Cybersecurity Manager

at  BDO

PUTTING PEOPLE FIRST, EVERY DAY

BDO is a firm built on a foundation of positive relationships with our people and our clients. Each day, our professionals provide exceptional service, helping clients with advice and insight they can trust. In turn, we offer an award-winning environment that fosters a people-first culture with a high priority on your personal and professional growth.

YOUR OPPORTUNITY

Our Toronto area office, is looking for a Cybersecurity Manager , to join our cyber team to lead the following areas of responsibility, supporting the Cyber Risk Management and Transformation Service Delivery team:

• Act as a subject matter expert to drive the successful completion of our cybersecurity projects, while collaborating with the rest of the delivery team to ensure that project milestones and deadlines are met
• Identifying, assessing, measuring, and reporting on cyber/technology and privacy risks by conducting security reviews, audits, evaluations, risk assessments and developing recommendations for improvements
• Ensuring the client’s Cybersecurity risk posture is understood along with the effectiveness of the Cybersecurity practices and mitigation controls across the client organization
• Research, pilot, and implement solutions to improve the client’s overall security posture while ensuring that the solutions are tailored to client needs and the business environment
• Provide recommendations to keep infrastructure & applications secure, including disaster recovery, security architecture, data loss prevention, and application security services
• Assist the client in implementing and monitoring privacy policies and procedures to ensure compliance with data protection regulations such as GDPR, Quebec Law 25, PIPEDA etc.
• Evaluate security and control aspects of new technologies and define security requirements
• Identify opportunities for efficiencies in the work process and innovative approaches to completing the scope of work
• Provide strategic guidance on Cyber Security, Privacy, IT governance, risk, and compliance (GRC) initiatives to enhance the overall security and privacy posture.
• Inform client security strategies based on experience across industry
• Participate in team problem-solving efforts and offer ideas to solve client issues
• Assist in proposal development, as requested
• Exhibiting project management skills, including developing project plans, budgets, and deliverables schedules

EDUCATION & EXPERIENCE

• Bachelor’s Degree in Information Technology, Information Systems Security, Cybersecurity, or related field
• 7+ years of experience in the Cybersecurity field
• Completion or about to complete one or a combination of the following designations: CISSP, CISA, CISM, ISO27001 Lead Auditor, CDPSE, CIPP/C or CIPP/EU
• Experience in conducting threat risk assessments, cyber maturity assessments following industry recognized frameworks such as NIST, ISO 27001, CIS.
• Strong background in cyber governance, risk management, and compliance.
• Knowledge of data protection regulations (e.g., GDPR, Privacy Act, PIPEDA) with a focus on effective privacy management practices.
• Preferred: Strong understanding and experience with security and privacy control audits or assessments (e.g., SOC 2, ISO 27001, NIST, GDPR).

NICE-TO-HAVE SKILLS/EXPERIENCE:

• Security assessments of network infrastructure, hosts and applications
• Forensics â“ investigation and analysis of how and why a breach occurred
• Cloud computing experience â“ Azure, AWS, and/or GCP.

• You demonstrate BDO’s core values through all aspects of your work: Integrity, Respect and Collaboration
• You understand your client’s industry, challenges, and opportunities; clients describe you as positive, professional, and delivering high-quality work
• You identify, recommend, and are focused on effective service delivery to your clients
• You share in an inclusive and engaging work environment that develops, retains & attracts talent
• You actively participate in the adoption of digital tools and strategies to drive an innovative workplace
• You grow your expertise through learning and professional development.