Job Description
AltaGas – Sr Manager, IT Cyber Operations
Reporting to the BISO UTL & Director, Cyber Operations. The primary focus of this role is to oversee the operations of the enterprise’s security solutions through direct and indirect management of the organization’s security analysts and Managed Security Service Providers (MSSP). Secondary tasks will include participation in the selection of appropriate security solutions, management of cybersecurity incidents and participation in cyber audits and assessments. The Senior Manager IT Cyber Operations is expected to interface with peers across the CISO function (Protect) and other Digital operations (Run) departments to ensure optimal operation of the cybersecurity function across the organization.
You will:
In partnership with Cybersecurity Architecture, maintain the enterprise’s security architecture design.Maintain the Cyber Incident Response Plan (including various cyber breach playbooks) and assist with coordinating the yearly cyber exercise plan.Assist with the management of the business unit budget and financial forecast.Identify gaps in cyber processes and design and lead initiatives to close gaps.Maintain up-to-date knowledge of the cyber industry, including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.In partnership with Cybersecurity Architecture, select and acquire additional security solutions or enhancements to existing security solutions to improve overall enterprise security as per the enterprise’s existing procurement processes.Oversee the deployment, integration and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security standards.Ensure the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise workstations, servers, and other systems and in databases and other data repositories.Together with Cyber Risk Management continually assess industry information security threats and manage the mitigation of those threats.Ensure the enforcement of the enterprise cyber policy and standards.Manage the performance of third-party Managed Security Services Providers.Supervise all incident response and investigations regarding suspicious activity and provide ongoing communication with senior management.Address findings of vulnerability assessments, penetration tests and security audits.Keep senior Digital leadership informed of cyber issues by reporting performance metrics.Participate in the management of existing and new cybersecurity products and solutions vendors.With the Managed service provider, continuously improve on/off-boarding and data loss management processes.You have:
Bachelor’s Degree in Computer Science or related field preferred10+ Years hands-on Cyber Operations experience requiredExperience in developing Cyber Response Plans.Experience in managing Managed Security Service Providers (onshore and offshore).Experience in creating and managing Service Level Agreements.Experience in managing complex cybersecurity incidents.Working technical knowledge of enterprise firewall technology, URL filtering solutions, email filtering solutions, CASB, SIEM, DLP, endpoint security solutions, host intrusion detection solutions, and network monitoring (preferably Microsoft, Cisco, and Crowdstrike-based technologies).Familiarity with Azure security best practices.Working technical knowledge of IAM and PAM toolsIn-depth knowledge of IT concepts, strategies and methodologies and their application to business opportunities.Knowledge of cyber security standard frameworks, specifically NIST.Familiarity with secure coding best practices.Understanding of back-channels and obfuscation techniques typically used by actors for malicious activityUnderstanding of nation and non-nation state actors, hacktivist groups, advanced threats and the “kill chain” and MITRE methodology.Proven analytical and problem-solving abilities.Ability to effectively prioritize and execute tasks in a high-pressure environment.Excellent written, oral, and interpersonal communication skills.Ability to conduct research into cyber issues and products as required.Ability to present ideas in business-friendly and user-friendly language.Team-oriented and skilled in working within a collaborative environment.One or more of the following certifications: GIAC Security Essentials Certification, GIAC Security Leadership Certification, GIAC Incident Handler Certification, ISACA Certified Information Security Manager, Microsoft Certified Systems Engineer: Security, (ISC)2 SCCP, (ISC)2 CISSP, (ISC)2 ISSAPSource ⇲
