Information Security Lead Jobs in Manitoba

Information Security Certification or Association of Certified Fraud Examiners accreditation is an asset.

10+ years of relevant experience and are equipped to provide technical leadership to a larger team portfolio.

Advanced and highly-specialized knowledge of the business, processes, technology controls, security, fraud and risk issues.

Experience working on high-profile, complex and/or high-risk technology projects with significant impact to the organization.

Adaptable to adjust to new priorities based on market conditions

Ability to demonstrate technical leadership to a larger team portfolio

Maintain communication with clients, stakeholders, and senior management on relevant project updates.

Bachelors’ Degree in Project Management or Business Management

Experience in a higher education environment is a strong asset

Plan, schedule, and manage project timelines, dependencies, and milestones through the use of a project plan.

Proactively manage project risks, including the identification of mitigation strategies.

Prepare and manage the project budget and project charters.

7 years + of experience in a leadership role within the field of risk and security management.

Manage security awareness and training programs.

Develop and implement strategies and policies to mitigate potential vulnerabilities and protect the organization from security incidents (20%)

Ensure compliance with regulatory requirements through the work of the Line 1 Governance and Control team (20%)

Lead the Path-To-Green Program to improve the "Identity, Protect, Detect, Respond & Recover” capabilities of the Canadian Segment (20%)

Manage and lead several teams within the Risk and Security organization.

Project management experience related to information security assessment projects.

University Degree or College Diploma in Computer Sciences, Information Technology or a related field or equivalent combination of education and experience

Certified Risk Management Professional (CRMP)

Information Systems Security Management Professional (ISSMP)

Minimum of 3+ years of information security experience in either testing or consulting roles

Technical knowledge of security industry best practices and procedures

Demonstrated project management, organization, communication, and presentation skills

Experience with the SOC-2 certification process, for type 1 or type 2 documents

Demonstrated experience and skills in collaboration, teamwork, and problem-solving

4-8 years of experience in a compliance (or similar) role

Experience with a sub-processor listing within the GDPR context

Experience with regulatory framework/law/bodies such as GLBA, FS-ISAC, FSR, NIST, etc

3+ years experience in IT Security and Application technology management and support

Strong skills in report writing and project management.

In depth knowledge of IT Security principles, protocols, practices and industry standards

Experience performing risk assessments of cloud (SaaS) based technologies.

Experience with Amazon Web Services (AWS) is preferred.

Supports a balanced approach for security controls and support of governance practices.

Exceptional stakeholder management skills and experience building consensus in a highly diverse environment

Demonstrated knowledge of risk management frameworks and vulnerability management

Experience with core information security technologies and platforms including data loss protection, security incident and event management, vulnerability management, etc.

Actively identifies personal training and development needs, and proactively contributes to maintaining up to date knowledge, skills and abilities.

Security incident response and crisis management

Manage the information security posture of Dye & Durham through targeted investments and appropriate application of people, technology and processes.

Demonstrated organizational, project management and documentation skills

Prepare metrics and reports for management on the status of GRC objectives

Engage with management to identify possible resolutions to control weaknesses and opportunities for improvement.

Experience in a remote-first and distributed environment

Represent the GRC Team by participating directly with projects and provide guidance, requirements and documentation for security-related purposes when requested

Assist with developing configuration monitoring capabilities for SaaS and IaaS platforms

* Excellent organizational, project management, and follow-up skills

* Experience managing local and remote team members

* Strong Vulnerability Management background

CISA, CISSP, CISM, or other security certification(s).

Senior Manager of Information Security

* 5-10 years’ experience in IT Security, Risk and/or Compliance or equivalent

Proven project management skills (e.g. resource coordination, charter development, business requirements gathering, etc.).

Demonstrated experience implementing enterprise data management, processes, procedures and decision support.

Experience with financial and resource management.

Assist in the acquisition of new parking management opportunities, by recommending technology solutions that will meet stakeholder needs.

Experience with complex compliance requirements; PCI-DSS preferred (Payment Card Industry Data Security Standards).

Effectively plan and oversee vendor requirements and relationships, ensuring the best value and service for the organization.