Share this Job
Apply now »

IT Manager, Security Operations

Date:  15-Nov-2022
Location: 

Barrie, ON, CA Burlington, ON, CA Brantford, ON, CA Brampton, ON, CA Calgary, AB, CA Mississauga, ON, CA

 

Open up to the Possibilities!
At Purolator, you’ll be proud knowing you’re working for a Canadian company that truly values its employees. And it’s community. This is an exciting and evolving industry and we’re leading the change as we strive to deliver the future. Here you will be empowered to help move the business forward. Each and every day. Are you open to the possibilities?

Successful applicants for this position must be fully vaccinated against COVID-19 as a condition of employment. If you have questions, please feel free to ask during your interview.

Workplace Environment:        

 

This role can sit in the following cities:    Barrie, Brampton, Brantford, Burlington, Calgary, Mississauga                         

Job Description

The Role 

The IT Manager, Security Operations will be responsible for the overall end-to-end management of the overall company’s cybersecurity. This position will be required to develop and lead the Security Operations team in the execution of the company’s cybersecurity strategy for the delivery of secure, scalable infrastructure systems and services. This role will work directly with management and other technical teams in support of PCI audits, corporate audits and external audits. The IT Manager, Security Operations develops and implements strategic, technical and operational security/infrastructure controls that are properly aligned with business goals and objectives.

 

Responsibilities:

  • This position manages and works with the Security Operations teams responsible for maintaining cybersecurity across the enterprise.
  • This role will be responsible for providing information to management regarding the negative impact on the business caused by theft, destruction, alteration, or denial of access to information.
  • Ability to provide day-to-day management to Cybersecurity personnel in an IT Department in multiple office and data center locations.
  • The managers responsibilities will include training of employees; planning, assigning, and directing work; appraising performance; addressing complaints and resolving issues.
  • Manages, coordinates, and prioritizes the schedules, projects, and activities of direct reports.
  • Works with management to coordinate responses to information security control testing and vulnerability scans, audits, and assessments. Implements practices to optimize this process across the organization for the proactive reduction of organizational risk.
  • Manages security vendors including Approved Scanning Vendors, Managed Security Service Providers, and external pen test vendors.
  • Executes and improves the core functions of the Cybersecurity Operations Center, including threat detection and prevention, incident response, systems and network security monitoring, forensics, vulnerability management, and data loss prevention at enterprise scale.
  • Responsible for creating and maintaining dashboards that monitor infrastructure security and DLP KPIs.
  • Researches, develops, and keeps abreast of tools, techniques, and process improvements in support of security detection and analysis.
  • Serves as an internal information security consultant on information security projects/initiatives, automation of security testing.
  • Participates in major new system implementation projects to ensure that appropriate security controls are built into systems prior to production cutover.
  • Works closely with the IT Architecture team to design and implement automated security controls in DevSecOps methodology along with the associated tools and processes.
  • Ensures ongoing system and network health checks on identified high risk network segments, systems, and applications as well as follow up remediation.
  • Uses tools and techniques to collect, analyze and aggregate data loss prevention, security information event management, privileged account management, and data encryption
  • Ensures the monitoring of intrusion detection and security information management systems to discover and mitigate malicious activity on networks.
  • Works with Investigation team(s) on serious security violations.
  • Manages team to conduct root cause analysis for operational security issues.
  • Drives process improvement and control implementation projects in coordination with the other support teams.
  • Acts as a catalyst for change to improve security processes that benefit the organization.
  • Responsible for reporting risks that are identified to the appropriate team and/or management. Additionally, responsible for managing, monitoring, and reporting risks within the scope of your work area, to include, but not limited to Information Security risks.

 

Requirements: 

  • In depth knowledge of PCI/DSS, SOC audits, and other industry audits.
  • In depth knowledge of security processes.
  • In depth knowledge of incident response, investigative, and forensic procedures.
  • In depth knowledge of security tools including threat detection and prevention, systems and network security monitoring, vulnerability management, certificate services, data loss prevention (DLP), endpoint protection (IDR/EDR), certificate services, web application firewalls (WAFs), and SIEM technologies.
  • Broad knowledge of Identity Access Management, including PAM/PIM.
  • Broad knowledge of enterprise systems, operating systems, and hardware platforms.
  • Broad Knowledge of Cloud Infrastructure.
  • Basic knowledge of financial models and budgeting.
  • Ability to understand the long-term ("big picture") and short-term perspectives of situations.
  • Ability to apply multiple technical solutions to business problems.
  • Understanding of the political climate of the enterprise and how to respond to political challenges.
  • Ability to work under pressure with minimal supervision, managing multiple projects simultaneously.
  • Preferred Certifications: CISSP, PCI ISA, CISM


The Candidate 

Ideal candidates would have: 

  • Bachelor’s degree in Information Technology plus minimum of 8 years of related experience including at least 3 years of relevant supervisory experience or equivalent training and/or experience.
  • Previous work experience should include management roles delivering at an elevated level and focused on building high-performing teams.
  • Experience in managing technology vendor relationships and end-to-end projects.
  • Strong verbal and written communication skills, as well as excellent organizational skills.
  • Excellent interpersonal skills in areas such as teamwork, facilitation, and negotiation.
  • Excellent analytical and technical skills.
     

What We Offer

Purolator is one of Canada’s best employers (#5 in 2022 according to Forbes), offering an industry leading total compensation, and a professional, satisfying work environment.

  • Working with a modern technology stack in a team that values innovative ideas to enhance our process
  • A diverse and inclusive team environment that is friendly to family commitments.
  • Hybrid working environment. This position is flexibly remote. This means that this position is currently remote due to COVID. Once we make the transition back into the office, there may be flexibility for a hybrid schedule of both remote and in-office work.
  • Make a difference in the lives of hundreds of thousands of Canadians per day who use Purolator’s services.

 

 

 

 

POSTING DETAILS
Location:                    530 - Corporate  
Working Conditions: Office Environment 

Posting Number:         [[id]]

Reports to:                  Director IT Operations & Governance 
---

We are aware of a fraudulent website that appears to mimic the Purolator careers page. Official job postings from Purolator are shared on www.purolator.com/careers or https://careers.purolator.com. Please ensure any job applications are made directly on these websites. Please note, Purolator will never ask an applicant to make a financial transaction for equipment as part of its recruitment process.

Purolator is an equal opportunity employer committed to diversity and inclusion. We consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, Aboriginal/Indigenous status or any other factors considered discriminatory. If you require an accommodation during the recruitment process, we will work with you to meet your needs.

We recognize that our employees and their families are key stakeholders. We will only be successful as a business if we provide our employees with a safe and healthy workplace and we have the right people in the right roles with the support they need to succeed. We hire for attitude and train for skills.  To learn more about us and our values, go to www.purolator.com.

At Purolator, every day is an opportunity for our employees to connect with one another and with our customers to help make a positive impact in the communities where we live, work and play.

 

 


Job Segment: Operations Manager, Information Security, Business Process, Data Center, Manager, Operations, Technology, Management

Apply now »