Director of Security Operations [OneIT]

Job Description

Position Summary

WSP's Security Engineering and Operations Team is responsible for managing the global organization's security technologies and systems.

The role of Director Security Operations reports directly to the Global Vice President Security Engineering and Operations and is responsible for leading our Security Operations Centre and working with the Manager of Incident Response and Manager of SOC Tools and Operations.

This is primarily an internally facing role, although some interaction with clients and third parties may be required.

Specific areas of responsibility may fall into any one of the following areas of Security Operations, as assigned by the staff's management.

• Security Analysis
• Threat and Vulnerability Management
• Network, Database, Server and Endpoint, and Application Security
• Penetration Testing
• Antivirus and Antimalware analysis
• Event Analysis
• Incident Response
• Ethical Hacking
• Management
• Privileged access management

The Director of Security Operations will have multiple security-related roles within the organization. Their main goal will be to provide a secure computing environment for the organization to conduct their business.

The global security operations team will have overlapping duties however each role will have more specifically focused duties.

As such, the role and essential duties will fit into the below classifications most closely.

The director will be responsible for the overall direction and planning for both the incident response and tools team, liaising with our contracted partner for Level 1 and 2 Security Operations, 24 / 7 incident response, Security tool management, etc.

Incident Management Process and Forensics - assist in providing forensic capabilities for the incident management process when needed.

Monitor and manage infrastructure logging for security, including perimeter network devices, malware prevention, and intrusion prevention.

Definition and implementation of controls - Defines security configuration and operations standards for security systems and applications, including policy assessment and compliance tools, network security appliances, and host-based security systems.

Develops and validates baseline security configurations for operating systems, applications, and networking and telecommunications equipment.

Endpoint Protection Strategy - Formulate the companies' Endpoint protection strategy, including but not exclusive to malware, host intrusion, encryption, browser protection and hardware level security controls.

Network infrastructure security - responsible for determining and maintaining the technical standards for configurations of routers, switches, firewalls, IPS and IDS devices.

Privileged access management - responsible for maintaining our PAM toolset, ensuring least based privilege across the organization, including secret management and elevated account management.

Leadership and People Responsibilities

• Director of two separate managers within the security organization, 2nd level management of Incident response and tools teams.
• Displays leadership and independence in performing their role, with an ability to make complex decisions with limited input and review from senior staff.
• High level of personal integrity, and the ability to professionally handle confidential matters and exude the appropriate level of judgment and maturity.
• Assist in the hiring, training, and coaching of new and existing staff, and provide coaching to staff executing all aspects of information security and risk assessment and support.
• Develop positive working relationships with other team members and business partners and partner across teams to align with WSP internal and external client demands.
• Capable of rapidly assimilating and internalizing new complex business, technology, and risk management concepts and dependencies.
• Capable of clearly defining, presenting and selling recommended strategies to senior management teams in a business or technical context as appropriate.
• Critical thinker with strong problem-solving skills, project management skills; financial / budget management, scheduling and resource management.
• Able to interpret and apply laws, regulations, policies and guidance relevant to the organization information security objectives.
• Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate between specialized groups of business unit and IT professionals.
• Accommodation of schedule for international conference calls, limited travel within the regions you are responsible for.
• Ability to work with people from different backgrounds and cultures across the region and the world.
• Provide review feedback for analyst and other direct reports.
• Capacity Management within the SOC teams, including growth expectations, M&A onboarding etc.

Finance / Budgetary Responsibilities

Support the Global Vice President Security Engineering and Operations in developing the budget projections based on short-and long-term goals and objectives.

Requirements : Required

Required

• Related experience in information security, risk, compliance, or similar position
• Bachelor's degree or equivalent in Information Technology, Computer Science, Engineering or related field
• Certification in Information Security (CISSP, ISC, or CISM) practices and policies
• Knowledge of security technologies (encryption, data protection, network intrusion prevention, EDR, firewalls, privilege access, etc.)
• Knowledge of enterprise IT security concerns and technologies, including but not limited to VPNs, network security, encryption, authentication, application-level network protocols, PKI, IPSec, Firewall, SSH, SSL, , LAN / WAN, and TCP / IP
• Knowledge of security best practices with relation to applications, network and client setups
• Experience with IT Governance frameworks such as COBIT, ITIL and ISO 2700x, NIST
• Experience with governance, compliance, and audit within IT environments
• Experience of risk management, including risk analysis, mitigation, and monitoring
• Knowledge of information security regulations applicable to WSP

Preferred

• Master's degree in information technology, Computer Science, Engineering or related field
• Knowledge of KQL, Python and PowerShell is a plus.

About Us

WSP is one of the world's leading professional services firms. Our purpose is to future proof our cities and environments.

We have over 65,000 team members across the globe. In Canada, our 12,000+ people are involved in everything from environmental remediation to urban planning, from engineering iconic buildings to designing sustainable transportation networks, from finding new ways to extract essential resources to developing renewable power sources for the future.

At WSP :

• We value our people and our reputation
• We are locally dedicated with international scale
• We are future focused and challenge the status quo
• We foster collaboration in everything we do
• We have an empowering culture and hold ourselves accountable

Please Note :

Health and Safety is a core paramount value of WSP. Given the importance of keeping one another safe it is expected that you comply with our Health, Safety & Environment (HSE) policy at all times as well as client HSE policies when working at client locations.

Offers of employment for safety-sensitive positions involving fieldwork are contingent upon candidates being able to perform key physical tasks of the job as described in the job posting and interview.

This may include the ability to work in a variety of environmental conditions, such as remote or isolated areas, working alone, and in inclement weather (within safe and reasonable limits).

WSP welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process.

WSP is committed to the principles of employment equity. Only the candidates selected will be contacted.

WSP does not accept unsolicited resumes from agencies. For more information please READ THE FULL POLICY.