Cyber Security and Risk Manager in CANADA

The Organization

With state-of-the-art operations across Western Canada, our client is a leading manufacturer of a wide range of forest products for customers around the world. For over 65 years, their family-owned company has been recognized by customers and business partners for being reliable, flexible, efficient and offering quality products. With the third generation of family leadership, they're continuing that legacy today in their divisions throughout western Canada and joint ventures in the Southern United States.

Their values, vision and mission aren’t just what they believe. It's how they work, live and serve their customers every day. Fundamental to their success is a diverse and committed workforce that thrives on change, building relationships, and a drive toward excellence.

This position requires a relocation to the Okanagan Valley, BC.

The Opportunity

The Cyber Security and Risk Manager is responsible for operational IT security and the delivery of security related projects. Overall ownership includes administrative and technical implementation and continuous improvement of solutions to maintain and enhance the overall security posture, cybersecurity incident responsiveness and enforcement of policies through the implementation and use of technologies, and to ensure the organization’s systems and data are secure.

Key Deliverables

• Create and maintain five year rolling security capital requirements.
• Develop company-wide security standards and ensure adherence.
• Lead disaster recovery planning and testing.
• Collaborate with the Manager, Infrastructure to develop the network standards both in the mill and within business systems to remain standardized and compliant.
• Organize regular security audits and prepare draft responses for presentation as required.
• Provide regular briefing sessions with the Senior Leadership to advise security risks and priorities.
• Support employee development of direct reports through coaching, feedback and performance management.
• Conduct performance reviews and supervise a team of IT Leads through recruitment, training, and career development activities.
• Manage the assignment of resources between the Operational and Project activities to provide optimal delivery to both streams of work.
• Ensure adequate cross training of staff skill sets as to provide primary and secondary coverage in all areas.
• Manage the Security Team to ensure risks are appropriately prioritized and actioned, thereby minimizing the threats to operations from either internal or external attacks.
• Ensure that the company's assets are protected through strict security, up-to-date anti-virus systems, disaster recovery plans and backup/recovery strategies.
• Support and explore innovative ideas that further the strategic plan.
• Be proactive through the ongoing research of new technologies that have applicability to the business.
• Assess new security technologies and emerging security threats and make recommendations as appropriate to improve IT security.
• Implement and deliver communications and training initiatives to increase cybersecurity awareness to support the adoption of safe computing practices.
• Develop strategies with leading security solutions to create innovative and differentiated solutions.
• Work with the appropriate member of the executive team to provide timely updates to the Board of Directors and Shareholders on major positive and negative issues affecting the company.
• Work closely with the Director, IT and the greater IT department team members to ensure overall success, meeting KPI goals, and aligning the department’s work with the overall strategic plan.

Education & Qualifications

• Minimum 5-10 years of infrastructure experience working in progressive roles.
• Extensive knowledge of information security and information technology for medium to large businesses with multi-locations.
• University degree or diploma in computer science from a recognized technical school or college in computer information systems.
• Minimum 3-5 years of project manager experience; PMP certification will be considered an asset.
• CISSP certification will be an asset.
• ITIL certification will be an asset.
• Creativity and innovation with a drive to improve business systems and technology.
• Excellent organizational, interpersonal and technical skills will be essential.
• Ability to establish and maintain successful relations with vendors, suppliers and internal technical staff within the company, including contract negotiations.
• Experience in leading through influence - takes initiative, can be accountable, can clearly articulate and model expectations and hold others accountable in a positive and effective manner without having authority.

This position is based in-office in the Okanagan with 20-25% travel as required across Western Canada. Relocation assistance will be provided to the successful candidate.