Senior Manager, Security Advisor Services

As the Senior Manager of Security Advisory Services (SAS), you will be responsible for leading all aspects of our client's Security Advisory Services functions. This will primarily involve the Security Advisory Services team who will be conducting Information Security Risk Assessments (ISRAs) on internal solutions and technology projects, Information Security Assessments on the Third Party suppliers, including their organizational security posture, their solutions and associated contract reviews. The Senior Manager of the SAS team will also manage a dynamic team to identify Cybersecurity Risks and manage IS Risks, and to provide IS related consulting requests, Firewall change requests, Proxy
exceptions, as well as a wide range of Security consulting requests for our technology and business teams.

You will ensure that cybersecurity risk is managed appropriately and within risk tolerance levels as defined by the organization. At the same time, you will continue to ensure the smooth day-to-day running of current cybersecurity risks and advisory functions while refining and maturing their operation, including expanding the Risk Advisory function to include Third Party Information Security Assessments. Additionally, the Senior Manager will also collaborate with other security stakeholders within Chief Information Security Officer (CISO) team and other IT teams to implement new security solutions that will strengthen the overall security posture.

You are resourceful, forward-thinking, collaborative, embrace learning/new technology and are comfortable in a fast-paced environment.

What you’ll do
- You will manage a team of Security Risk Advisors and Security Analysts to conduct ISRAs, Third Party Risk Assessments, manage and mitigate IS risks and conduct and other cybersecurity consulting requests within the technology and business teams
- Provide oversight on ISRAs, IS risk identification and risk management, processes, and tools for managing and reporting risks, and improve the quality of services.
- Identify gaps in existing processes and solutions then build and develop remediation plans to address when they’re identified
- Assist in the development of IS risk reporting including the ongoing development and improvement of Key Risk Indicators (KRIs)
- Provide leadership, mentoring, growth, and development opportunities to team members.
- Ensure all identified Cybersecurity risks are mitigated and are effectively communicated to stakeholders, and that all IS risks are managed with risk-prioritized timelines aligned with the client's risk appetite.
- Able to provide oversight on a wide variety of security solutions, projects, and emerging technologies.

Other key responsibilities include:
- Develop and adapt the overall cybersecurity risk advisory vision for the client as cybersecurity risk and threat-landscape industry changes.
- Provide the CISO management team with an in-depth analysis of information security trends, the status of identified risks, penetration testing and vulnerability scan results, security incidents, and the effectiveness of work activities.
- Help build and develop Third Party Information Risk Management Process to continuously assess suppliers security posture.
- Escalate IS Risks where and when appropriate with the respective stakeholders when IS Risk action plan target dates are not met.
- Address requests from stakeholders and partners on security related matters and take ownership of the same to conclusion and satisfaction

What you’ll bring:
 You are passionate in team leadership and enjoy the challenges of running a team of dynamic team of security professionals
 University degree in Computer Science, Computer Engineering or Information Technology
 Have minimum 10 years’ experience in various cybersecurity roles including, but not limited to,
cybersecurity governance, risk advisory, firewall, proxy, endpoint security, security governance,
or other security operations roles such as incident response or in SIEM operations.
 Additional technology experience such as application development, IT operations, or other
systems administration roles is beneficial .
 Background in conducting Information Security Risk Assessment is highly desirable.
 Have at least 5 years’ experience managing a Security, Risk Management, or IT Audit team.
 Holds an industry recognized Cybersecurity or IT risk certification (CISA, CISSP, Certified Ethical
Hacker, or a Cloud Security certification such as CCSP or CCSK is an advantage)



Advantages
Additional Information: Our client has an accommodation process in place to provide accommodations for employees with disabilities. If upon commencement of employment you require a specific accommodation because of a disability, please contact us so your appropriate accommodation can be arranged. This process applies throughout your career with us.

Responsibilities
What you’ll bring:
 You are passionate in team leadership and enjoy the challenges of running a team of dynamic team of security professionals
 University degree in Computer Science, Computer Engineering or Information Technology
 Have minimum 10 years’ experience in various cybersecurity roles including, but not limited to,
cybersecurity governance, risk advisory, firewall, proxy, endpoint security, security governance,
or other security operations roles such as incident response or in SIEM operations.
 Additional technology experience such as application development, IT operations, or other
systems administration roles is beneficial .
 Background in conducting Information Security Risk Assessment is highly desirable.
 Have at least 5 years’ experience managing a Security, Risk Management, or IT Audit team.
 Holds an industry recognized Cybersecurity or IT risk certification (CISA, CISSP, Certified Ethical
Hacker, or a Cloud Security certification such as CCSP or CCSK is an advantage)

Qualifications
What you’ll bring:
 You are passionate in team leadership and enjoy the challenges of running a team of dynamic team of security professionals
 University degree in Computer Science, Computer Engineering or Information Technology
 Have minimum 10 years’ experience in various cybersecurity roles including, but not limited to,
cybersecurity governance, risk advisory, firewall, proxy, endpoint security, security governance,
or other security operations roles such as incident response or in SIEM operations.
 Additional technology experience such as application development, IT operations, or other
systems administration roles is beneficial .
 Background in conducting Information Security Risk Assessment is highly desirable.
 Have at least 5 years’ experience managing a Security, Risk Management, or IT Audit team.
 Holds an industry recognized Cybersecurity or IT risk certification (CISA, CISSP, Certified Ethical
Hacker, or a Cloud Security certification such as CCSP or CCSK is an advantage)

Summary
What you’ll get
 Competitive rewards package including base compensation, eligibility for annual bonus,
retirement savings, share plan, health benefits, personal wellness, and volunteer opportunities.
 Exceptional Career Development opportunities.
 We’ll support your professional development education.

Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.

Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.