Manager - Digital Security

at  Agriculture Financial Services Corporation

At AFSC, we care about each other, about Alberta and about agriculture. PEOPLE ARE OUR FOUNDATION. We want to work with talented people from a wide range of backgrounds. We strive to create a psychologically safe environment where we can all be ourselves and perform to the best of our abilities. CLIENTS ARE OUR FOCUS. The perseverance and hard work we see from our clients inspires us to show that same work ethic in everything that we do. EXCELLENCE IS OUR ASPIRATION. We are innovative, knowledgeable, and diverse and love what Albertan agriculture produces for people around the world. Working together, we grow and sustain the agriculture industry in Alberta.
Posting will close 8th of October 2024.
Location is flexible, within Alberta, dependent on the successful applicant.
However, periodically may be asked to work in other AFSC branches. Travel in these circumstances will be reimbursed according to AFSC’s Employee and Board of Directors Expense Policy.
Reporting to the Chief Information Security Officer, the Manager, Digital Security is responsible to lead in their role the technology improvements, management, and operations of AFSC’s Digital Security program within established quality standards, using AFSC applicable methodologies, as well as achieving the corporation’s strategic business objectives. In relation to new products, projects, and the maintenance of existing Digital systems and leading a group of Digital Security professionals to support AFSC.
The Manager of Digital Security collaborates with the DS management team within the framework of AFSC Digital Service’s (DS) directions, objectives, standards, and policies and within industry, IT trends and standards.

What will your growth opportunities look like in this role?

• Further development of senior leadership skills
• Learn and become knowledgeable in the security program at AFSC, including opportunities to make improvements
• Build a strong knowledge of the services that AFSC provides to the agriculture producers of Alberta
• In-house learning and development as well as external training opportunities
• Grow your security career skills and portfolio

What will you be responsible for?

• Responsible for the implementation, maintenance, and support of AFSC’s security technology stack
• Responsible for the lifecycle of the Security Incident Response Program, including tabletops and exercises as well as ensuring continuity of the process through different required AFSC members
• Ensure governance is implemented where needed when gaps are identified
• Act as a business partner to AFSC employees. Providing clarity to team members through communication of policies and direction.
• Responsible for communicating with both internal and external audit partners and working with AFSC partners to facilitate closure of findings or action plans where applicable
• Establishing standards for security including methodologies, metrics, requirements, and tools. Identify processes or product candidates to improve or expand operations and achieve strategic goals.
• Constantly staying vigilant to reducing risk within the organization through penetration testing exercises, vulnerability management or other activities and their remediation activities
• Develop short- or medium-term work schedules to achieve planned commitments. Approve overtime or use additional resources as needed.
• Manage the preparation of short- and longer-term as well as annual workforce plans using existing analytical frameworks and tools to identify the number and mix of staff required to meet the demand forecast.
• Assists in the performance management and professional development of staff (through mentoring, professional development plans, teamwork initiatives); ensuring coverage and succession capabilities are in place.
• Responsible for providing leadership to their staff in the security management area, ensuring the work environment provides the tools staff require to achieve excellence and a high level of staff engagement.
• Contribute to the development of annual business plans; contribute with developing business cases for key activities/projects and with estimating the financial and human resources required to deliver performance targets.
• Manage relationships with internal colleagues and act as a trusted partner

What are we looking for from you?

• Solid leadership competencies with a servant leadership mindset
• Pragmatic risk reduction mindset
• Ability to effectively prioritize and execute tasks in a high-pressure environment
• Effective conflict resolution, issue management, and problem-solving skills
• Successful track record in getting work done through others
• Ability to influence others
• Ability to communicate ideas in both technical and user-friendly language
• Strong written and oral communication skills

Education & Experience

• Diploma (with 8 years) or Degree (with 6 years) in Information Security or related field, or suitable combination of formal education and experience
• CISSP Certification or similar required
• At least 8 years in a leadership role within an Information Security environment or IT environment with a focus on Security
• Experience delivering and maintain security technology within a complex business environment and successfully contributing to projects that enable business optimization or transformation
• Knowledge of business operations and processes
• Experience with Organizational Change Management
• Security Certifications (CISSP, CISM or other equivalents)
• Experience delivering, maintaining, and evolving a security program as threats evolve
• Experience working with internal staff as well as a Managed Security Service Provider/Managed SOC
• Extensive Knowledge of Security and Cloud platforms (SaaS, IaaS, PaaS)

What else is in it for you?

• Health, dental, and vision benefits on your first day of employment
• $1,200 health spending account
• Christmas closure
• PSPP contributions
• Generous vacation and special leave days
• Health and wellness initiatives

About AFSC
For over 80 years Agriculture Financial Services (AFSC) has provided Alberta’s agricultural producers and agribusinesses with loans, crop insurance and farm income disaster assistance. At AFSC, we’re proud of the work we do to help build a strong, growing and diversified agriculture and agri-food industry in Alberta. Many AFSC team members are also producers and know first-hand the challenges and rewards Alberta producers face.
https://afsc.ca/about-afsc

What will your growth opportunities look like in this role?

• Further development of senior leadership skills
• Learn and become knowledgeable in the security program at AFSC, including opportunities to make improvements
• Build a strong knowledge of the services that AFSC provides to the agriculture producers of Alberta
• In-house learning and development as well as external training opportunities
• Grow your security career skills and portfoli

What will you be responsible for?

• Responsible for the implementation, maintenance, and support of AFSC’s security technology stack
• Responsible for the lifecycle of the Security Incident Response Program, including tabletops and exercises as well as ensuring continuity of the process through different required AFSC members
• Ensure governance is implemented where needed when gaps are identified
• Act as a business partner to AFSC employees. Providing clarity to team members through communication of policies and direction.
• Responsible for communicating with both internal and external audit partners and working with AFSC partners to facilitate closure of findings or action plans where applicable
• Establishing standards for security including methodologies, metrics, requirements, and tools. Identify processes or product candidates to improve or expand operations and achieve strategic goals.
• Constantly staying vigilant to reducing risk within the organization through penetration testing exercises, vulnerability management or other activities and their remediation activities
• Develop short- or medium-term work schedules to achieve planned commitments. Approve overtime or use additional resources as needed.
• Manage the preparation of short- and longer-term as well as annual workforce plans using existing analytical frameworks and tools to identify the number and mix of staff required to meet the demand forecast.
• Assists in the performance management and professional development of staff (through mentoring, professional development plans, teamwork initiatives); ensuring coverage and succession capabilities are in place.
• Responsible for providing leadership to their staff in the security management area, ensuring the work environment provides the tools staff require to achieve excellence and a high level of staff engagement.
• Contribute to the development of annual business plans; contribute with developing business cases for key activities/projects and with estimating the financial and human resources required to deliver performance targets.
• Manage relationships with internal colleagues and act as a trusted partne