Director, Information Security Jobs

At Parkland, our purpose is to Power Journeys & Energize Communities. We are a prominent independent supplier and marketer of fuel and petroleum products and a leading convenience store operator. As One Parkland team, we proudly serve diverse retail, commercial and wholesale customers across Canada, the United States, the Caribbean region, and South America. We power a growing family of locally known brands including M&M Food Market, Fas Gas Plus, Pioneer, RaceTrac, Superpumper, Ultramar, Chevron, Esso, and ON the RUN.
We recognize that diversity gives us an edge and inclusion propel us forward. We’re also a passionate team of down-to-earth achievers, committed to getting our customers, colleagues, and communities further, faster. As such, we welcome talented individuals that have a variety of perspectives, backgrounds, and industry experience who will contribute to the success of our One Parkland team.
Position Title: Director, Information Security
Team and Location: IT - Calgary, AB
Minimum Starting Salary: $ 156,240 /year
Position Summary:
This position will work with key all the divisions’ stakeholders (Parkland Canada, Parkland US, Parkland Trading, Parkland Refinery and Parkland International) to secure, enhance and coordinate information technology systems and services. This position will work in very close partnership with IT leaders and IT personnel from all areas. This position is responsible for planning, managing, and executing the protection of information assets by identifying, building and maintaining security controls, anticipating, investigating and resolving cyber security issues. This position is also responsible for ensuring compliance with relevant standards such as Canadian Sarbanes Oxley and PCI.
Key Responsibilities:
Cyber Security Governance & Program

• Initiate, oversee, and report on projects that will improve the Parkland department's security stance.
• Support the planning and the decision support process for the cyber security program, coordinating with a variety of internal stakeholders & and meeting regularly with senior executives.
• Responsible for coordinating with third parties, such as acquirers, necessary submissions (e.g. PCI, network security, etc.).
• Prepare the quarterly reporting to the Audit Committee of the Board of Directors.
• Develop a network with other Cyber Security professionals in Canada and in the industry.
• Research and evaluate new cybersecurity threats, IT trends, and cybersecurity controls.
• Maintain and update the company cyber and data policies, charter, and supporting artifacts such as framework, standards, plans, process, procedures, systems.
• Develop an evaluation method to assess the security program's strengths and identify areas for improvement.
• Manage, maintain and develop a team and a strategy to establish best-in-class capabilities for cyber security strategy, governance, and cyber risk management that leverage industry best practices.
• Design, implement, and maintain Parkland’s cyber security plans, including Emergency response.

Security Awareness

• Develop a culture that stays current on the latest cyber security trends, emerging technologies, and threats, and incorporate appropriate safeguards into Parkland’s cyber security program.
• Develop and support the cybersecurity IT users awareness program.
• Develop mechanisms to promote cybersecurity awareness; and,
• Collaborate with Corporate Communications to develop and distribute cybersecurity guidance and tips.

Cybersecurity Risk Management

• Prioritize risk issues at Parkland and align security programs and frameworks, transitioning to assessments of new initiatives to catch issues earlier and remediate gaps quicker.
• Collaborate and facilitate with IT and Risk and Control team to coordinate the IT components of both internal and external audits to ensure security programs follow relevant laws, regulations and policies.
• Provide risk-based activities prioritization, tracking, reporting, and liaising with development, operations and business unit resource teams to drive remediation steps.
• Manage the critical security incident response within the Parkland department which includes liaising with Senior Executives, IT directors and vendors, and test those plans.
• Ensure that IT security audits and penetration test are conducted periodically or as needed.

People Management

• Manage Cybersecurity Team staff including the hiring and onboarding process.
• Perform regular reviews with Security Team staff to reinforce their roles and ensure that all team members are working together towards the common goal of a cyber-secure environment at Parkland.
• Ensure Cybersecurity Team staff receive appropriate training to stay current.
• Mentor Cybersecurity Team staff to ensure continued growth.

Qualifications and Skills:

• Taking the initiative and working proactively with minimal supervision.
• Ability to effectively communicate and foster strong working relationships with all levels of staff within the organization as well as external contacts.
• Multitasking in high-stress situations while ensuring that no details are missed.
• Certified Information Systems Security Professional (CISSP) and Certified Information Security Auditor (CISA) certifications are assets. ITIL v3 and other IT, security, or management certifications are also an asset.
• Experienced in:
• Managing cyber security programs.
• Leading by example and ability to transfer your knowledge of cyber security best practices, tools, and processes to your team members and other staff.
• Establishing security processes to reduce business risk.
• Creating roadmaps that include architectural improvements and projects in order to reduce the security threat footprint.
• Bachelor's degree in Computer Science, Information Technology Systems Security, or related field. A Master's degree is an asset.
• Since the position entails working with sensitive and confidential information, a high level of integrity is required.
• Managing threat response; instituting cyber security and risk metrics for reporting.
• Demonstrated management skills, such as budget development and administration, policy development and implementation, personnel administration, and staff training and development.
• Familiarity with security frameworks (e.g. NIST Cybersecurity Framework, ISO, PCI, CSoX) and risk management methodologies.
• Minimum of 15 years in Information Security, ideally over 20 years.
• Ability to define solutions which can balance risks mitigations and business agility.
• Exercising good judgment when dealing with issues and ensuring a sense of urgency in their resolution while remaining calm and focused.
• Demonstrated ability to collaborate with other IT functions, and manage by influence.

We Offer:

• Participation in Parkland Pledge, an employee-driven charitable giving program.
• In-house learning and development opportunities, leadership training, international opportunities.
• A safety focused work environment and ongoing safety training.
• Discount Programs and Educational Scholarship Programs for family members.
• Our Performance-based Annual Incentive Plan, an annual bonus awarding your performance.
• A flexible group benefit plan that offers health and dental coverage choices to meet the needs of each unique employee. Inclusive of life and disability insurances, Health Care and Lifestyle Spending options, and a supportive Employee and Family Assistance Program.
• An employee referral program – earn up to $2000 for your referral.
• A share in our success through the Employee Share Purchase Plan and 100% company matching.

Please note:

• Candidates must be legally able to work in Canada at this time. Parkland regrets that it is unable to sponsor employment Visas.
• Please note that final candidates for this position will be required to undergo a confidential pre-employment background check which may include but not be limited to educational, criminal, credit, drug and alcohol and/or Fitness for Duty testing.
• Parkland Corporation is committed to the principles of Employment Equity. We strive to provide accessibility in employment to ensure equal access to employment opportunities for candidates, including persons with disabilities. Parkland Corporation will endeavour to provide accommodation to persons with disabilities in the recruitment process upon request. If you are selected for an interview and you require accommodation due to a disability, please notify us upon scheduling your interview.

This position will close on August 29, 2023 or when a successful candidate is found.