Information Technology Security Manager

Get AI-powered advice on this job and more exclusive features.

This range is provided by National Consultants Professionals Ltd. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

CA$100.00/hr - CA$110.00/hr

Direct message the job poster from National Consultants Professionals Ltd

2-3 days on site- Location Mississauga at Border of Etobicoke

We have an exciting opportunity for an experienced cybersecurity professional to join our IT team as a Manager, Security Operations. In this role you will be responsible for the deployment, operation, and maintenance of our cyber security technology posture, security, and reporting systems.

We place great reliance on technology and systems to underpin our detect and response controls and systems, with an ever-increasing reliance on automation across the organization to deliver effective DFIR capabilities.

As the successful candidate, you will be skilled in IT platform operations, maintaining sophisticated security systems to a very high level of availability and quality, applying an agile methodology to continual security posture improvement, increasing capabilities, decreasing manual steps and improving investigative capabilities all while ensuring the cyber and environment are running in a secure fashion. In addition, you excel at at building relationships with people across a wide range of functions, communicating clearly in business and technical terms, have a strong customer service orientation, and a proven record of getting stuff done.

What you get to do:

• Platform Operations: Be responsible for the operation of all DFIR (Detection, Forensics and Incident Response) tools and platforms and continually improve these platforms, which includes tuning, implementation of new, and updating of existing use cases, and automation.
• Incident Support: Provide tool and technology support to active incidents and the tuning of all detection systems to eliminate false positive and ensure appropriate enrichment of data.
• Operational Excellence: Maintain KPI and performance measures across the functional areas and provide regular updates and reporting to the Sr. Director.
• Maintain a well secured environment to ensure that the organization is well postured to weather cyber attacks and security issues.
• Lead the development and implementation of the system-wide information security program to ensure information security risks are identified, monitored and where possible remediated.
• Develop and implement effective and reasonable policies and procedures to secure data in accordance with business, legal, and regulatory requirements.
• Develop and execute strategy for dealing with increasing number of customer and 3rd party audits, compliance checks and assessment procedures.
• Lead the system-wide information security compliance program, ensuring IT activities, processes, and procedures meet defined requirements, policies, and regulations.
• Initiate ongoing learning programs leveraging tools such as Knowbe4.
• Implement a SIEM, to ensure the appropriate operational logging and monitoring is met and reported on, and actioned.
• Recommend programmatic and technical directions and operate with a high degree of independence in matters relating to the investigation, impact, and analysis of security incidents, decisions regarding risk, and measures for computer and network security.

· Manage and develop 3rd party relationships regarding security services, (Crowdstrike, KnowBe4, etc), including performance management, and SLA’sa for each partner.

What you bring to the role:

• You have a minimum of 10 years experience as a security professional, with at least 5 years in a Manager role and 3+ years working within an agile framework, applied to operational improvement.
• You can evidence building and maintaining partnerships across an organization business in order to effectively operate an organization-wide security program.
• You develop strong relationships and build trust with members of the technology organization to ensure that security controls meet the necessary requirements and operate effectively.
• You have excellent verbal and written communication skills that cater for different audiences. You communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.
• You have working knowledge of security risk management frameworks and compliance practices. You have experience of conducting risk assessments of varying scope across a diverse organization.
• You maintain deep knowledge with common security standards and regulations (ISO27K, SOC, PCI, etc.) and can develop pragmatic approaches to solve for the requirements of those standards and regulations. You’re adept at identifying and delivering efficiency across those standards to maximize return on investment.
• You understand the fundamentals of secure operations in the cloud and in on-premise systems, and hold a current
• Familiarity with the Secure Development Lifecycle (SDLC) including modern practices such as CI/CD and test automation is highly desirable.
• Knowledge of organizational process improvement concepts and process maturity models (e.g., Capability Maturity Model Integration (CMMI) for Development).
• Knowledge of supply chain / manufacturing risk management standards, processes, and practices.
• PMP certification is strongly preferred.

• Seniority level
  Mid-Senior level

• Employment type
  Contract

• Job function
  Information Technology
• Industries
  Manufacturing

Referrals increase your chances of interviewing at National Consultants Professionals Ltd by 2x

Greater Toronto Area, Canada CA$177,377.20-CA$221,803.40 3 weeks ago

Toronto, Ontario, Canada CA$180,000.00-CA$180,000.00 2 weeks ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.