itjobs.ca Logo
Stikeman Elliott LLP logo

Manager, Cyber Security Operations

Stikeman Elliott LLPabout 23 hours ago
Toronto, Ontario, Canada
CA$115,000 - CA$130,000/annually
Senior Level
Full-Time

About the role

Join the ranks of Stikeman Elliott, one of Canada's leading business law firms. Located in the heart of Toronto's financial district with convenient access to public transit, our Toronto office offers an exceptional workplace for talented professionals. Recognized as one of Canada's Best Employers for 15 years, we are committed to attracting and developing exceptional talent.

Are you ready to lead a modern cybersecurity operations program and help protect one of Canada's premier law firms? We are seeking an experienced Manager, Cyber Security Operations to lead our Security Operations team and drive the continued evolution of our cybersecurity capabilities.

Reporting to the CISO, the Manager, Cyber Security Operations is responsible for the day-to-day leadership of Stikeman Elliott's security operations, including internal and outsourced Security Operations Centre (SOC) services, threat intelligence, and vulnerability management within a co-managed SOC model. Working closely with the Lead Security Architect and the Senior Information Security & Risk Analyst, this role develops and manages the technical standards, solutions, and processes that support the Security Operations team's mission. The Manager combines operational leadership with program ownership to ensure the firm's security operations remain effective, resilient, and aligned with evolving business needs.

Responsibilities & Deliverables

Security Operations Oversight:

  • Provide oversight for the Security Operations team.
  • Oversee the monitoring, identification, and resolution of security incidents to detect threats through analysis, investigation and prioritization of incidents based on risk/exposure.

Incident Response & Investigations:

  • Develop and maintain an incident response management program that includes incident detection, analysis, containment, eradication, recovery, and chain of evidence / forensic artifacts required for additional investigations.
  • Produce detailed reporting of findings, events, and activities related to incident response.

Threat Intelligence & Threat Analysis:

  • Monitor and assess developments in the threat and vulnerability landscape, proactively provide security advisories to relevant stakeholders.
  • Perform trend analysis to identify potential cyber threats, targets of interest, and timeframes of attacks.
  • Deliver cyber intelligence briefings to key stakeholders.

Vulnerability Management & Risk Reduction:

  • Analyze vulnerability scan results, identify vulnerability patterns, and partner with technology teams to define and execute streamlined processes to remediate vulnerable systems across the estate.

Governance, Reporting & Vendor Management:

  • Develop and maintain information security metrics on the effectiveness of cybersecurity initiatives as well as provide related insight to security leadership.
  • Advise the CISO on findings and assist with mitigation strategies to address vulnerabilities used by advanced attackers.
  • Provide security analytics reports as well as information regarding emerging threats to the appropriate stakeholders
  • Work with enterprise architecture and IT operational teams to implement security best practices and standards
  • Manage and coordinate with cybersecurity vendors to ensure operational effectiveness, SLA achievements and KPI definitions.

Qualifications and Required Experience:

  • Minimum 5 years of cyber security operations experience (e.g. SOC/CIRT) preferred.
  • Bachelor’s Degree in Computer Science or related field, or equivalent experience and knowledge is preferred.
  • One or more of the following certifications: CISSP, CISA, CISM are an asset
  • Experience managing a team of Security Operations staff.
  • In-depth understanding of security issues and tools used across different platforms including threat intelligence, security operations, incident response and forensic investigation.
  • Excellent reporting and presentation skills using Excel, PowerBI and PowerShell to present complex information in a manner suitable for technical and non-technical audiences, including executives.
  • Knowledge of security controls/mechanisms and threat/risk assessment techniques
  • Thorough understanding of M365/Azure Cloud Native Services such as Defender for Cloud Apps, Defender for Office 365, Microsoft Purview, etc.
  • Knowledge and experience in M365/Azure domains – Compliance, Identity and Access, Threat and Vulnerability, Network and Application security.
  • Ability to work with security analysts, cross-functional IT staff and external vendors to rapidly detect, contain, investigate, remediate, and recover from security incidents.
  • Demonstrated ability to build, execute and lead SOC initiatives, programs, and an organization
  • Broad understanding of cyber security and networking.

Salary Range (Toronto Only):

$115,000- $130,000 annually.  The posted salary range reflects the expected compensation for this role. Final offers are determined based on relevant skills, qualifications, and experience.

The position is for an existing vacancy. 

Stikeman Elliott is committed to accommodating people with disabilities as part of our hiring process. If you have special requirements, please advise Human Resources during the recruitment process.

About Stikeman Elliott LLP

Law Practice

Similar Jobs