This job board retrieves part of its jobs from: Toronto Jobs | Emploi Préposé à l'Entretien Ménager | Work From Home

Opportunities exclusive to the people of Etobicoke

To post a job, login or create an account |  Post a Job

   jobs in etobicoke   

The only jobs board that show offers exclusive to the people of Etobicoke

Slide 1
Slide 2
Slide 3
previous arrow
next arrow

Senior Manager, Security Operations


This is a Contract position in Etobicoke, ON posted September 4, 2021.

Job DescriptionFounded in 1846, Laurentian Bank Financial Group (LBCFG) is a diversified financial services provider whose mission is to help its customers improve their financial health.

The Laurentian Bank of Canada and its entities are collectively referred to as Laurentian Bank Financial Group (the ””Group”” or the ””Bank””).

With more than 2,900 employees guided by the values of proximity, simplicity and honesty, the Group provides a broad range of advice-based solutions and services to its personal, business and institutional customers.

With pan-Canadian activities and a presence in the U.S., the Group is an important player in numerous market segments.This role sits within LBC Tech, a subsidiary of Laurentian Bank Financial Group.The incumbent is responsible for managing and maintaining the security operations, Audits and Incident Management.Reporting LineReports to: VP, CybersecurityDirect Reports: 4
– 6 ; Indirect Reports: 1
– 2ResponsibilitiesAudits (Internal and external): Liaise and coordinate with the Bank””””s various IT teams, Business, Audit, Risk, and Governance teams to ensure timely response & remediation to internal and external audit findings.

Ensure Incident management readiness, through process updates, playbooks creations, and tabletop exercises.Supervise the projects under Security Action plan to ensure within budget and on time delivery Ensure architectural review and approval of the IT services and systems at the time of procurement or renewalManage (Identify, prioritize, remediate, transfer or accept) IT risks with attention to the risk associated with Remote access, Vendors and 3rd parties.Review and enhance the effectiveness of security controls aligned with MITRE attack frameworks.

Guide Threat and vulnerability management team in profiling threat actors, continuously looking for Indicators of compromise (IOCs) and ensure effective remediation of threat by quarantining or deleting IOCs.Design, report, monitor Key Performance Indicators related to Security Vulnerabilities remediations, threat profiling and cyber threat mitigation.Manage external penetration testing and threat assessment with external vendors.

Analyse and action findings where required.Provide timely reporting on security compliance and make recommendations for increased security process efficiency and effectiveness.QualificationsMinimum Requirements :University degree in a related field (Computer Science, or engineering) and 6 to 10 years of experience, including 2 to 3 years of experience in a management role.

At least one but preferably a couple of the following certifications: CISM, CISA, CRISC and CISSP.Strong knowledge of NIST, MITRE ATT&CK framework and OWASPExperience in security threats and vulnerability management that include Threat profiling, assessing impact and remediation and reporting of vulnerabilities.Thorough understanding of networking (Switches, routers, firewalls, Load balancers, MFA) operating systems and intrusion detection/prevention and firewall technologies.Strong verbal and written communication skills; bilingual (English/French) is an asset.Desired experience and demonstrated expertise:The ideal candidate will have a solid foundation across wide variety of security tools and offerings along with experience with the following: Critical security elements such as active directory, domain controllers, DNS, DHCP, Security certificates, Application firewalls, load balancers and multifactor authentication .Host hardening, auditing, logging and monitoring, network security, SIEM deployments, security analytics, anomaly detections, Private Key Infrastructure (PKI)Data Lost Prevention, Privileged access management technologies (preferably CyberArk)Securing network and enterprise cloud applications Market understanding of industry trends for cybersecurity, risk & threat intelligence, and governance Proven implementation of cloud security models, particularly identity, network, and encryptionAdditional InformationWe are proud to be an equal opportunity employer and are committed to fostering an inclusive and accessible work environment that reflects the diversity of our customers and our communities.

We welcome and encourage applications from individuals from all groups, including Indigenous people, women, visible minorities, and persons with disabilities, regardless of race, national or ethnic origin, colour, religion, age, sex, sexual orientation, gender identity or expression, marital status, family status, genetic characteristics, disability or any other legally-protected ground.

Accommodations for persons with disabilities are available upon request for job applicants taking part in all aspects of the recruitment process.