Information Security Manager
Optel Group
Job Summary
Reporting directly to the Chief Information Officer (CIO), the Information Security Manager leads the operational execution of the organization's information security program. This role involves managing security functions, implementing strategy, overseeing technologies, and leading Governance, Risk Management, and Compliance (GRC) activities, with a strong focus on cloud/SaaS environments. The role demands close collaboration with IT, Development, Sales, Legal, Compliance, and other core business functions. It requires the ability to represent the company's security posture effectively to external/internal clients and auditors. This individual serves as the primary operational leader for security, advising the CIO, driving initiatives, and acting as a key security liaison both internally and externally.
Key Responsibilities
- Security Operations & Program Management
- Lead and manage core security functions (SecOps, Vulnerability Management, Incident Response).
- Drive key security programs (Security Awareness, DLP, IAM).
- Oversee administration and optimization of security tools (SIEM, EDR, DLP, etc.).
- Governance, Risk Management & Compliance (GRC)
- Establish, manage, and mature the information security GRC framework, including risk assessment methodologies, control implementation, and policy lifecycle management.
- Manage the information security risk register, conduct regular risk assessments (incl. SaaS/cloud), propose mitigations, and track remediation.
- Ensure compliance with relevant laws, regulations (e.g., CERT‑In directives, DPDP Act), standards (ISO 27001, SOC 2, etc.), and contractual obligations.
- Lead security audit preparation (internal/external) and manage responses/remediation efforts.
- Develop, implement, socialize, and enforce information security policies and standards.
- SaaS & Cloud Security
- Develop, implement, and manage security controls, configurations, and processes for SaaS applications.
- Conduct security and risk assessments for new and existing SaaS solutions.
- Provide security guidance for the adoption and secure configuration of SaaS applications.
- Collaboration & Engagement
- Cross‑Functional Partnership: Foster strong working relationships across departments, including IT (infrastructure, applications, firewall team), Development, Sales, Legal, Compliance, and other core business functions to integrate security practices effectively.
- Development Collaboration: Work closely with development teams on Secure SDLC practices (secure coding, threat modeling, AppSec testing).
- Sales Partnership: Provide security expertise to Sales during the sales cycle.
- Client‑Facing Security: Represent the company's security posture externally, responding to client questionnaires (RFIs/RFPs) and participating in security discussions.
- Strategy Execution & Advisory
- Support the CIO in developing and refining the security strategy.
- Translate strategy into actionable plans and lead execution, particularly around GRC and operations.
- Act as the primary security advisor to the CIO on operational security, GRC status, risk posture, and cloud/SaaS security.
- Prepare security reports, metrics (including GRC metrics), and briefings for the CIO.
- Incident Response & Leadership
- Lead security incident response coordination.
- Provide technical leadership on security architecture and secure configurations.
- Manage security vendor relationships and provide input/manage the security budget.
- Lead and mentor any direct or indirect security team members.
Required Qualifications
- Experience: 8‑10+ years of progressive experience in Information Security across multiple domains.
- GRC Expertise: Strong understanding and practical experience with Governance, Risk Management, and Compliance (GRC) principles and frameworks (e.g., implementing controls based on NIST/ISO, managing risk registers, policy lifecycle management, supporting audits such as SOC 2 or ISO 27001).
- SaaS Security Expertise: Demonstrated experience in securing SaaS applications (controls, configuration, risk assessment). Understanding of identity federation.
- Collaboration Skills: Proven ability to collaborate effectively with technical (Development, IT) and business/support functions (Sales, Legal, Compliance). Experience with DevSecOps principles desirable.
- Client‑Facing Communication: Excellent client‑facing communication, presentation, and interpersonal skills. Ability to represent security posture confidently externally.
- Business Acumen: Ability to understand business processes and translate technical security concepts into business/risk terms.
- Leadership: Proven experience leading security operations, projects, or teams.
- Technical Expertise: Deep understanding of core security principles, technologies, frameworks. Broad knowledge of cloud security, endpoint security, IAM, SIEM, vulnerability management, network security concepts.
- Risk Management: Solid experience with security risk assessment methodologies.
- Execution Focus: Demonstrated ability to manage security operations and GRC processes effectively.
- Education: Bachelor’s degree in Computer Science, Information Security, or related field, or equivalent experience.
Preferred Qualifications
- Master’s degree in Cybersecurity or related field.
- Certifications: CISSP, CISM, CRISC, CISA.
- Experience completing industry‑standard security questionnaires (e.g., SIG, CAIQ VSAQ).
- Experience reporting directly to senior leadership.
- Experience managing security vendors.
- Knowledge of specific Indian, European and American data protection laws and cybersecurity regulations.
- Rejoignez TEHORA comme Conseiller en Gouvernance de la Sécurité de l'Information Senior, avec la possibilité de télétravail. Apportez votre expertise en stratégies de sécurité et en analyses de risques. Dans ce rôle senior, vous serez responsable de la définition des stratégies...SuggestedRemote workFlexible hours
- Become a key player at BDC as a Bilingual Manager in Security and Disbursement. Ensure timely, accurate financing for Canadian entrepreneurs while navigating complex loan processes in a hybrid work model. At BDC, you will play a vital role in managing approved financing...Suggested
- Join Google Cloud to enhance security compliance and authorization processes in connection... ...This role requires deep expertise in risk management and assessments. As the Manager of Security... ...or risk management Capability to secure a Top Secret security clearance Understanding...Suggested
- ...En tant que responsable TI et sécurité de l’information chez Mirego, tu es la personne de référence pour... ...supplémentaire IT Information Security Lead As IT Information Security Lead... ...impact analysis, planning, and change management You have experience in information...SuggestedFull time
$35.5 per hour
...Information Technology (IT) Specialist (LMIA requested) Actif Gestion Technologies Inc. is seeking an IT specialist to design, develop,... ...solutions Provide advice on information systems strategy, policy, management, and service delivery Conduct reviews to assess quality...SuggestedHourly payPermanent employmentFull timeTemporary workLmiaDay shift- ...have a passion for producing and interpreting financial information, as well as managing databases? This opportunity may be for you. We are looking... ...between actual results and forecasts Produce management reports, analyses, and dashboards to support decision-making...Flexible hours
- ...En tant que responsable TI et sécurité de l’information chez Mirego, tu es la personne de référence pour tout ce qui touche aux technologies de l’information et à la sécurité de l’information chez Mirego. Tu pilotes les initiatives TI, tu veilles à la conformité de tous nos...Full time
- ...les propositions de fournisseurs dans le cadre des appels d'offres; Réaliser les schémas d'architectures technologiques (performance, sécurité, scalabilité, disponibilité) Requirements Détenir un diplôme universitaire pertinent en informatique, en génie informatique, en...Hourly payContract workApprenticeshipWork at officeRemote workFlexible hours
- Titre du poste Auditeur(trice) senior en technologies de l’information Bâtissez l’avenir avec nous Vous êtes animé(e) par la gestion des... ...programmes de test Maîtrise des principaux domaines TI : sécurité de l’information, cybersécurité, exploitation des TI, plan de continuité...ApprenticeshipFlexible hours
- TEHORA est présentement à la recherche d’un(e ) contrôleur interne en sécurité de l’information sénior Sans être exhaustifs, voici les services et livrables que devra fournir la personne retenue : Définir les stratégies de sécurité; Réaliser des analyses de risques...Hourly payContract workApprenticeshipRemote workFlexible hours
- ...to join our authentication and identity management reliability engineering group in an agile... ...– General network and enterprise security standards and concepts as they pertain to... ...interest in Authentication services and Information Security. • Excellent written and oral English...Long term contract
- ...candidate will serve as a Cyber Systems Security Engineer member of the naval development... ...very large and complex military systems Information segregation (separation of classified... ...technical and non‑technical engineering and management staff as well as with personnel assigned...Part timeRemote workFlexible hours
- Elevate cloud security at Fullscript as a Cloud Security Specialist. Enhance AWS and Google... ...collaborating with engineering teams to develop secure implementations, while also addressing... ...• Develop IAM strategies and key management solutions • Integrate security into CI/CD...
- ...Technologue en architecture chez Technorm à Montréal, avec un axe sur la sécurité incendie et les normes réglementaires. Votre expertise sera clé... ...exigences réglementaires • Capacité à structurer et analyser l'information Utilisez vos compétences en architecture pour une carrière...
- Intégrez un rôle clé comme Expert en Santé et Sécurité Senior, soutenant les opérations lors d'incidents majeurs. Participez à des enquêtes, audits et gestion de crise, tout en assurant la conformité. Relevant du Directeur(ice) du centre d’excellence, vous serez en charge...
- ...et de soutien opérationnel de projets concernant des systèmes d’information complexes, multisites et touchant plusieurs secteurs de l’... ...techniciens en informatique. Attributions La direction générale de la sécurité de l’information, de la cybersécurité et de l’infonuagique (...Permanent employment
- Drive innovation in cloud security as a Senior Cloud Security Architect at Thales, Vancouver. Leverage your expertise in Imperva's Cloud... ...enterprise services delivery. Key Responsibilities: • Configure and manage the Imperva Cloud Application Security platform • Analyze...
$110k - $300k per year
À propos du rôle L’équipe Sécurité de Hopper est petite par conception et déterminante par son impact. En tant qu’ingénieur(e) sénior en sécurité, vous serez responsable des outils, de l’automatisation et des processus qui assurent la sécurité de nos applications tout au long...Daily paidRemote work$130k - $180k per year
...The Security Product Management team is vital in safeguarding customer trust and making data security a market differentiator that enables MongoDB... ...process. To request an accommodation due to a disability, please inform your recruiter. MongoDB is an equal opportunities...Full timeInternshipWork at officeRemote workWorldwideFlexible hours- ...liés aux opérations maritimes. L’expert maritime joue un rôle clé dans le maintien et l’amélioration des standards de conformité et de sécurité des opérations maritimes. *Le titre du poste affiché peut être différent de celui à l’interne pour faciliter la recherche d'...Permanent employment
- ...of online features that our Online Game Services team helps games utilize. What You’ll Do Epic Games is looking for a Senior Game Security Programmer to join our Anti‑Cheat team and work with not only our titles but a wide variety of games from around the world. You’ll join...Long term contractTemporary work
- Intégrez Solution SFT comme Conseiller senior en gouvernance de la sécurité de l'information à Québec, avec un modèle de travail en télétravail. Ce rôle stratégique exige des connaissances en sécurité et en gestion des risques. Dans ce poste, vous aurez l'opportunité de...Remote work
- Support the Cyber Security initiatives as a Senior Software Developer with a focus on scalable technology solutions. This expert-level role... ...pivotal role in developing distributed systems and implementing secure development practices. Key Responsibilities: • Design and...
- Step into a vital role as an Expert Software Developer focused on Cyber Security within Cyber Data Risk & Resilience. Leverage your expertise in cloud and AI initiatives to develop secure technology solutions. With over 12 years of experience, you will design scalable software...
- ...nous Chez Zone SST, nous sommes des passionnés de santé et sécurité au travail. Notre approche gagnant-gagnant vise à apporter une... ...règlements en SST (LSST, RSST, CSTC) Capacité à vulgariser l’information et à mobiliser les équipes Autonomie, polyvalence, rigueur et...Permanent employmentWeekend work
- Rejoignez une entreprise humaine en tant que Directeur Santé et Sécurité. Ce poste vous permettra de leader des initiatives qui améliorent la sécurité des employés. Dans ce rôle, vous serez responsable de guider le développement des systèmes de santé et sécurité dans un environnement...
- Become a driving force in information security as a Senior Consultant. Design effective security architectures while validating technical solutions in a flexible working environment. In this senior role, you will leverage your extensive IT experience to enhance information...Flexible hours
- ...nous Chez Zone SST, nous sommes des passionnés de santé et sécurité au travail. Notre approche gagnant-gagnant vise à apporter une... ...règlements en SST (LSST, RSST, CSTC) Capacité à vulgariser l’information et à mobiliser les équipes Autonomie, polyvalence, rigueur et...ApprenticeshipAfternoon shift
- ...Dans le cadre de la remise en production de la Mine Géant Dormant, Mines Abcourt est à la recherche d’un Conseiller en santé et sécurité . Mines Abcourt offre un salaire et des avantages sociaux compétitifs dans un environnement de travail créatif pour une personne...Work at officeDay shift
- ...shaper. Vous souhaitez jouer un rôle clé dans un projet industriel d’envergure et contribuer directement à façonner une culture santé, sécurité et environnement forte, proactive et axée sur la prévention? À titre de Directeur(trice) SSE – Projet, vous agirez comme leader...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Information Security Manager. Be the first to apply!
