Senior Manager Cyber Security Operations Jobs

Proven experience and proficiency in Incident Management and Response

Experience in security device management and multiple SIEM platforms

In-depth knowledge of security concepts such as cyberattacks and techniques, threat vectors, risk management, incident management, etc.

Experience in performing vendor management

Stay up-to-date with the latest trends in cybersecurity and regulatory requirements.

Minimum five years’ experience in a similar role

Strong SDLC knowledge and experience in tailoring it to different project initiatives.

Implementation Experience managing multiple and concurrent workstreams within a large program.

Experience managing cyber security projects.

Experience with agile, waterfall, iterative and hybrid delivery methodologies.

Experience managing vertical and horizontal communications to cross functional groups of more than 25 stakeholders, including VPs, Sr. VPs and above.

PMP and/or Prince 2 (or equivalent)Certifications.

Strong, collaborative team of energetic and experienced security experts

Technical hands-on experience implementing a significant number of Cyber Security related projects

Technical hands-on experience implementing Cloud security solutions and controls on Azure, AWS, or similar cloud service provider.

Technical experience in implementing security hardening based on CIS or industry standards including API, network, server, cloud, etc.

Technical experience in designing and implementing infrastructure components required for Cyber-related projects.

Experienced working with the industry recognized frameworks and standards including NIST, ISO, PCI, etc.

Bachelor’s Degree in Management Information Systems, Information Security, Computing, and Information Systems or equivalent experience

Manages the Cyber Controls assessment analysts in their role conducting and tracking detailed assessments for Infrastructure and Application assets.

Relevant certifications required CISA, CISSP, and CRISC

Expert knowledge of ISO 27002, NIST 800 series, COBIT control framework.

Required 3+ years of financial services or comparable multi-industry consulting experience.

A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable.

Three years of people management experience.

Deep knowledge of SIEM, security tooling across the OSI stack, threat hunting, incident response, and incident management

Develop and report on OKR's and performance indicators related to vulnerability management and incident management

Experience with cloud security features and vulnerabilities and remediation

Fitness benefits (offering varies by location)

Be responsible for the Security Operations Center team. Collaborate with senior leadership to develop, as necessary, follow-the-sun incident response capabilities

8 + years of Project Management Experience

Experience managing an Email Security Assessment and Deployment Project. (Must have)

Experience managing a Web Security Assessment and Deployment Project. (must have)

Experience managing a Micro Segmentation Security Assessment and Deployment Project (must have)

Experience managing multiple projects running concurrently.

Develop and track the status of each phase of the workstream.

Cyber, Technological and Architectural/Strategic Risk Knowledge

Critical thinking, thought leadership, problem solving and creativity. Commitment to continued self-development of technical and non-technical knowledge

Must possess strong communication (oral and written), listening, presentation & facilitation skills.

Learning agility as evidenced by a commitment to continued self-development of business and technical knowledge.

3+ years of architecture, design and hands-on implementation experience.

5+ years experience in consulting and advisory roles. Experience in the Security and Information Technology Industry.

Stay up to date with current adversary tactics and apply this knowledge to internal operational countermeasures.

Utilizing proven Incident Response skills including host/network forensics, log analysis, timeline correlation;

Conduct monitoring, and in some cases lead in-depth analysis of Security Operations Center (SOC) oriented alerts.

Update and maintain a repository of self created security alerting rules.

Brief peers and above on current Threat Response themes derived from the SOC.

Participate, and in some cases lead long term security operation projects with peers.

Relevant Experience in a Management-Leadership Role - direct management responsibility for 5-8 security technical staff

Requires vendor management and working with Supply Chain to ensure pricing structures, vendor governance and risk management practices are adhered to.

Further developing and operationalizing the organizations vulnerability management program, patch management program and penetration testing program.

Security Incident Management: Accountable for security incident management and managing an on-call schedule 7 x 24 x 365.

Ensure effective response processes and management of security events, incidents, emergencies, and crisis to timely conclusion.

Participate in mock drills and simulations for security incident management.

Knowledge and experience in risk management and internal controls preferred.

Maintain job knowledge to ensure expertise on Governance/Regional Entity Operation & Planning (693) Compliance standards and requirements

Experience with corporate policies and procedures and/or technical writing skills.

Provide staff training on regulatory requirements and operational impacts of those requirements.

Demonstrated knowledge and understanding of Governance standards with an emphasis on the Operation & Planning (693) Standards.

Proven knowledge of Microsoft SharePoint, Excel, Word, PowerPoint, and Project software and working knowledge of power plant control systems, SCADA systems.

Extensive (over 5 years) project management experience delivering cyber projects.

Demonstrated superior project management skills and stakeholders management.

Report on status, risk management, budget/cost, success criteria and reporting as required

Project excellence spanning Governance, Definition, Planning, Project Management & Control, Financials and Close-out.

Strong in process management and controls to minimize risks exposure

Manage, deliver and ensure delivery quality using appropriate methodology.

Security operation - Vulnerability Management

Security operation - Threat management

Notify designated product managers of new or suspected critical or high risk vulnerabilities in enterprise systems

Manage and configure web application firewalls working with product development teams to define protection rules to mitigate identified vulnerabilities

Configure and manage Advanced Threat Protection modules within the TELUS Health Unified Threat Management security devices

Define and implement tools and processes to drive enhanced threat management, vulnerability management, threat prevention, security monitoring and incident response

Preferred qualifications, such as CISSP, SANS, and/or Security+ certifications.

Three or more years of experience working in Security Operations Incident Response and Triage

Experience improving security within a large enterprise leveraging Microsoft solutions and technology.

Strong problem-solving / troubleshooting skills, and deep technical understanding of modern cybersecurity threats.

Deep knowledge of Microsoft ecosystem and Microsoft’s suite of security tools

Strong SaaS, PaaS, and IaaS skills

Knowledge of governance, risk and compliance (GRC) tools an asset, IT security certification, an asset

Candidates require strong leadership skills working in dynamic and cross-functional teams for large-scale and multi-national engagements.

2+ years progressive experience in technology disciplines related to cybersecurity

5+ years of experience in Databases such as SQL

Working knowledge in Business intelligence tools (i.e Power BI etc)

Strong background in data analysis, statistics, security metrics and knowledge of common security frameworks and standards (e.g., NIST, CIS)