Open up to the Possibilities!
At Purolator, you’ll be proud knowing you’re working for a Canadian company that truly values its employees. And it’s community. This is an exciting and evolving industry and we’re leading the change as we strive to deliver the future. Here you will be empowered to help move the business forward. Each and every day. Are you open to the possibilities?

Successful applicants for this position must be fully vaccinated against COVID-19 as a condition of employment. If you have questions, please feel free to ask during your interview.

Workplace Environment:        

This role can sit in the following cities:    Barrie, Brampton, Brantford, Burlington, Calgary, Mississauga                         

Job Description

The Role

The IT Manager, Security Operations will be responsible for the overall end-to-end management of Purolator’s cybersecurity. This position will be required to develop and lead the Security Operations team in the execution of the company’s cybersecurity strategy for the delivery of secure, scalable infrastructure systems and services. This role will work directly with management and other technical teams in support of PCI audits, corporate audits and external audits. They will develop and implement strategic, technical and operational security/infrastructure controls that are properly aligned with business goals and objectives.

ACCOUNTABILITIES

• Provide leadership, vision, and direction to the security operations team whose activities include but are not limited to:
  • Continuous Monitoring / SIEM
  • Incident Response
  • Active Defense
  • Threat Hunting
  • Data Loss Prevention (DLP)
  • Email Security
  • Malware / Patching compliance
  • Perimeter Protection
  • Network Scanning / Vulnerability Management
  • Maintain a Threat Intelligence program
  • Conduct Security Reviews (e.g. Pen Tests)
  • Maintain an Asset Inventory
• Develop, implement, and ensure the consistent application of security standards across the organization
• Monitor, manage, and deploy security controls as appropriate to support business needs while minimizing risk
• Oversee the close management and analysis of security information and events, in collaboration with the Security Compliance team
• Coordinate with Business Solution Delivery and IT Operations team to assess, implement, and monitor IT-related security risks/hazards
• Develop, implement, and maintain processes to monitor and remediate threats & vulnerabilities
• Develop, implement, and maintain an incident response plan
• People management:
  • Facilitate and encourage collaboration and work as one team
  • Support business and personal goals, including performance review and evaluation
  • Manage staff, including recruitment, supervision, career development, and performance evaluation
  • Ensure career planning, training, and succession
  • Build a cohesive team, mentor, and coach less experienced team members

RESPONSIBILITIES

• Manage direct reports and technical teams who need advice and support in the Business Solution Delivery teams and IT Operations
• Provide 24×7 support (as required) to support escalation / remediation of security incidents
• Ensure that processes are in place and that the team is appropriately skilled to respond to & contain security incidents
• Establish security operations metrics with a focus on business impacts
• Establish a threat intelligence process that includes contextualized information to better assess the risk to Purolator. This includes developing and maintaining a process to identify software used within Purolator
• Coordinate with Risk Management team when new threats and/or vulnerabilities are identified
• Contribute to external and internal communications and information-sharing in the event of a privacy breach or incident

QUALIFICATIONS

• Client Management: experienced in effectively interacting and communicating with business partners
• Security and Risk Management: knowledge of information security and risk control frameworks such as:
  • NIST
  • COBiT
  • ISO 27001
  • ITIL
  • ISO 31000
• Knowledge of technological trends and developments in the area of information security and risk management

CERTIFICATIONS

• Academic: undergraduate degree in engineering, computer science, business, or equivalent (required)
• Graduate degree in Business Administration (MBA) (Asset)
• ITIL foundations (Asset)
  • CISSP, GCIH, CISM, CISA, CRISC, or other information security credentials, is an asset

EXPERIENCE

• 8 – 10 years’ experience in one or more technical areas of Information Security
• 5 – 10 years’ technical leadership and people management experience
• Experience with leading the response to incidents, crises, and investigations with sensitivity and tenacity

GENERAL SKILLS – ABILITIES

• Exceptional interpersonal skills, and proven to flourish working in a fast-paced environment
• Ability to work effectively in a cross-disciplinary team, across multiple projects and multiple locations
• Sharp analytic and problem-solving capabilities that go beyond strict technical expertise
• Broad IT knowledge and strong level of familiarity with a wide range of technologies and IT practices

What We Offer

Purolator is one of Canada’s best employers (#5 in 2022 according to Forbes), offering an industry leading total compensation, and a professional, satisfying work environment.

• Working with a modern technology stack in a team that values innovative ideas to enhance our process
• A diverse and inclusive team environment that is friendly to family commitments.
• Hybrid working environment. This position is flexibly remote. This means that this position is currently remote due to COVID. Once we make the transition back into the office, there may be flexibility for a hybrid schedule of both remote and in-office work.
• Make a difference in the lives of hundreds of thousands of Canadians per day who use Purolator’s services.

POSTING DETAILS
Location:                    530 - Corporate  
Working Conditions: Office Environment 

Posting Number:         60183

Reports to:                  Director IT Operations & Governance 
---

We are aware of a fraudulent website that appears to mimic the Purolator careers page. Official job postings from Purolator are shared on www.purolator.com/careers or https://careers.purolator.com. Please ensure any job applications are made directly on these websites. Please note, Purolator will never ask an applicant to make a financial transaction for equipment as part of its recruitment process.

Purolator is an equal opportunity employer committed to diversity and inclusion. We consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, Aboriginal/Indigenous status or any other factors considered discriminatory. If you require an accommodation during the recruitment process, we will work with you to meet your needs.

We recognize that our employees and their families are key stakeholders. We will only be successful as a business if we provide our employees with a safe and healthy workplace and we have the right people in the right roles with the support they need to succeed. We hire for attitude and train for skills.  To learn more about us and our values, go to www.purolator.com.

At Purolator, every day is an opportunity for our employees to connect with one another and with our customers to help make a positive impact in the communities where we live, work and play.