Senior IT Security Manager to improve their internal security policies & processes and oversee incident response activities

S.i. System's mining client is looking for a Senior IT Security Manager to improve their internal security policies & processes and oversee incident response activities.

This role will be crucial in protecting their applications from targeted application-layer threats. The successful candidate will oversee that all security programs, tools, and technologies are working correctly, providing the necessary protections to the company's computer systems, databases, and networks from cyberattacks or security breaches. They will also manage access control on company assets and data and monitor any unauthorized activity within the company network.

This is a permanent role. Open to candidates in Tumbler Ridge willing to work 2 weeks remote/ 2 weeks on-site or candidates from Vancouver willing to do 2 weeks remote, 1 week in the Vancouver office, 1 week travel to Tumbler Ridge BC.

Must Have:

• 3+ years of experience with IT Security Management
• Experience with mapping out security levels, hands-on incident response, end-point protection, vulnerability management, and security posture assessment.
• Experience with software applications/tools like CrowdStrike, Ironscale, Proof point, and CISCO ISE
• Advanced knowledge and experience supporting various operating systems and technologies (MS Exchange, Active Directory, Azure AD, SharePoint, SQL Database).
• Advanced networking experience with CISCO Switches/Routers and Gateways, Firewall. Experience with the network administration.

Nice to Have:

• Mining, Oil & Gas experience
• Bachelor Degree with a technical major, such as engineering or computer science, or equivalent
• Cisco certification
• Project Management certification is an asset (PMP)

Responsibilities:

• Working with the IT Operations team - Leads the strategy, roadmap, and development of a comprehensive Cyber/Application security program/policies.
• Implement role-based access control (RBAC). Implement and manage identity and access management systems
• Audit policies and controls continuously.
• Monitor all operations and infrastructure. This involves reviewing alerts and logs from different security systems to monitor the organization’s digital security footprint.
• Maintain all security tools and technology.
• Monitor internal and external policy compliance. Ensure that vendors and employees understand and operate within that cybersecurity compliance framework.
• Prepares and delivers metrics and reports for senior management to show efficiency and compliance of security functions.
• Detail out the security incident response program
• Train team members and employees on cybersecurity
• Ensure regulatory compliance. Liaise with a company's legal, auditing, and human resources teams to ensure security policy compliance.
• Create plans for disaster recovery in case of cyberattacks or security breaches.