We are an organization driven by purpose. We are obsessed about serving Canadians and we are deeply committed and passionate about protecting their hard-earned money when it matters most. We live our promises and commitments every day by serving Canadians as one, and we have their best interest at heart. We strive to build an inclusive, accepting culture with commitment, determination and a bias for action.
About the role
The Manager, Cyber Security (the “Manager”) is accountable for integrating and managing the IT Security functions at the CDIC. The Manager is responsible for the design, development, implementation, evaluation and continuous renewal of frameworks, standards, policies and procedures and systems including the assessment and review of areas of risk and priority. The Manager provides oversight and managerial direction for security planning ensuring the secure operation of CDIC’s information systems and technology infrastructure.
We trust you will be up to the challenge to:
Conceptualizes and oversees the implementation, evaluation and continuous enhancements of CDIC’s IT Security Framework, IT Security Architecture and all associated information security standards, guidelines, policies and procedures;
Manages and selects service providers and negotiates support agreements and consulting services in the areas of security. This involves liaising with vendors and contractors on behalf of the business units within CDIC for the delivery of solutions and service;
As a corporate technical authority on security matters, the Manager creates business cases regarding information technology security risks requirements recommending measures to improve the security function at CDIC;
Participates in technology decisions related to IT Security and makes recommendations;
Ensures the identification, formulation and implementation of new policies, processes and guidelines and monitoring tools to manage an information security program that minimizes security risks;
Manages the day-to-day operations of technical security and other application and infrastructure components as required;
Manages IT projects (security or otherwise) and provides expert guidance on security matters for other corporate projects;
Oversees the conduct of IT assessments, operational and compliance audits, penetration testing, Security Assessment and Authorization (SA&A) activities and special projects to evaluate compliance with security policies, standards and procedures;
Acts as the initial interface with senior management to resolve issues of compliance with security policies, standards, guidelines, processes in a timely, collaborative and harmonious manner;
Establishes relationships and collaborates with external agencies and other organizations to understand trends, issues and emerging IT security threats, to gain insight on the quality of CDIC IT security frameworks and recommends changes when warranted;
Serves as a change champion in ensuring a consistent, corporate-wide IT security focus is maintained across organizational boundaries;
Manages the financial budgets and human resources (staff and contractors) of the group including staffing, development and reporting ensuring a culture of engagement and high performance.
You take pride in your work and are passionate about having an impact. You face challenges head-on, are an excellent communicator, collaborator and act with integrity.
We trust you will bring your expertise:
Broad knowledge and experience in information technology security, technology development, systems applications and IT risk/threat assessment/management gained through formal education in a domain such as computer science or engineering
Minimum ten (10) years’ experience within the information technology industry with over three (3) years’ experience managing staff.
CISSP certification is a requirement
CSSP or equivalent cloud security certificate is an asset
Experience in analyzing, developing, monitoring and creating policies, procedures, processes and systems in support of IT security and risk management.
Knowledge of security and non-security infrastructure components, of web and remote access technologies, network and Internet protocols, authentication and encryption methodologies.
Strong analytic and diagnostic skills, to identify current and emerging issues and threats.
Strong time and project management skills and be able to balance and prioritize responses to critical IT security issues.
Skills as a change agent
Communication to work collaboratively with colleagues and clients across the organization to address risk and compliance issues in a productive and expedient manner while maintaining healthy relationships.
Knowledge of the finance, human resources and other corporate policies and processes required to manage designated resources.
Experience in leading, guiding and mentoring a team.
Language Requirements: BBB (Bilingualism French & English, intermediate level)
Eligibility to obtain a Secret level Security clearance
Internal Number: 2021-422
About Canada Deposit Insurance Corporation
CDIC is the federal Crown corporation that contributes to the stability of the Canadian financial system by providing deposit insurance against the loss of eligible deposits at member institutions in the event of failure.
Our Vision: Earning the trust of Canadians as a global leader in deposit insurance and resolution.