Senior Manager, Security / SISO

Position Summary:

You will lead cyber security at QHR Technologies and secure our Canadian connected health care network. You are equally adept at evolving and implementing appropriate security practices as you are at getting hands-on technical. You will use your management skills constantly, but you will exercise your not-rusty technical security skills as needed. You will lead a small team of security professionals to secure QHR’s data centers and evolving cloud infrastructure. You will have the support of specialized teams in the areas of networking, database, cloud, infrastructure, privacy and GRC. 

Competencies Critical for Success:

• Strong understanding of security concepts and effective practices.
• Able to communicate security concepts to a variety of audiences.
• Excellent analytical and problem-solving skills, while working with highly connected systems.
• Good written and oral communication skills in English.
• Ability to work and co-ordinate with multiple teams.
• A passion for learning, teaching, and teamwork.

Primary Responsibilities: 

• Operate and evolve our security program, leveraging industry best practices.
• Manage a team of security professionals.
• Promote security awareness across the organization.
• Assist our large product development group to improve their secure coding practices.
• Build and lead the capabilities to react swiftly and contain cyber threats effectively.
• Create robust and effective solutions that are easy to understand and use.
• Conduct formal Threat Risk Assessments as required.
• Maintain objective security reporting.
• Follow and mentor good security operational practices.
• Identify, assess, and resolve security challenges within our services.
• Effectively leverage the security resources of our parent company.

Additional Duties and Expectations: 

• Promote QHR’s “Blue Culture” framework to foster a respectful, collaborative, positive and efficient workplace,  
• Contribute to the organization’s positive image both internally and externally,  
• Perform other duties consistent with the position, as reasonably directed by your manager.  

Qualifications, Education and Experience Requirements: 

Requirements

• At least 5 years of relevant Cyber Security experience.
• At least one formal security certification. A Certified Information System Security Professional (CISSP) or Certified Information Security manager (CISM) is preferred.
• A degree or diploma in Business, Engineering, Computer Science, or a related field.
• Demonstrated ability to effectively manage people and drive change.
• Superior understanding of:
  • Cyber security concepts, tools and processes.
  • Formal security frameworks.
  • Networking.
  • Traditional and web application firewalls.
  • Identity, authentication, and authorization.

Extra consideration for candidates with:

• Experience with NIST CSF, SOC 2, ISF.
• Experience with Azure.
• General understanding of programming concepts and practices.

Compensation and Logistics:

• Base salary, variable bonus established at the corporate level, competitive benefits package
  • Hiring Range: $140,000 - $180,000 annual
  • Final pay for this position may depend on candidate knowledge, skills, experience and location
• Full time, permanent.
• Work remote in Canada, or from our Kelowna Office.
• Fair amount of time flexibility while maintaining overlap with your colleagues, who are primarily in Calgary and Kelowna.
• Occasional evening and weekend work will be required for incident response.
• Little to no travel required.

QHR is a dynamic Canadian technology company and division of Loblaw Companies Limited. Our mission is to unite Canadian Healthcare, connecting Providers and their Patients to information and each other.