Director, Cybersecurity Operations

We are banking at another level.

Choosing BDC as your employer means working in a healthy, inclusive, and skilled workplace that puts forward the best conditions to bring together unique teams where employees are empowered to act. It also means being at the centre of ambitious economic and financial projects to see further and to do things differently, to fuel the success of Canadian entrepreneurs.

Choosing BDC as your employer also means:

• Flexible and competitive benefits, including an Employee Savings and Investment Plan where BDC matches part of your voluntary contributions, a Defined Benefit Pension Plan, a $750 wellness and health care spending account, to name a few   

• In addition to paid vacation each year, five personal days, sick days as necessary, and our offices are closed from December 25 to January 1

• A hybrid work model that truly balances work and personal life

• Opportunities for learning, training and development, and much more... 

POSITION OVERVIEW

Reporting to the Vice President, Information Security, you will be responsible for the Security Operations Center (SOC) by providing leadership for all of BDC's operational cybersecurity processes and initiatives. To do this, you will lead and supervise a team of internal employees as well as

external partners.

CHALLENGES TO BE MET

• Lead cybersecurity operations including event and incident management, threat intelligence management, vulnerability management, investigation management, test and simulation management, protection control management (endpoints, DLP, flows/networks, etc.) and identity and access governance;

• Pilot the planning of activities and the management of resources (internal and external) in order to ensure the level of services required 24x7x365;

• Pilot the performance and development of your team;

• Pilot performance and the relationship and performance of external partners;

• Pilot the production of performance indicators related to security operations.

• Be responsible for the effectiveness, efficiency and user experience of the various cybersecurity operational capabilities;

• Be responsible for the evolution of cybersecurity operational capabilities in a logic of continuous improvement of our controls and to adapt them to changes in the threat landscape as well as BDC's business and technological ecosystems;

• Be responsible for ensuring that all operational processes, procedures and playbooks are documented, kept up to date and mastered by stakeholders;

• Lead the tactical/operational cell during major cybersecurity incidents;

• Manage and coordinate cyber investigations and investigations in collaboration with legal affairs, human resources, the risk management team and the various business or IT teams required;

• Manage the human, technological, informational and financial resources under his/her responsibility;

• Represent the Vice-President on governance bodies and committees within his/her scope

• Manage relationships and cooperation with IT operations and second line of defense teams as part of our shared goals;

• Monitor new trends and best practices in the industry and the market in terms of operational cybersecurity;

• Provide vision and tactical and strategic recommendations on the organization's security capabilities;

• Put your expertise and that of your team to work and collaborate with the various business units.

WHAT WE ARE LOOKING FOR

• Bachelor's degree in information technology or any relevant combination of experience and/or education;

• More than 10 years of total experience in information technology, including 5 years in cybersecurity operations;

• More than 5 years of relevant experience in cybersecurity operations and/or IT operations management;

• Recognized cybersecurity certifications (e.g., CISSP, CISM, etc.) – In the event that the selected incumbent does not have one, he/she must commit to obtaining one during his/her first year in the position;

• Excellent analytical and problem-solving skills;

• Excellent interpersonal and interpersonal skills

• Excellent leadership skills, team leadership and partners

• Excellent knowledge of operational security processes;

• Good ability to manage critical situations with serenity;

• Ability to exercise good judgment and be tactful when resolving sensitive situations;

• Good knowledge of NIST and MITRE ATT&CK standards;

• Good knowledge of protection technologies (EDR, DLP, IPS/IDS, FW..) and detection (SIEM);

• Good knowledge of infrastructure, operating systems and networking;

• Excellent communication skills, both verbal and written, and ability to adapt speech to the audience;

• Bilingualism (English and French) oral and written;

• Due to the nature of the position and the extended hours of operation, the incumbent must be flexible and will be able to make themselves available, as required, after regular business hours and on weekends.

Proudly one of Canada’s Top 100 Employers and one of Canada’s Best Diversity Employers, we are committed to fostering a diverse, equitable, inclusive and accessible environment where all employees can thrive and feel empowered to bring their whole selves to work. If you require an accommodation to complete your application, please do not hesitate to contact us at accessibility@bdc.ca.

While we appreciate all applications, we advise that only the candidates selected to participate in the recruitment process will be contacted.