Manager-Technology Security

Description

Drive Cyber Resiliency Through Governance, Risk Management, and Awareness

Join our team and what we'll accomplish together

In today's rapidly evolving digital landscape, the significance of cybersecurity cannot be overstated. At TELUS Security, we are fully committed to staying ahead of the curve and proactively addressing the most challenging security issues. We offer an environment where you’re encouraged to share and act on your ideas, while learning new things and building your career. In our flexible work environment you will connect remotely with team members across Canada.

We're seeking a dynamic Manager of Security Governance, Risk and Awareness (GRA) to join our Security Programs team. The GRA team creates and maintains TELUS Security policies and standards, supports various audit requirements, manages the end-to-end process of our security risk management framework and educates team members to continuously strengthen TELUS' culture of security.

As the Manager of the Governance, Risk and Awareness team, you will contribute to our mission of safeguarding assets and information and improving security and privacy outcomes.   Your innovative approach, strong communication and negotiation skills, and exceptional team leadership will be critical in helping TELUS to achieve desired risk outcomes and prevent costly incidents. You will collaborate with internal and external partners to mitigate evolving risks,  protecting TELUS and our customers from cyber threats.

What you will do

• Drive a high engagement, high performance culture and support team members to achieve individual and team goals 

• Evolve the framework for identifying and monitoring security risks throughout the organization

• Establish clear corporate policies, procedures, and roles to manage security risks effectively

• Increase the capability of team members to achieve collective security objectives through regular security awareness and training

• Provide regular updates on security progress to executives and effectively escalate issues when required 

• Leverage your business/ security expertise to further improve our security programs, working collaboratively across our leaders and stakeholders to develop, refine, enhance, and implement

• Stay up-to-date with the latest cyber threats, security trends, technologies, regulations and industry best practices

Qualifications

What you bring

• University degree in Technology/Cybersecurity or equivalent experience 

• 5+ years in information security consulting, compliance (PCI, SOC2, ISO 27001), or governance 

• Passion for automation, process improvement, and risk reduction through technology and people

• Strong understanding of enterprise IT security practices, frameworks, and architecture

• Leadership experience providing technical guidance to senior resources

• Excellent communication skills across technical and non-technical audiences

• Proven stakeholder management across departments, vendors, and executive leadership

• Ability to seek diverse perspectives, ask key questions, and remove barriers

Great to haves

• Experience developing short and long-term strategies with effective stakeholder communication and engagement

• Understanding and experience in Identity & Access Management, Telecommunications, or Cloud infrastructure

• Recognized security designation (CISSP, CISM, or equivalent)

• Working-level fluency in French

Advanced knowledge of English is required because you will most of the time interact in English with external parties (clients, suppliers, candidates, external partners, etc.); interact in English with internal parties (colleagues, internal partners, stakeholders, etc.); and work with IT tools whose interface is only accessible in English as part of this position's main responsibilities given its national scope.