AltaGas - Sr Manager, IT Cyber Operations

AltaGas

  • Calgary, AB
  • Permanent
  • Full-time
  • 21 days ago
Job DescriptionAltaGas - Sr Manager, IT Cyber OperationsReporting to the BISO UTL & Director, Cyber Operations. The primary focus of this role is to oversee the operations of the enterprise's security solutions through direct and indirect management of the organization's security analysts and Managed Security Service Providers (MSSP). Secondary tasks will include participation in the selection of appropriate security solutions, management of cybersecurity incidents and participation in cyber audits and assessments. The Senior Manager IT Cyber Operations is expected to interface with peers across the CISO function (Protect) and other Digital operations (Run) departments to ensure optimal operation of the cybersecurity function across the organization.You will:
  • In partnership with Cybersecurity Architecture, maintain the enterprise’s security architecture design.
  • Maintain the Cyber Incident Response Plan (including various cyber breach playbooks) and assist with coordinating the yearly cyber exercise plan.
  • Assist with the management of the business unit budget and financial forecast.
  • Identify gaps in cyber processes and design and lead initiatives to close gaps.
  • Maintain up-to-date knowledge of the cyber industry, including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
  • In partnership with Cybersecurity Architecture, select and acquire additional security solutions or enhancements to existing security solutions to improve overall enterprise security as per the enterprise’s existing procurement processes.
  • Oversee the deployment, integration and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security standards.
  • Ensure the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise workstations, servers, and other systems and in databases and other data repositories.
  • Together with Cyber Risk Management continually assess industry information security threats and manage the mitigation of those threats.
  • Ensure the enforcement of the enterprise cyber policy and standards.
  • Manage the performance of third-party Managed Security Services Providers.
  • Supervise all incident response and investigations regarding suspicious activity and provide ongoing communication with senior management.
  • Address findings of vulnerability assessments, penetration tests and security audits.
  • Keep senior Digital leadership informed of cyber issues by reporting performance metrics.
  • Participate in the management of existing and new cybersecurity products and solutions vendors.
  • With the Managed service provider, continuously improve on/off-boarding and data loss management processes.
You have:
  • Bachelor's Degree in Computer Science or related field preferred
  • 10+ Years hands-on Cyber Operations experience required
  • Experience in developing Cyber Response Plans.
  • Experience in managing Managed Security Service Providers (onshore and offshore).
  • Experience in creating and managing Service Level Agreements.
  • Experience in managing complex cybersecurity incidents.
  • Working technical knowledge of enterprise firewall technology, URL filtering solutions, email filtering solutions, CASB, SIEM, DLP, endpoint security solutions, host intrusion detection solutions, and network monitoring (preferably Microsoft, Cisco, and Crowdstrike-based technologies).
  • Familiarity with Azure security best practices.
  • Working technical knowledge of IAM and PAM tools
  • In-depth knowledge of IT concepts, strategies and methodologies and their application to business opportunities.
  • Knowledge of cyber security standard frameworks, specifically NIST.
  • Familiarity with secure coding best practices.
  • Understanding of back-channels and obfuscation techniques typically used by actors for malicious activity
  • Understanding of nation and non-nation state actors, hacktivist groups, advanced threats and the "kill chain" and MITRE methodology.
  • Proven analytical and problem-solving abilities.
  • Ability to effectively prioritize and execute tasks in a high-pressure environment.
  • Excellent written, oral, and interpersonal communication skills.
  • Ability to conduct research into cyber issues and products as required.
  • Ability to present ideas in business-friendly and user-friendly language.
  • Team-oriented and skilled in working within a collaborative environment.
  • One or more of the following certifications: GIAC Security Essentials Certification, GIAC Security Leadership Certification, GIAC Incident Handler Certification, ISACA Certified Information Security Manager, Microsoft Certified Systems Engineer: Security, (ISC)2 SCCP, (ISC)2 CISSP, (ISC)2 ISSAP
Why work at AltaGas?AltaGas is a North American energy infrastructure company with a focus on owning and operating assets that provide clean and affordable energy to our customers. AltaGas assets include Washington Gas/WGL, SEMCO, and Petrogas. Our talented team, nearly 3,000 strong, leverages the strength of our assets and expertise along the energy value chain to connect customers with premier energy solutions – from the well sites of upstream producers to the doorsteps of homes and businesses to new markets around the world.We deliver clean and affordable natural gas to approximately 1.7 million customers’ homes and businesses through regulated natural gas distribution utilities across four jurisdictions in the United States and two regulated natural gas storage utilities in the United States. Learn more about our team, vision, and strategy.To learn more about our mission:For Canadian hires: AltaGas hires personnel on the basis of job-related qualifications. All qualified applicants will receive consideration without regard to a person's ancestry, place of origin, colour, ethnic origin, citizenship, creed, sex, sexual orientation, gender identity or expression, age, record of offences, marital status, family status or disability or any other characteristic protected by applicable law.For U.S. hires: U.S. affiliates of AltaGas are committed to equal employment opportunity and providing reasonable accommodations to applicants with physical and/or mental disabilities. We value and encourage diversity and solicit applications from all qualified applicants without regard to race, ethnicity, religion, gender, age, national origin, marital status, sexual orientation, gender identity, family responsibilities, matriculation, physical or mental disabilities, political affiliation, genetic information, status as a protected veteran or any other characteristic protected by federal, state, or local law.

AltaGas