IT Manager, Security Operations

Date:  14 Feb 2024
Location: 

Mississauga, ON, CA

Posting Date:                                 
Posting Number:                          63674   

Work Location Type:                     
Job Code:                                      508 
Location:                                       Mississauga  
Reports to:                                    Director IT Ops and Governance 

 

 

 

It’s not a package. It’s a promise®.

 

As Canada’s leading integrated freight, package, and logistics provider, we’ve been helping promises get where they need to be for more than 60 years. How does the magic happen? The journey starts with you. The places we go, the elements we brave, the promises we deliver – it’s all possible because of our people. So, whether you’re looking to build new skills, make an impact in your community, or inspire your team, we go there for you.

 

 

The Role

 

The IT Manager, Security Operations will be responsible for the first line of defense by building and leading the Security Operations practice part of Purolator’s cybersecurity. This position will be required to develop and lead the Security Operations team in the execution of the company’s cybersecurity strategy for the delivery of secure, scalable infrastructure systems and services. This role will work directly with management and other technical teams in support of cloud operations, product teams and risk/audit tasks. They will develop and implement strategic, technical, and operational security/infrastructure controls that are properly aligned with business goals and objectives.

 

ACCOUNTABILITIES

 

  • Provide leadership, vision, and direction to the security operations team whose activities include but are not limited to:
    • Continuous Monitoring / SIEM
    • Incident Response
    • Active Defense
    • Threat Hunting
    • Data Loss Prevention (DLP)
    • Email Security
    • Malware / Patching compliance
    • Perimeter Protection
    • Network Scanning / Vulnerability Management
    • Maintain a Threat Intelligence program
    • Maintain an Asset Inventory
      • Identity and Access Management
  • Support the development, implementation, and ensure the consistent application of security standards across the organization
  • Monitor, manage, and deploy security controls as appropriate to support business needs while minimizing risk
  • Oversee the close management and analysis of security information and events, in collaboration with the Security Compliance team
  • Coordinate with Business Solution Delivery and IT Operations team to assess, implement, and monitor IT-related security risks/hazards
  • Develop, implement, and maintain processes to monitor and remediate threats & vulnerabilities
  • Develop, implement, and maintain an incident response plan
  • People management:
    • Facilitate and encourage collaboration and work as one team
    • Support business and personal goals, including performance review and evaluation
    • Manage staff, including recruitment, supervision, career development, and performance evaluation
    • Ensure career planning, training, and succession
    • Build a cohesive team, mentor, and coach less experienced team members

 

RESPONSIBILITIES

 

  • Manage direct reports and technical teams who need advice and support in the Business Solution Delivery teams and IT Operations
  • Provide 24×7 support (as required) to support escalation / remediation of security incidents
  • Ensure that processes are in place and that the team is appropriately skilled to respond to & contain security incidents
  • Establish security operations metrics with a focus on business impacts
  • Establish a threat intelligence process that includes contextualized information to better assess the risk to Purolator. This includes developing and maintaining a process to identify software used within Purolator
  • Coordinate with Risk Management team when new threats and/or vulnerabilities are identified
  • Contribute to external and internal communications and information-sharing in the event of a privacy breach or incident

 

QUALIFICATIONS

 

  • Client Management: experienced in effectively interacting and communicating with business partners
  • Security and Risk Management: knowledge of information security and risk control frameworks such as:
    • NIST
    • COBiT
    • ISO 27001
    • ITIL
    • ISO 31000
  • Knowledge of technological trends and developments in the area of information security and risk management

 

CERTIFICATIONS

 

  • Academic: undergraduate degree in engineering, computer science, business, or equivalent (required)
  • Graduate degree in Business Administration (MBA) (Asset)
  • ITIL foundations (Asset)
    • CISSP, GCIH, CISM, CISA, CRISC, or other information security credentials, is an asset

 

EXPERIENCE

 

  • 8 – 10 years’ experience in one or more technical areas of Information Security
  • 3 – 5 years’ technical leadership and people management experience
  • Experience with leading the response to incidents, crises, and investigations with sensitivity and tenacity

 

GENERAL SKILLS – ABILITIES

 

  • Exceptional interpersonal skills, and proven to flourish working in a fast-paced environment
  • Ability to work effectively in a cross-disciplinary team, across multiple projects and multiple locations
  • Sharp analytic and problem-solving capabilities that go beyond strict technical expertise
  • Broad IT knowledge and strong level of familiarity with a wide range of technologies and IT practices

 

What We Offer

Purolator is one of Canada’s best employers (#5 in 2022 according to Forbes), offering an industry leading total compensation, and a professional, satisfying work environment.

  • Working with a modern technology stack in a team that values innovative ideas to enhance our process
  • A diverse and inclusive team environment that is friendly to family commitments.
  • Hybrid working environment. This position is flexibly remote. This means that this position is currently remote due to COVID. Once we make the transition back into the office, there may be flexibility for a hybrid schedule of both remote and in-office work.
  • Make a difference in the lives of hundreds of thousands of Canadians per day who use Purolator’s services.

 

 

 

 

POSTING DETAILS
Location:                    530 - Corporate  
Working Conditions: Office Environment 

Posting Number:         63674 

Reports to:                  Director IT Ops and Governance 
 

We are aware of a fraudulent website that appears to mimic the Purolator careers page. Official job postings from Purolator are shared on www.purolator.com/careers or https://careers.purolator.com. Please ensure any job applications are made directly on these websites. Please note, Purolator will never ask an applicant to make a financial transaction for equipment as part of its recruitment process. 

Purolator is an equal opportunity employer committed to diversity and inclusion. We consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, Aboriginal/Indigenous status, or any other factors considered discriminatory. If you require an accommodation during the recruitment process, we will work with you to meet your needs. 
 
We recognize that our employees and their families are key stakeholders. We will only be successful as a business if we provide our employees with a safe and healthy workplace, and we have the right people in the right roles with the support they need to succeed. We hire for attitude and train for skills.  To learn more about us and our values, go to www.purolator.com.
 
 
At Purolator, every day is an opportunity for our employees to connect with one another and with our customers to help make a positive impact in the communities where we live, work and play. 

 

 


Job Segment: Operations Manager, Information Security, Cloud, Computer Science, Risk Management, Operations, Technology, Finance