Location Address:

100 Queens Quay East, 9th Floor, Toronto

Number of Openings:

1

Pay

$88,937.00 - $165,105.00

Job Posting Description:

Senior Manager, Application and Infrastructure Security

#LI-Hybrid

The Senior Manager, Application and Infrastructure Security oversees the LCBO’s Infrastructure and application security program. You will ensure the security configuration of applications, endpoints, networks, internal and cloud environments is aligned with internal policies, best practices and regulatory requirements through regular assessments and reporting. The role encompasses security in the software development lifecycle (SDLC), management of the antivirus platforms and data loss prevention (DLP) platform.

You will manage user access reviews, vulnerability assessments to assess technology platforms security posture from a patching, hardening and configuration management perspective. Reporting to the Director of Cyber Security, you will manage 3-5 Direct Reports as part of a team of cybersecurity professionals, providing mentoring and development support while working with internal and external technology partners, managed service providers and divisional team members to provide a robust security posture across the organization and strengthen the effectiveness of technology security controls.

About the Role

(30%) Oversight of the Application & Infrastructure Security team.

• Oversee the security of applications through implementation of secure coding practices and regular security assessments throughout the software development lifecycle (SDLC)
• Manage application security testing, including Static and Dynamic Application Security Assessments and Penetration testing activities.
• Manage our antivirus program and endpoint protection solutions to safeguard against malware and other threats.
• Implement Data Loss Prevention (DLP) procedures and solutions to protect sensitive data from unauthorized access and exfiltration.
• Oversee network security configuration through regular security assessments, (audits and scanning) to ensure effectiveness against internal and external threats.
• Provide expert support with configuration of network security controls such as firewalls, intrusion detection/prevention systems (IDS/IPS), and other network security solutions.
• Ensure security hardening and configurations for all systems is implemented and maintained.
• Conduct regular reviews of security configurations to address emerging threats and vulnerabilities.
• Conduct regular vulnerability assessments to find and address security risks related to patching.
• Manage vulnerability remediation efforts and report vulnerability metrics to executive leadership.
• Ensure Security tool output (events and alerts) is integrated with the monitoring and response platforms.
• Ensure that all endpoints are kept updated and patched to mitigate vulnerabilities.

(30%) Leadership and oversight of security control effectiveness within private/public cloud infrastructure.

• Develop and implement cloud security strategies to protect data and applications hosted in cloud environments.
• Conduct regular security assessments of cloud services and infrastructure ensuring compliance with best practices and regulatory requirements.
• Conduct regular user access reviews to ensure appropriate access controls are in place.
• Implement role-based access control (RBAC) and ensure compliance with the principle of least privilege.
• Address any access anomalies to avoid potential security breaches.

(10%) Team Management, Development and Organizational Integration

• Develop succession planning strategies to grow future leaders within the cybersecurity team.
• Responsible for hiring, onboarding, development, and performance management of the team.
• Provide oversight of Security Managed Service providers, develop key performance indicators to ensure service delivery.
• Manage the LCBO’s threat intelligence program to identify potential threats and ensure deployment of mitigating controls.
• Lead response efforts during security incidents, including containment, eradication, and recovery.
• Develop incident response plans and playbooks for cyber threats and incidents.
• Conduct post-incident reviews and analysis to identify areas for improvement.

(20%) Partnership and Resource Management

• Guide communication between the MSSP and the LCBO
• Manage appropriate vendor relationships and contract management.
• Participate in the planning and design of enterprise security architecture
• Assist with the threat risk assessment (TRA) process and set of artifacts.
• Update the Incident Response Plan (IRP) on a predetermined periodic basis.
• Perform the deployment, integration and initial configuration of all new cybersecurity solutions and enhancements.

(10%) Compliance and Reporting

• Ensure compliance with relevant regulatory requirements and industry best practices.
• Present regular reports on the state of cyber security operations, including metrics, trends, and incidents to senior management.
• Work with internal auditors and external assessors during security audits and assessments providing evidence as required.

About You

• Post-secondary education in IT, cybersecurity, or related experience.
• 5+ years of progressive experience in cybersecurity, including time in a leadership or strategic oversight role with a focus on governance and compliance.
• Professional certification in CISSP, CRISC, CISA or CISM
• Previous experience managing any or all the following types of tools: Firewalls, Vulnerability Management, Web Gateway/Proxy, Web Application Firewalls, Secure Code Review, CASB, DLP, Email Gateway, SIEM, AV/EDR/XDR Certificate Management and Security Awareness Training.
• Familiarity with the MITRE ATT&CK framework and knowledge of PCI DSS Standard.
• Knowledge of the following standards: NIST, CIS, ISO27001/2, or SAE

There is a world of opportunities at the LCBO…

Join an organization where you can be challenged while achieving your true potential. A place where you can make a positive impact supporting Ontario business and communities. Discover a safe, healthy, diverse, inclusive, and accountable workplace where your wellbeing is our top priority. At the LCBO, your contributions are respected and valued. Be part of our journey as we invest in people and technology to transform an organization. There really is a world of opportunities at the LCBO.

We foster a culture of inclusion and belonging, so everyone feels valued, respected, and heard. The LCBO is an equal opportunity employer and committed to providing employment accommodation observing the Ontario Human Rights Code and the Accessibility of Ontarians with Disabilities Act. If contacted for an interview or employment opportunity, please advise if you require an accommodation.

Please submit your resume through Workday by 11:59pm on the deadline date. We appreciate your interest and advise that only those selected for an interview will be contacted.

Work Hours:

36.25

Union / Non-Union:

Non-Union

Job Posting End Date:

February 6, 2025

The LCBO is an equal opportunity employer and committed to providing employment accommodation in accordance with the Ontario Human Rights Code and the Accessibility for Ontarians with Disabilities Act.