IT Security Manager

Brandt Corporate Services Ltd. is seeking a seasoned IT leader to assume the role of IT Security Manager at our in-office location in Regina, SK. The IT Security Manager ensures that the risk to the organization’s information posed by a variety of cyber threats (cyber-attacks; theft or corruption from within; etc.) is minimized. The IT Security Manager ensures that when cyber-attacks occur or data are stolen or compromised, these incidents are dealt with promptly and effectively and the chance of that particular type of incident recurring is minimized.

Duties and Responsibilities

• Help to design, implement, and maintain the organization’s cyber-security plan.
• Responsible for development, implementation, and ensuring ongoing security of on-premises, cloud-based, and hybrid strategies
• Lead and facilitate the cybersecurity governance structure for the organization, including reporting of KPIs, events, risks, and mitigations to executive leadership
• Conduct continuous assessment of current IT security practices and systems and identify areas for improvement
• Cultivate relationships with executive and departmental leaders to facilitate cybersecurity program compliance and provide input to decisions that may affect cybersecurity
• Lead planning and implementation of a security awareness training program
• Lead and facilitate security audits, risk assessments, and 3rd party testing and report results or gaps to senior management
• Provide oversight, leadership, and management of the IT security department, including developing staff
• Contribute to business continuity and disaster recovery planning
• Develop and maintain incident response plans and lead response for all cybersecurity-related incidents
• Maintain awareness of the current state of cybersecurity through reading, training, and security conferences
• Recommend security enhancements to IT Management.

#LI-ONSITE

• Practical experience with common information security frameworks (i.e., COBIT, NIST, etc.)
• Experience with risk assessment procedures, policy formation, tiered administration, role-based access, and relevant technologies
• Deep understanding of cyber security and the relationship between threat, vulnerability and information value in the context of risk management
• Experience in developing information security policies and procedures and successfully executing cybersecurity programs
• Proven success in transforming cybersecurity programs to align with leading practices while managing organization change
• Experience in securing on-premises, cloud and hybrid-cloud environments
• Experience in incident triage and forensics a plus
• Experience in securing industrial control systems environments a plus
• Bachelor's degree in Computer Science, Management Information Systems or related field
• 10+ Years relevant experience with a minimum of 5 years in senior leadership roles