This job board retrieves part of its jobs from: Toronto Jobs | Emplois Montréal | IT Jobs Canada

English jobs board for the people in Sherbrooke, Québec

To post a job, login or create an account |  Post a Job

   jobs sherbrooke   

An English jobs board for the people of Sherbrooke, in Québec

previous arrow
next arrow

AVP, Cybersecurity


This is a Contract position in Sherbrooke, QC posted June 7, 2021.

Job DescriptionFounded in 1846, Laurentian Bank Financial Group (LBCFG) is a diversified financial services provider whose mission is to help its customers improve their financial health.

The Laurentian Bank of Canada and its entities are collectively referred to as Laurentian Bank Financial Group (the ””Group”” or the ””Bank””).

With more than 2,900 employees guided by the values of proximity, simplicity and honesty, the Group provides a broad range of advice-based solutions and services to its personal, business and institutional customers.

With pan-Canadian activities and a presence in the U.S., the Group is an important player in numerous market segments.This role sits within LBC Tech, a subsidiary of Laurentian Bank Financial Group.This position will work closely with VP, Cybersecurity & Technology Operations to execute key cyber security initiatives for the bank.

AVP, Cybersecurity is both a strategic and hands-on role with high visibility and requires technical expertise, ability to manage multiple priorities, excellent communication skills, strong relationship building & forward-thinking mindset to be successful.

He/She will play a key role in establishing and maintaining the information security program to ensure that bank””””s information assets and associated technology, applications, systems, infrastructure and processes are protected.

AVP, Cybersecurity will lead a team of Cyber Security professionals in the areas of Threat Management, Incident Response, 24×7 Security Operation Center (SOC), Vulnerability Management, Data Security, Identity & Access Management, Penetration Testing, Cloud and Endpoint Security and Application Security.Responsibilities Support the VP, Cybersecurity & Technology Operations with the overall direction and strategy of the Cybersecurity function Identify and assess security control gaps for information assets.

Monitor the implementation of controls and control mitigations for business processes, data protection, applications, and infrastructure Manage evaluation of risks and threats, development, implementation, communication, operation, monitoring and maintenance of the information security policies and procedures.

This includes leading risk assessment and management processes for third party vendors and suppliers.

Manage & mentor the team ensuring the team proactively analyzes and responds to all threats, deploying risk mitigation strategies, processes and procedures.

Design, report, monitor Key Performance Indicators related to Security Vulnerabilities remediations, threat profiling and cyber threat mitigation.

Manage a portfolio of projects & initiatives under the Security Action Plan.

Manage the reporting, investigation, and resolution of information security incidents.

Work with and consult with senior business leaders and compliance teams on potential data breaches.

Represent the function in internal & external security audits.

Liaise and coordinate with various IT teams, Business, Audit, Risk, and Governance teams to ensure timely response & remediation to audit findings.

Establish and maintain a strong partnership with Technology peers, enterprise risk management, privacy, audit and other leaders throughout the business.

Work with senior leadership to design & develop the budget.

Manage contract renewals, monitor and track budget Leadership and management accountability for the performance and development of team members Recruit and develop talent that will drive the organization to high performance.Qualifications Bachelor””””s degree in Computer Science, Engineering, Information Systems, Cyber Security or related field with 10-15 years of relevant experience required or an equivalent combination of education and experience Should have at least 6
– 8 yrs people management experience with at least 3
– 4 yrs leading security teams Strong knowledge of NIST, MITRE ATT&CK framework and OWASP Experience in Risk Assessment, Incident Management (SIEM), Security Threats, Vulnerability Management, Security Operations, Data Loss Prevention, Application Security, Firewalls & Network Security (IPS/IDS, DDOS), Identity & Access Management, PCI-DSS, Security Audits etc.

Should be a technical expert in at least 2-3 areas within cybersecurity.

Certification in either CISSP, CISM, CISA, CEH, CRISC (Any one is required) Knowledge of regulatory requirements and information security management frameworks, including ISO/IEC 27001, ITIL, SOX, PCI, and NIST CSF, as well as understanding of secure coding practices, SDLC and Agile methodologies Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and nontechnical audiences at various hierarchical levels, ranging from board members to technical specialists.

Executive management exposure and interaction is required Possess financial acumen to manage security budgets and monitor them for variances Ability to cultivate and build collaborative working relationships with a broad range of enterprise stakeholders Excellent analytical skills, the ability to manage multiple projects under strict timelines, as well as the ability to work well in a demanding, dynamic environment and meet overall objectives.

Bilingual (English/French) verbal and written communication skills are an asset.Additional InformationWe are proud to be an equal opportunity employer and are committed to fostering an inclusive and accessible work environment that reflects the diversity of our customers and our communities.

We welcome and encourage applications from individuals from all groups, including Indigenous people, women, visible minorities, and persons with disabilities, regardless of race, national or ethnic origin, colour, religion, age, sex, sexual orientation, gender identity or expression, marital status, family status, genetic characteristics, disability or any other legally-protected ground.

Accommodations for persons with disabilities are available upon request for job applicants taking part in all aspects of the recruitment process.