Manager, Cyber Security

The Cyber Security Manager reports to the CIO and is responsible for the management, adherence and of the development of client’s security policies, standards, guidelines and processes. He will lead security projects. Partners with senior IT leadership and third parties to plan and execute the enterprise security strategy and oversee security operations. Acts as a thought leader by identifying, prioritizing and implementing key security initiatives. Establishing key metrics, facilitating working team meetings, identifying and helping to mitigate risks and issues. As needed, supports due diligence efforts and manages integration with key partners.

• Develop, implement and monitor the cybersecurity program
• Develop, implement and monitor security policies, standards, guidelines, process and procedures
• Develop, implement and monitor enterprise security awareness program
• Oversight, planning and execution of any required vulnerability audits, penetration tests or IT audits
• Lead all security projects
• Lead IT/business teams when responding to security incidents
• Perform security due diligence on all technology third parties
• Management of IT security partners, key stakeholders, vendors or third-party service and solution providers
• Create reports for management on security posture
• Control budgets for security operations and monitor expenses
• Attend meetings with other managers to determine operational needs
• Improve the detection, escalation, containment and resolution of incidents
• Maintain knowledge of threat landscape by monitoring OSINT (Open source intelligence) and related sources
• Provide expert opinion on security matters on an ad-hoc basis
• Recommend improvements to enhance the security posture of the enterprise

Required :

Education, Experience and Technical skills

1. Minimum of 7 years’ experience in computer security
2. Minimum 10 years’ experience in information technology

o Asset: one certification among GIAC (GSEC, GCED, GCIA or GCIH), CompTIA (Security+ or CASP), CEH, SSCP, CCNA-Security, CISA, CISM or CISSP.

1. Bilingual is an asset
2. Bachelor's degree in Computer Science or related fields or equivalent experience
3. Strong knowledge of application and infrastructure security
4. Security best practices knowledge as part of the SDLC (Software Development Lifecycle) process
5. Experience securing Linux, Windows and TCP/IP networks
6. Experience with Cloud Environments (Azure, Amazon, Google)
7. Experience with the configuration and operations of SIEM, IDS/IPS and NGFW
8. Host and Network Forensics, an asset;
9. Enterprise Security knowledge, an asset;
10. Strong knowledge of access control/ user account management (e.g. AD/LDAP) and Role-based, and Rule based access control

Soft Skills and Competencies

• Analytical
• Conceptual
• Problem solving skills
• Ability to build strong relationships with senior leadership and lead through influence
• Strong project management, program management and analytical skills while working within tight deadlines and multiple projects.