Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Information Security Manager

Optel Group

Job Summary

Reporting directly to the Chief Information Officer (CIO), the Information Security Manager leads the operational execution of the organization's information security program. This role involves managing security functions, implementing strategy, overseeing technologies, and leading Governance, Risk Management, and Compliance (GRC) activities, with a strong focus on cloud/SaaS environments. The role demands close collaboration with IT, Development, Sales, Legal, Compliance, and other core business functions. It requires the ability to represent the company's security posture effectively to external/internal clients and auditors. This individual serves as the primary operational leader for security, advising the CIO, driving initiatives, and acting as a key security liaison both internally and externally.

Key Responsibilities

  1. Security Operations & Program Management
    • Lead and manage core security functions (SecOps, Vulnerability Management, Incident Response).
    • Drive key security programs (Security Awareness, DLP, IAM).
    • Oversee administration and optimization of security tools (SIEM, EDR, DLP, etc.).
  2. Governance, Risk Management & Compliance (GRC)
    • Establish, manage, and mature the information security GRC framework, including risk assessment methodologies, control implementation, and policy lifecycle management.
    • Manage the information security risk register, conduct regular risk assessments (incl. SaaS/cloud), propose mitigations, and track remediation.
    • Ensure compliance with relevant laws, regulations (e.g., CERT‑In directives, DPDP Act), standards (ISO 27001, SOC 2, etc.), and contractual obligations.
    • Lead security audit preparation (internal/external) and manage responses/remediation efforts.
    • Develop, implement, socialize, and enforce information security policies and standards.
  3. SaaS & Cloud Security
    • Develop, implement, and manage security controls, configurations, and processes for SaaS applications.
    • Conduct security and risk assessments for new and existing SaaS solutions.
    • Provide security guidance for the adoption and secure configuration of SaaS applications.
  4. Collaboration & Engagement
    • Cross‑Functional Partnership: Foster strong working relationships across departments, including IT (infrastructure, applications, firewall team), Development, Sales, Legal, Compliance, and other core business functions to integrate security practices effectively.
    • Development Collaboration: Work closely with development teams on Secure SDLC practices (secure coding, threat modeling, AppSec testing).
    • Sales Partnership: Provide security expertise to Sales during the sales cycle.
    • Client‑Facing Security: Represent the company's security posture externally, responding to client questionnaires (RFIs/RFPs) and participating in security discussions.
  5. Strategy Execution & Advisory
    • Support the CIO in developing and refining the security strategy.
    • Translate strategy into actionable plans and lead execution, particularly around GRC and operations.
    • Act as the primary security advisor to the CIO on operational security, GRC status, risk posture, and cloud/SaaS security.
    • Prepare security reports, metrics (including GRC metrics), and briefings for the CIO.
  6. Incident Response & Leadership
    • Lead security incident response coordination.
    • Provide technical leadership on security architecture and secure configurations.
    • Manage security vendor relationships and provide input/manage the security budget.
    • Lead and mentor any direct or indirect security team members.

Required Qualifications

  • Experience: 8‑10+ years of progressive experience in Information Security across multiple domains.
  • GRC Expertise: Strong understanding and practical experience with Governance, Risk Management, and Compliance (GRC) principles and frameworks (e.g., implementing controls based on NIST/ISO, managing risk registers, policy lifecycle management, supporting audits such as SOC 2 or ISO 27001).
  • SaaS Security Expertise: Demonstrated experience in securing SaaS applications (controls, configuration, risk assessment). Understanding of identity federation.
  • Collaboration Skills: Proven ability to collaborate effectively with technical (Development, IT) and business/support functions (Sales, Legal, Compliance). Experience with DevSecOps principles desirable.
  • Client‑Facing Communication: Excellent client‑facing communication, presentation, and interpersonal skills. Ability to represent security posture confidently externally.
  • Business Acumen: Ability to understand business processes and translate technical security concepts into business/risk terms.
  • Leadership: Proven experience leading security operations, projects, or teams.
  • Technical Expertise: Deep understanding of core security principles, technologies, frameworks. Broad knowledge of cloud security, endpoint security, IAM, SIEM, vulnerability management, network security concepts.
  • Risk Management: Solid experience with security risk assessment methodologies.
  • Execution Focus: Demonstrated ability to manage security operations and GRC processes effectively.
  • Education: Bachelor’s degree in Computer Science, Information Security, or related field, or equivalent experience.

Preferred Qualifications

  • Master’s degree in Cybersecurity or related field.
  • Certifications: CISSP, CISM, CRISC, CISA.
  • Experience completing industry‑standard security questionnaires (e.g., SIG, CAIQ VSAQ).
  • Experience reporting directly to senior leadership.
  • Experience managing security vendors.
  • Knowledge of specific Indian, European and American data protection laws and cybersecurity regulations.
#J-18808-Ljbffr
Vacancy posted 8 days ago
Similar jobs that could be interesting for youBased on the Information Security Manager in Québec, QC vacancy
  • Rejoignez TEHORA comme Conseiller en Gouvernance de la Sécurité de l'Information Senior, avec la possibilité de télétravail. Apportez votre expertise en stratégies de sécurité et en analyses de risques. Dans ce rôle senior, vous serez responsable de la définition des stratégies... 
    Suggested
    Remote work
    Flexible hours

    TEHORA inc.

    Québec, QC
    3 hours ago
  • Become a key player at BDC as a Bilingual Manager in Security and Disbursement. Ensure timely, accurate financing for Canadian entrepreneurs while navigating complex loan processes in a hybrid work model. At BDC, you will play a vital role in managing approved financing... 
    Suggested

    BDC

    Québec, QC
    2 days ago
  • Join Google Cloud to enhance security compliance and authorization processes in connection...  ...This role requires deep expertise in risk management and assessments. As the Manager of Security...  ...or risk management Capability to secure a Top Secret security clearance Understanding... 
    Suggested

    Google

    Québec, QC
    3 hours ago
  •  ...En tant que responsable TI et sécurité de l’information chez Mirego, tu es la personne de référence pour...  ...supplémentaire IT Information Security Lead As IT Information Security Lead...  ...impact analysis, planning, and change management You have experience in information... 
    Suggested
    Full time

    Mirego

    Québec, QC
    7 days ago
  • $35.5 per hour

     ...Information Technology (IT) Specialist (LMIA requested) Actif Gestion Technologies Inc. is seeking an IT specialist to design, develop,...  ...solutions Provide advice on information systems strategy, policy, management, and service delivery Conduct reviews to assess quality... 
    Suggested
    Hourly pay
    Permanent employment
    Full time
    Temporary work
    Lmia
    Day shift

    Actif gestion technologies inc.

    Québec, QC
    7 days ago
  •  ...have a passion for producing and interpreting financial information, as well as managing databases? This opportunity may be for you. We are looking...  ...between actual results and forecasts Produce management reports, analyses, and dashboards to support decision-making... 
    Flexible hours

    InnovMetric Software

    Québec, QC
    8 days ago
  •  ...En tant que responsable TI et sécurité de l’information chez Mirego, tu es la personne de référence pour tout ce qui touche aux technologies de l’information et à la sécurité de l’information chez Mirego. Tu pilotes les initiatives TI, tu veilles à la conformité de tous nos... 
    Full time

    mirego

    Québec, QC
    7 days ago
  •  ...les propositions de fournisseurs dans le cadre des appels d'offres; Réaliser les schémas d'architectures technologiques (performance, sécurité, scalabilité, disponibilité) Requirements Détenir un diplôme universitaire pertinent en informatique, en génie informatique, en... 
    Hourly pay
    Contract work
    Apprenticeship
    Work at office
    Remote work
    Flexible hours

    TEHORA inc.

    Québec, QC
    8 days ago
  • Titre du poste Auditeur(trice) senior en technologies de l’information Bâtissez l’avenir avec nous Vous êtes animé(e) par la gestion des...  ...programmes de test Maîtrise des principaux domaines TI : sécurité de l’information, cybersécurité, exploitation des TI, plan de continuité... 
    Apprenticeship
    Flexible hours

    iA Financial Group (Industrial Alliance)

    Québec, QC
    8 days ago
  • TEHORA est présentement à la recherche d’un(e ) contrôleur interne en sécurité de l’information sénior Sans être exhaustifs, voici les services et livrables que devra fournir la personne retenue : Définir les stratégies de sécurité; Réaliser des analyses de risques... 
    Hourly pay
    Contract work
    Apprenticeship
    Remote work
    Flexible hours

    TEHORA

    Québec, QC
    8 days ago
  •  ...to join our authentication and identity management reliability engineering group in an agile...  ...– General network and enterprise security standards and concepts as they pertain to...  ...interest in Authentication services and Information Security. • Excellent written and oral English... 
    Long term contract

    ALLTECH CONSULTING SVC INC

    Québec, QC
    8 days ago
  •  ...candidate will serve as a Cyber Systems Security Engineer member of the naval development...  ...very large and complex military systems Information segregation (separation of classified...  ...technical and non‑technical engineering and management staff as well as with personnel assigned... 
    Part time
    Remote work
    Flexible hours

    Lockheed Martin Canada

    Québec, QC
    8 days ago
  • Elevate cloud security at Fullscript as a Cloud Security Specialist. Enhance AWS and Google...  ...collaborating with engineering teams to develop secure implementations, while also addressing...  ...• Develop IAM strategies and key management solutions • Integrate security into CI/CD... 

    Fullscript

    Québec, QC
    3 hours ago
  •  ...Technologue en architecture chez Technorm à Montréal, avec un axe sur la sécurité incendie et les normes réglementaires. Votre expertise sera clé...  ...exigences réglementaires • Capacité à structurer et analyser l'information Utilisez vos compétences en architecture pour une carrière... 

    J.S. Held

    Québec, QC
    8 days ago
  • Intégrez un rôle clé comme Expert en Santé et Sécurité Senior, soutenant les opérations lors d'incidents majeurs. Participez à des enquêtes, audits et gestion de crise, tout en assurant la conformité. Relevant du Directeur(ice) du centre d’excellence, vous serez en charge... 

    Pomerleau

    Québec, QC
    9 hours ago
  •  ...et de soutien opérationnel de projets concernant des systèmes d’information complexes, multisites et touchant plusieurs secteurs de l’...  ...techniciens en informatique. Attributions La direction générale de la sécurité de l’information, de la cybersécurité et de l’infonuagique (... 
    Permanent employment

    Santé Québec

    Québec, QC
    8 days ago
  • Drive innovation in cloud security as a Senior Cloud Security Architect at Thales, Vancouver. Leverage your expertise in Imperva's Cloud...  ...enterprise services delivery. Key Responsibilities: • Configure and manage the Imperva Cloud Application Security platform • Analyze... 

    Thales Canada

    Québec, QC
    8 days ago
  • $110k - $300k per year

    À propos du rôle L’équipe Sécurité de Hopper est petite par conception et déterminante par son impact. En tant qu’ingénieur(e) sénior en sécurité, vous serez responsable des outils, de l’automatisation et des processus qui assurent la sécurité de nos applications tout au long... 
    Daily paid
    Remote work

    Hopper

    Québec, QC
    6 days ago
  • $130k - $180k per year

     ...The Security Product Management team is vital in safeguarding customer trust and making data security a market differentiator that enables MongoDB...  ...process. To request an accommodation due to a disability, please inform your recruiter.   MongoDB is an equal opportunities... 
    Full time
    Internship
    Work at office
    Remote work
    Worldwide
    Flexible hours

    MongoDB

    Québec, QC
    23 hours ago
  •  ...liés aux opérations maritimes. L’expert maritime joue un rôle clé dans le maintien et l’amélioration des standards de conformité et de sécurité des opérations maritimes.   *Le titre du poste affiché peut être différent de celui à l’interne pour faciliter la recherche d'... 
    Permanent employment

    Le Groupe Océan inc.

    Québec, QC
    14 days ago
  •  ...of online features that our Online Game Services team helps games utilize. What You’ll Do Epic Games is looking for a Senior Game Security Programmer to join our Anti‑Cheat team and work with not only our titles but a wide variety of games from around the world. You’ll join... 
    Long term contract
    Temporary work

    jobr.pro

    Québec, QC
    8 days ago
  • Intégrez Solution SFT comme Conseiller senior en gouvernance de la sécurité de l'information à Québec, avec un modèle de travail en télétravail. Ce rôle stratégique exige des connaissances en sécurité et en gestion des risques. Dans ce poste, vous aurez l'opportunité de... 
    Remote work

    Services SFT

    Québec, QC
    8 days ago
  • Support the Cyber Security initiatives as a Senior Software Developer with a focus on scalable technology solutions. This expert-level role...  ...pivotal role in developing distributed systems and implementing secure development practices. Key Responsibilities: • Design and... 

    Amaris Consulting

    Québec, QC
    3 hours ago
  • Step into a vital role as an Expert Software Developer focused on Cyber Security within Cyber Data Risk & Resilience. Leverage your expertise in cloud and AI initiatives to develop secure technology solutions. With over 12 years of experience, you will design scalable software... 

    Amaris Consulting

    Québec, QC
    9 hours ago
  •  ...nous Chez Zone SST, nous sommes des passionnés de santé et sécurité au travail. Notre approche gagnant-gagnant vise à apporter une...  ...règlements en SST (LSST, RSST, CSTC) Capacité à vulgariser l’information et à mobiliser les équipes Autonomie, polyvalence, rigueur et... 
    Permanent employment
    Weekend work

    Zone SST

    Québec, QC
    23 days ago
  • Rejoignez une entreprise humaine en tant que Directeur Santé et Sécurité. Ce poste vous permettra de leader des initiatives qui améliorent la sécurité des employés. Dans ce rôle, vous serez responsable de guider le développement des systèmes de santé et sécurité dans un environnement... 

    Groupe Perspective

    Québec, QC
    8 days ago
  • Become a driving force in information security as a Senior Consultant. Design effective security architectures while validating technical solutions in a flexible working environment. In this senior role, you will leverage your extensive IT experience to enhance information... 
    Flexible hours

    TEHORA

    Québec, QC
    8 days ago
  •  ...nous Chez Zone SST, nous sommes des passionnés de santé et sécurité au travail. Notre approche gagnant-gagnant vise à apporter une...  ...règlements en SST (LSST, RSST, CSTC) Capacité à vulgariser l’information et à mobiliser les équipes Autonomie, polyvalence, rigueur et... 
    Apprenticeship
    Afternoon shift

    Zone SST

    Québec, QC
    27 days ago
  •  ...Dans le cadre de la remise en production de la Mine Géant Dormant, Mines Abcourt est à la recherche d’un Conseiller en santé et sécurité . Mines Abcourt offre un salaire et des avantages sociaux compétitifs dans un environnement de travail créatif pour une personne... 
    Work at office
    Day shift

    Mines Abcourt inc.

    Québec, QC
    a month ago
  •  ...shaper. Vous souhaitez jouer un rôle clé dans un projet industriel d’envergure et contribuer directement à façonner une culture santé, sécurité et environnement forte, proactive et axée sur la prévention? À titre de Directeur(trice) SSE – Projet, vous agirez comme leader... 

    Alcoa

    Québec, QC
    8 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Information Security Manager. Be the first to apply!