Corporate Cybersecurity Manager

The Role

The Manager of Corporate Cybersecurity is responsible for the development, implementation, and oversight of a comprehensive cybersecurity program that protects the organization’s digital assets and ensures compliance with regulatory requirements. This role leads a team of cybersecurity professionals, manages risk assessments, incident response, and security operations, and collaborates across departments to promote a culture of cybersecurity awareness.

Essential Duties and Responsibilities

Cybersecurity Strategy & Program Management

• Develop and implement the organization’s cybersecurity strategy in alignment with business objectives.
• Manage the suite of corporate cybersecurity tools and related vendors to align with the cybersecurity strategy.
• Establish and maintain cybersecurity policies, procedures, and best practices.
• Conduct regular risk assessments and develop action plans to address identified vulnerabilities.
•  Ensure compliance with applicable laws, regulations, and standards (e.g., GDPR, SOC1&2, NIST, ISO 27001).

Security Operations & Incident Response

• Oversee the Security Operations Center (SOC) and ensure the organization’s networks, systems, and data are continuously monitored. 
• Manage the cybersecurity incident response process, including detection, containment, investigation, and recovery.
• Lead post-incident reviews to identify lessons learned and improve response capabilities.
• Implement and maintain threat detection tools, firewalls, endpoint security, and other security solutions.

Risk Management & Compliance

• Identify, analyze, and prioritize cybersecurity risks to the organization.
• Manage third-party risk assessments and ensure vendors comply with cybersecurity standards.
• Ensure compliance with industry regulations and frameworks (PCI, PIPEDA, SOX).
• Prepare and present cybersecurity KPIs and reports to senior leadership.

Team Leadership & Development

• Build, mentor, and manage a high-performing cybersecurity team.
• Provide ongoing training and development opportunities for team members.
• Foster a collaborative and inclusive team culture focused on continuous improvement.
• Establish key performance indicators (KPIs) to measure the effectiveness of the cybersecurity team.

Cybersecurity Awareness & Training

• Develop and implement an organization-wide cybersecurity awareness program.
• Collaborate with HR and other departments to ensure employees understand cybersecurity policies and best practices.
• Conduct regular phishing simulations and awareness campaigns.

Knowledge Skills and Abilities

• Leadership & Team Management: Ability to lead and develop a high-performing cybersecurity team.
• Communication Skills: Strong verbal and written communication skills to convey technical concepts to non-technical stakeholders.
• Collaboration: Ability to work effectively across departments and with external partners.
• Analytical Thinking: Strong problem-solving and risk assessment capabilities.
• Adaptability: Ability to stay current with evolving cybersecurity threats and technologies.

Work Environment

• Hybrid work environment (on-site and remote work options available).
• Occasional travel may be required to attend conferences and training.
• Availability during critical cybersecurity incidents escalations.

 Pre-employment Conditions

• Completion of a satisfactory Criminal Record Check

Experience

• 7+ years of experience in cybersecurity, with at least 3 years in a leadership role.
• Strong knowledge of cybersecurity frameworks (NIST, ISO 27001, CIS Controls).
• Experience managing security operations and incident response teams.
• Hands-on experience with security tools such as SIEMs, firewalls, endpoint protection, and vulnerability scanners.
• Knowledge of regulatory compliance requirements (e.g., GDPR, SOC1&2, SOX).

Education

• Bachelor’s degree in Information Security, Computer Science, or related experience.

Preferred Certifications

• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Ethical Hacker (CEH)
• GIAC Security Leadership (GSLC)