Job Description

Job Description

6 Month Contract

$100-$115 per hour

2-3 days on site- Location Mississauga at Border of Etobicoke

Manager IT Security

We have an exciting opportunity for an experienced cybersecurity professional to join our IT team as a Manager, Security Operations. In this role you will be responsible for the deployment, operation, and maintenance of our cyber security technology posture, security, and reporting systems.

We place great reliance on technology and systems to underpin our detect and response controls and systems, with an ever-increasing reliance on automation across the organization to deliver effective DFIR capabilities.

As the successful candidate, you will be skilled in IT platform operations, maintaining sophisticated security systems to a very high level of availability and quality, applying an agile methodology to continual security posture improvement, increasing capabilities, decreasing manual steps and improving investigative capabilities all while ensuring the cyber and environment are running in a secure fashion. In addition, you excel at at building relationships with people across a wide range of functions, communicating clearly in business and technical terms, have a strong customer service orientation, and a proven record of getting stuff done.

What you get to do:

• Platform Operations: Be responsible for the operation of all DFIR (Detection, Forensics and Incident Response) tools and platforms and continually improve these platforms, which includes tuning, implementation of new, and updating of existing use cases, and automation.
• Incident Support: Provide tool and technology support to active incidents and the tuning of all detection systems to eliminate false positive and ensure appropriate enrichment of data.
• Operational Excellence: Maintain KPI and performance measures across the functional areas and provide regular updates and reporting to the Sr. Director.
• Maintain a well secured environment to ensure that the organization is well postured to weather cyber attacks and security issues.
• Lead the development and implementation of the system-wide information security program to ensure information security risks are identified, monitored and where possible remediated.
• Develop and implement effective and reasonable policies and procedures to secure data in accordance with business, legal, and regulatory requirements.
• Develop and execute strategy for dealing with increasing number of customer and 3rd party audits, compliance checks and assessment procedures.
• Lead the system-wide information security compliance program, ensuring IT activities, processes, and procedures meet defined requirements, policies, and regulations.
• Initiate ongoing learning programs leveraging tools such as Knowbe4.
• Implement a SIEM, to ensure the appropriate operational logging and monitoring is met and reported on, and actioned.
• Recommend programmatic and technical directions and operate with a high degree of independence in matters relating to the investigation, impact, and analysis of security incidents, decisions regarding risk, and measures for computer and network security.

· Manage and develop 3rd party relationships regarding security services, (Crowdstrike, KnowBe4, etc), including performance management, and SLA’sa for each partner.

What you bring to the role:

• You have a minimum of 10 years experience as a security professional, with at least 5 years in a Manager role and 3+ years working within an agile framework, applied to operational improvement.
• You can evidence building and maintaining partnerships across an organization business in order to effectively operate an organization-wide security program.
• You develop strong relationships and build trust with members of the technology organization to ensure that security controls meet the necessary requirements and operate effectively.
• You have excellent verbal and written communication skills that cater for different audiences. You communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.
• You have working knowledge of security risk management frameworks and compliance practices. You have experience of conducting risk assessments of varying scope across a diverse organization.
• You maintain deep knowledge with common security standards and regulations (ISO27K, SOC, PCI, etc.) and can develop pragmatic approaches to solve for the requirements of those standards and regulations. You’re adept at identifying and delivering efficiency across those standards to maximize return on investment.
• You understand the fundamentals of secure operations in the cloud and in on-premise systems, and hold a current
• Familiarity with the Secure Development Lifecycle (SDLC) including modern practices such as CI/CD and test automation is highly desirable.
• Knowledge of organizational process improvement concepts and process maturity models (e.g., Capability Maturity Model Integration (CMMI) for Development).
• Knowledge of supply chain / manufacturing risk management standards, processes, and practices.
• PMP certification is strongly preferred.

Job Tags

Similar Jobs