Manager, IT Security

at  Enerflex Ltd

SUMMARY

We are looking for a Manager, IT Security to lead our team of IT cybersecurity analysts and ensure the protection of our network, system and data from cyber threats. This critical role will provide thought leadership in the IT Security, Infrastructure and Network domains. Leading the IT Security Team, the successful candidate will have extensive knowledge in various security and network technologies, solutions, and services. The role will work closely with management and service providers and will be responsible for developing and implementing security policies, standards, and best practices, as well as overseeing the security operations, security planning and project execution within the global IT Infrastructure & Security team. This position works in a team setting, sharing information and assisting other colleagues and business departments.

QUALIFICATIONS

• A university degree or technical diploma along with at least 8 years of full-time work experience.
• An advanced understanding of IT security concepts with a focus on Security Operations, Incident response, Patch and Vulnerability Management, Firewalls, IPS/IDS, Viruses/Malware and Encryption is required.
• A strong understanding of networks and network security controls, tools ,and functionality is required.
• Working knowledge of SIEM tools.
• Understanding and application of Regulatory requirements/ Standards (e.g. NIST, SOX, ISO27K, SSAE16, PCI).
• Strong analytical thinking and troubleshooting skills are required.
• Requires excellent verbal and written communication skills.
• Requires excellent interpersonal skills with the ability to multitask and work effectively with others.
• Working knowledge of Email Security, Mobile Security, Cloud Security and Forensic Security.
• Knowledge of internal and external audit processes would be an asset.
• Security certification such as: CISSP, GIAC, CISM, CSX, etc. would be an asset.

ABOUT US:

Transforming Energy for a Sustainable Future. Enerflex is a premier integrated global provider of energy infrastructure solutions, covering gas processing, compression, power generation, refrigeration, cryogenic, energy transition, and water solutions. We proudly employ more than 5,000 highly skilled employees across over 25 countries worldwide.
Enerflex places its core Values of Integrity, Commitment, Creativity, and Success into action across all aspects of the business. Our innovation, strong commitment to safety, and superior service to our customers positions us as the optimal partner to meet the needs of the dynamic energy industry.
We foster a culture of ensuring our employees have the tools to do their jobs right, but to also thrive in their roles. We pride ourselves in our competitive wages, extensive rewards programs, celebration of successes of individuals and teams, and are committed to ensuring Enerflex remains a safe and inclusive space for all.

• Manage and mentor the IT security team and provide training and guidance on security awareness and best practices.
• Develop and maintain the Security Strategy standards and guidelines.
• Conduct regular checks to identify security risks and implement appropriate security solutions.
• Assist in continually improving the Information Security Architecture.
• Monitor and ensure the effectiveness of enterprise-wide information security program and policies.
• Track and maintain operational security metrics.
• Develop information security risk identification, tracking and mitigation processes in conjunction with an overall strategy and methodology.
• Participate in investigating possible security violations. Establish monitoring measures to detect and ensure correction of security breaches and policy violation.
• Consult with IT Staff to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications, and software.
• Provide regular reports on security incidents, service levels and project status. Assess, address, and report on threats, vulnerabilities, and residual risks, along with follow-up on remedial action.
• Participate in Next Gen Firewall / Unified Threat Management tools management.
• Collaborate with our Managed Security Services provider and coordinate appropriate responses to events based on their priority.
• Develop and manage endpoint device standards (desktops, laptops, tablets, etc.) related to security.
• Monitor and support the administration of Mobile Device Management, Email Security, Web Security, and Data Loss Prevention (DLP).