Manager, Cyber Security

The Cyber Security Manager reports to the CIO and is responsible for the management, adherence and of the development of client’s security policies, standards, guidelines and processes. He will lead security projects. Partners with senior IT leadership and third parties to plan and execute the enterprise security strategy and oversee security operations. Acts as a thought leader by identifying, prioritizing and implementing key security initiatives. Establishing key metrics, facilitating working team meetings, identifying and helping to mitigate risks and issues. As needed, supports due diligence efforts and manages integration with key partners.Develop, implement and monitor the cybersecurity programDevelop, implement and monitor security policies, standards, guidelines, process and proceduresDevelop, implement and monitor enterprise security awareness programOversight, planning and execution of any required vulnerability audits, penetration tests or IT auditsLead all security projectsLead IT/business teams when responding to security incidentsPerform security due diligence on all technology third partiesManagement of IT security partners, key stakeholders, vendors or third-party service and solution providersCreate reports for management on security postureControl budgets for security operations and monitor expensesAttend meetings with other managers to determine operational needsImprove the detection, escalation, containment and resolution of incidentsMaintain knowledge of threat landscape by monitoring OSINT (Open source intelligence) and related sourcesProvide expert opinion on security matters on an ad-hoc basisRecommend improvements to enhance the security posture of the enterpriseRequired :
Education, Experience and Technical skillsMinimum of 7 years’ experience in computer securityMinimum 10 years’ experience in information technologyo Asset:
one certification among GIAC (GSEC, GCED, GCIA or GCIH), CompTIA (Security+ or CASP), CEH, SSCP, CCNA-Security, CISA, CISM or CISSP.Bilingual is an assetBachelor's degree in Computer Science or related fields or equivalent experienceStrong knowledge of application and infrastructure securitySecurity best practices knowledge as part of the SDLC (Software Development Lifecycle) processExperience securing Linux, Windows and TCP/IP networksExperience with Cloud Environments (Azure, Amazon, Google)Experience with the configuration and operations of SIEM, IDS/IPS and NGFWHost and Network Forensics, an asset;
Enterprise Security knowledge, an asset;
Strong knowledge of access control/ user account management (e.G. AD/LDAP) and Role-based, and Rule based access controlSoft Skills and CompetenciesAnalyticalConceptualProblem solving skillsAbility to build strong relationships with senior leadership and lead through influence Strong project management, program management and analytical skills while working within tight deadlines and multiple projects.