Manager Cyber Technology Risk Management Information Corporate Security
Manager Cyber Technology Risk Management Information Corporate Security
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Team Description
The Cyber and Technology Risk Team partners with departments to advance technology and thirdparty information risk management capabilities that enable the Fund to compete effectively and take advantage of innovative technologies.
Job Summary and Purpose
As a Manager Information Security you will be accountable for the development of internal governance processes for the Information security team managing and overseeing reporting to senior management other internal stakeholders such as Audit and Assurance Enterprise Risk Business Continuity and Crisis Management. You will also compile and analyze risk metrics to proactively identify Information Security risks supporting alignment with the funds Integrated Risk Framework. Participate in incident response and remediation activities.
Accountabilities
- Develop reporting dashboards collect core security metric data to support reporting manage compliance with established policies and procedures and manage of exceptions process.
- Support the development of security policies procedures and standards designing core program metrics for the measurement of program effectiveness measurement and monitoring program cost schedule and performance against established operational and project timelines.
- Develop training program content aligned to core CPPIB risks supporting the bolstering of security awareness across the fund developing rolebased security training conducting inperson training designing computerbased education programs and conducting other security awareness activities.
- Manage the relationships with external third parties including vendors suppliers and other partners to support core information security program goals.
- Collaborate to solve complex security problems as part of a highly dynamic closeknit team of dedicated security professionals.
- Manage the effective response to security related incidents in accordance with the established incident response framework.
- Provide security advisory and assessment to the organization on various security issues.
Qualifications :
- Undergraduate degree or college diploma in related field
- 6 years of relevant experience
- Advanced knowledge in IT risk management business resiliency network management/architecture vendor risk management vulnerability management information security and data protection/management
- Knowledge of governance risk and compliance frameworks such as ITIL NIST COSO COBIT etc.
- Experience managing and deploying IT infrastructure or cyber security technologies preferred.
- Possess one or more of the following certifications / CISSP /CISA/ CISM
- Strong technical capabilities in the areas of firewalls antivirus content filtering SIEM threat intelligence security orchestration and automation vulnerability management and cloud security
- Familiarity with SIEM EDR DLP and other security technologies.
- Strong written and verbal communication skills
Additional Information :
Visit our LinkedIn Career Page or Follow us on LinkedIn. #LIKE1 #LIOnsite
At CPP Investments we are committed to diversity and equitable access to employment opportunities based on ability.
We thank all applicants for their interest but will only contact candidates selected to advance in the hiring process.
Our Commitment to Inclusion and Diversity:
In addition to being dedicated to building a workforce that reflects diverse talent we are committed to fostering an inclusive and accessible experience. If you require an accommodation for any part of the recruitment process (including alternate formats of materials accessible meeting rooms etc.) please let us know and we will work with you to meet your needs.
Disclaimer:
CPP Investments does not accept resumes from employment placement agencies headhunters or recruitment suppliers that are not in a formal contractual arrangement with us. Our recruitment supplier arrangements are restricted to specific hiring needs and do not include this or other website job postings. Any resume or other information received from a supplier not approved by CPP Investments to provide resumes to this posting or website will be considered unsolicited and will not be considered. CPP Investments will not pay any referral placement or other fee for the supply of such unsolicited resumes or information.
Remote Work :
No
Employment Type :
Fulltime
Employment Type
Full-time
