Intermediate Cybersecurity Lead to develop and enforce security policies, procedures, and controls that safeguard information assets and align with regulat

Our client is seeking an Intermediate Cybersecurity Lead to develop and enforce security policies, procedures, and controls that safeguard information assets and align with regulatory requirements (Edmonton; Onsite).

Must Haves:

• 7+ years in cybersecurity operations, including hands-on experience with security tools, technologies, and processes.
• Strong leadership and managerial skills, with a demonstrated ability to lead and motivate a team of cybersecurity professionals.
• In-depth knowledge of cybersecurity principles, practices, standards, and frameworks (e.g., NIST Cybersecurity Framework, ISO/IEC 27001).
• Experience with incident response, threat hunting, and digital forensics techniques and tools.
• Familiarity with cloud security, network security, and application security concepts and technologies.
• Experience with security risk assessment, vulnerability management, and security auditing methodologies.
• Industry certifications such as CISSP, CISM, CISA or GIAC certifications (e.g., GCIH, GCIA, GMON).
• Available to be Onsite in Edmonton, AB for the duration of the contract.

Responsibilities:

Team Leadership:

• Lead and manage a team of cybersecurity professionals, including security analysts, engineers, and incident responders.
• Provide mentorship, guidance, and support to team members to enhance their skills and capabilities.
• Foster a culture of collaboration, innovation, and continuous improvement within the cybersecurity operations team.

Security Operations Management

• Oversee the day-to-day operations of the cybersecurity infrastructure, including security monitoring, threat detection, incident response, and vulnerability management.
• Develop and maintain operational procedures and workflows for efficient security operations.
• Monitor security alerts and incidents, prioritize and coordinate response efforts, and ensure timely resolution of security incidents.

Security Tools and Technologies:

• Evaluate, deploy, and manage security tools and technologies such as SIEM (Security Information and Event Management), IDS/IPS (Intrusion Detection and Prevention Systems), endpoint protection, and threat intelligence platforms.
• Ensure the proper configuration, tuning, and optimization of security tools to maximize their effectiveness in detecting and mitigating cyber threats.

Incident Response and Threat Management:

• Develop and maintain an incident response plan and lead the response to security incidents, including containment, investigation, analysis, and recovery.
• Coordinate with internal teams and external stakeholders, such as law enforcement and third-party vendors, during incident response activities.
• Conduct post-incident analysis and review to identify lessons learned and improve incident response processes.

Security Policy and Compliance:

• Collaborate with the compliance and risk management teams to ensure adherence to regulatory requirements and industry standards (e.g., GDPR, HIPAA, PCI DSS).
• Develop, implement, and enforce security policies, procedures, and controls to protect the organization's information assets and ensure compliance with security standards.

Support Cyber Program Projects

• Collaborate with the Cyber Program team to support the projects implementation by allocating operational resources time, tools, and technologies.
• Create checklist and processes for transition to operations once the control is implemented by the Cyber Program

Security Awareness and Training:

• Develop and deliver security awareness and training programs to educate employees about cybersecurity best practices, threats, and vulnerabilities.
• Promote a security-conscious culture throughout the organization and encourage proactive engagement in cybersecurity initiatives.

Awareness & Training

• Design and deliver security awareness and training programs.
• Promote a security-first culture and empower employees to adopt best practices

Continuous Improvement:

• Stay abreast of the latest cybersecurity threats, trends, and technologies through continuous learning and professional development.
• Identify opportunities for process improvements, automation, and optimization to enhance the effectiveness and efficiency of cybersecurity operations.