Information Technology Security Manager

Job Description

6 Month Contract

$100-$115 per hour

2-3 days on site - Location: Mississauga at the border of Etobicoke

Manager, IT Security

We have an exciting opportunity for an experienced cybersecurity professional to join our IT team as a Manager, Security Operations. In this role, you will be responsible for deploying, operating, and maintaining our cybersecurity technology posture, security, and reporting systems.

We rely heavily on technology and systems to support our detection and response controls, with a growing emphasis on automation across the organization to enhance DFIR capabilities.

As the successful candidate, you will be skilled in IT platform operations, maintaining sophisticated security systems at a high level of availability and quality, applying agile methodologies for continuous security improvements, increasing capabilities, reducing manual processes, and enhancing investigative capabilities—all while ensuring a secure environment. Additionally, you excel at building relationships across functions, communicating clearly in both business and technical terms, possess strong customer service skills, and have a proven track record of execution.

What you get to do:

1. Platform Operations: Oversee the operation of all DFIR tools and platforms, continuously improving these platforms through tuning, implementing new use cases, updating existing ones, and automation.
2. Incident Support: Provide support for active incidents, tuning detection systems to minimize false positives and ensure data is appropriately enriched.
3. Operational Excellence: Maintain KPIs and performance metrics, providing regular updates and reports to the Sr. Director.
4. Security Environment: Ensure the environment is well secured to withstand cyber threats and security issues.
5. Security Program Development: Lead the development and implementation of the organization-wide information security program to identify, monitor, and remediate security risks.
6. Policy and Compliance: Develop and enforce policies and procedures to secure data, complying with business, legal, and regulatory requirements.
7. Audit and Assessment: Strategize for increasing customer and third-party audits, compliance checks, and assessments.
8. Security Compliance Program: Lead the organization's security compliance efforts, ensuring adherence to policies and regulations.
9. Learning Programs: Initiate ongoing security awareness and training programs, leveraging tools like KnowBe4.
10. SIEM Implementation: Implement and manage SIEM to ensure proper logging, monitoring, reporting, and response actions.
11. Security Incident Management: Operate independently in investigating, assessing, and responding to security incidents, making risk-based decisions.

Manage and develop third-party relationships with security service providers (e.g., Crowdstrike, KnowBe4), including performance management and SLAs.

What you bring to the role:

• Minimum of 10 years in security, with at least 5 years in a managerial role and 3+ years applying agile practices to operational improvements.
• Experience building and maintaining cross-organizational partnerships to operate a comprehensive security program.
• Strong relationship-building skills to foster trust within the technology organization and ensure effective security controls.
• Excellent communication skills, capable of conveying complex ideas clearly to diverse audiences.
• Knowledge of security risk management frameworks and compliance practices, including conducting risk assessments.
• Deep understanding of security standards and regulations (ISO27K, SOC, PCI, etc.), with pragmatic approaches to compliance.
• Fundamental knowledge of secure operations in both cloud and on-premise environments, with current certifications.
• Familiarity with SDLC, including CI/CD and test automation, is highly desirable.
• Understanding of process improvement concepts and maturity models like CMMI.
• Knowledge of supply chain and manufacturing risk management standards and practices.
• PMP certification is strongly preferred.