Manager, Cybersecurity

at  Alberta Innovates

MANAGER, CYBERSECURITY

Alberta Innovates (AI) is seeking a Manager, Cybersecurity, to deliver cybersecurity services and functions across Alberta Innovates and its subsidiaries InnoTech Alberta and C-FER Technologies. This hands-on technical and leadership position will oversee the growing Cybersecurity team as we improve the organization’s overall security posture through the rollout of new technologies, adoption of new cybersecurity policies and procedures, and expansion of the Cybersecurity Education program. Fundamentally, this position will enable the organization’s business operations in a secure and efficient way.

EDUCATIONAL REQUIREMENT:

• Post-secondary Diploma or bachelor’s degree in computer science, computer systems technology, Information technology, related discipline, or equivalent work experience
• Certification in ITIL Framework is an asset.
• Possess or working towards a Cybersecurity certification like Certified Information Systems Security Professions (CISSP); Certified Ethical Hacker (CEH); or CompTIA Security+ preferred.

EXPERIENCE AND QUALIFICATIONS WE ARE LOOKING FOR:

• 8+ years of combined experience in information systems security, IT Infrastructure, Network Operations, and IT architecture.
• 2+ years in a leadership position (management or team lead).
• Experience implementing cloud-based services, technologies, and platforms.
• Broad knowledge of IT architecture tools and methods.
• Experience working in a professional Microsoft environment (Windows, M365, Azure, etc.).
• Experience with portfolio management, program management, or project management.
• Proven ability to work with business unit leaders to understand where the business is going and build plans to align and support getting them there.

SKILLS REQUIRED:

• Operate with a sense of urgency to drive business results and deliver successful IT projects.
• Ability to communicate complex architectural and security concepts in plain language.
• Strong planning, priority management, and time management skills.
• Rapidly acquire comprehensive knowledge of business requirements and processes, while effectively acting as a liaison between technical and business stakeholders.
• Ability to extract business needs and functional requirements to implement appropriate technologies and programs.
• Capable of influencing others, creating buy-in, and maintaining high customer satisfaction and trust.
• Proficient in establishing and managing strong business and technical partnerships.
• Skilled in documenting architecture and security using various tools and methods.
• Adept at being a change advocate and leveraging multiple strategies for implementation.
• Ability to manage multiple projects/tasks simultaneously while ensuring partnerships remain intact.
• Excellent verbal, written, listening, and interpersonal skills.
• Strong customer service focus and a “can do” attitude.

• Threat Analysis and Monitoring: Work with contracted cybersecurity vendors (MSSP) to continuously monitor for potential threats, analyze security events, and investigate incidents to ensure timely detection and response.
• Identity and Access Management: Develop policies and procedures to ensure secure, repeatable, and auditable operations.
• Security Tool Management: Oversee the deployment, configuration, and management of security tools such as SIEM (Security Information and Event Management), NGFW (Next Generation Firewalls) and endpoint protection platforms.
• Vulnerability Management: Conduct vulnerability assessments, prioritize vulnerabilities based on risk, and coordinate remediation efforts with relevant stakeholders to ensure the organizations security posture.
• Security Incident Response: Develop and maintain security incident response plans, coordinate incident response efforts during security breaches or incidents, and conduct post-incident analysis to identify areas for improvement. (
• Security Awareness and Training: Provide guidance and support to educate employees on cybersecurity best practices, conduct security awareness programs, and facilitate training sessions to enhance the overall security posture of the organization.
• Talent Development: Recruit, develop, and empower cybersecurity professionals, fostering a culture of learning and growth.
• Performance Management: Set clear expectations, provide feedback, and recognize achievements promptly.
• Risk Management: Conduct assessments, track risks, and develop mitigation strategies to protect the organization