innovative office spaces
• For a comprehensive list of benefits, please visit our website: https://jobs.jobvite.com/carfax/p/benefits

Don’t just take our word for it:

• 10X Virginia Business Best Places to Work
• 10X Washingtonian Great Places to Work
• 9X Washington Post Top Workplace
• St.Louis Post-Dispatch Best Places to Work

About CARFAX

CARFAX, part of S&P Global Mobility, helps millions of people every day confidently shop, buy, service and sell used cars with innovative solutions powered by CARFAX vehicle history information. The expert in vehicle history since 1984, CARFAX provides exclusive services like CARFAX Used Car Listings, CARFAX Car Care, CARFAX History-Based Value and the flagship CARFAX® Vehicle History Report™ to consumers and the automotive industry. CARFAX owns the world’s largest vehicle history database and is nationally recognized as a top workplace by The Washington Post and Glassdoor.com. Shop, Buy, Service, Sell – Show me the CARFAX™. S&P Global Mobility is a division of S&P Global (NYSE: SPGI). S&P Global is the world’s foremost provider of credit ratings, benchmarks, analytics and workflow solutions in the global capital, commodity and automotive markets.

US Equal Opportunity Employer Statement: CARFAX is an Affirmative Action/Equal Opportunity Employer. It is the policy of CARFAX to provide equal employment opportunity to all persons regardless of race, color, sex, pregnancy, religion, national origin, age, ancestry, citizenship status, veteran status, military status, disability or handicap, sexual orientation, genetic information or any other status protected by federal, state or local law. In addition, CARFAX will provide reasonable accommodations for qualified individuals with disabilities. We maintain a drug-free workplace. We are a participant in E-Verify.

Canadian Equal Opportunity Employer Statement: CARFAX Canada is an equal opportunity employer, and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law.

We’re committed to providing accommodations by request for candidates taking part in all aspects of the recruitment and selection process. For a confidential inquiry or to request an accommodation, please contact your recruiter or email hiring@carfax.com.