Manager, Cybersecurity & IT Risk ensuring audits and risk management practices at CNB. Collaborating with teams to address cybersecurity and IT controls issues effectively.
About the role
- Director of Information Security overseeing governance, risk, and compliance functions at Aecon. Leading security operations and architecture to enhance enterprise security maturity.
Responsibilities
- Own enterprise security policy framework and risk management program aligned to NIST CSF and ISO 27001.
- Oversee audits, regulatory assessments, and third-party risk management.
- Ensure organizational compliance with CMMC 2.0 (US), CPCSC (Canada) and all other relevant security frameworks/regulations.
- Lead 24×7 incident detection and response, threat intelligence, and vulnerability management.
- Define security reference architectures and patterns (Zero Trust, cloud security).
- Manage multi-million-dollar budget and work on negotiations for complex contracts (MSA/SLA/SOW).
Requirements
- 10+ years in Information Security; 5+ years leading GRC, SecOps, and Architecture teams.
- Proven experience managing large enterprise budgets and vendor contracts.
- Certifications: CISSP, CISM, CRISC, CCSP preferred.
- Strong knowledge of NIST CSF, ISO 27001, SOC 2, SOC 1, and Canadian privacy regulations.
- Working knowledge of CMMC 2.0 would be considered an asset.
Benefits
- Ensure you and your family receive the services needed to support your mental, emotional, and physical well-being.
- Believe in helping you build your career through our Aecon University and Leadership Programs.
- Are committed to supporting and investing in inclusive work environments, through initiatives like Equity, Diversity & Inclusion training, our Aecon Women in Trades and Aecon Diversity in Trades programs, and our Employee Resource Groups (ERGs) to ensure we are building inclusion into every aspect of our culture at Aecon.
- Are a leader in sustainable construction. With a strong commitment to operating responsibly by minimizing our impact on the environment and surrounding communities.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Security Principal at Optiv designing AI security solutions for clients, leveraging advanced security services and technologies. Driving pipeline generation and maintaining strong client relationships as a trusted advisor.
Technical Leader overseeing security for Product and Cloud at Tempo. Leading team, engaging with partners, ensuring compliance, fostering innovations in security practices.
Senior Cybersecurity Advisor providing support to threat and vulnerability analysts at Exposant 3 in a hybrid work model. Collaborating on incident responses and vulnerability management in a dynamic team.
Financial Security Advisor at RBC Insurance connecting clients with comprehensive insurance solutions. Building client relationships and leveraging RBC’s brand to grow the market.
Senior IAM Systems Support Analyst responsible for deploying and improving IAM services at RBC. Supporting MFA systems and ensuring platform reliability while collaborating with various teams.
Senior Manager overseeing IAM initiatives and strategic roadmap execution at RBC. Partnering with stakeholders to enhance organizational capabilities in Identity and Access Management.
Senior Internal Controller in information security defining security strategies and conducting risk analysis. Participating in audits and controls for a multidisciplinary firm in Canada.
Senior Security Consultant specializing in penetration testing at TEHORA. Defining security strategies and conducting risk analyses and audits.
Product Manager responsible for managing Microsoft Security Services portfolio at Softchoice. Engaging with customers, Microsoft and stakeholders to drive market success and growth.