Momentum Financial Services is a leading provider of financial services in North America. For 40 years, we've been committed to providing financial solutions that meet the evolving needs of consumers and business owners. Through our retail network of over 400 locations, known as Moneymart, Insta Cheques and the Cheque Cashing store, we provide access to cash and related products to help our customers achieve their goals.
Our highly skilled workforce puts customers first in everything we do. We serve 2 million people annually with diverse and innovative financial products such as loans, cheque cashing, money transfer and prepaid cards. Through this ever-evolving suite of services, we empower customers to manage their finances and improve their lives. Wherever customers are on their financial journey, Momentum Financial Services Group provides solutions.
#Corporate
Job DescriptionJob Summary:
As the Senior Manager of Cyber Operations, you will be responsible for overseeing the cybersecurity operations of MFSG. This role involves managing a team of cybersecurity professionals to detect, respond to, and mitigate cyber threats and incidents. You will collaborate closely with IT, compliance, risk management, and business units to ensure robust security measures and to uphold our commitment to safeguarding sensitive financial data and customer information.
Key Responsibilities:
- Leadership & Team Management:
- Lead and mentor a team of cybersecurity analysts and engineers.
- Foster a culture of continuous improvement, professional development, and accountability.
- Manage team performance, conduct regular performance evaluations, and provide constructive feedback.
- Ensure team adhere to the established MFSG Cyber team principles.
- Collaboration & Communication:
- Work closely with IT teams to integrate security into the IT infrastructure and software development lifecycle.
- Present cybersecurity risks, trends, and initiatives to senior leadership and stakeholders.
- Act as a liaison between technical teams and non-technical stakeholders to communicate security issues and initiatives effectively.
- Security Operations Center (SOC) Management:
- Manage day-to-day operations of the SOC, ensuring efficient monitoring and analysis of security alerts.
- Develop and refine security monitoring and alerting strategies to improve detection capabilities.
- Ensure the SOC is equipped with the latest tools and technologies for threat detection and response.
- Incident Response:
- Oversee the development and execution of the incident response plan.
- Coordinate and lead incident response efforts for cybersecurity incidents, ensuring timely detection, containment, and remediation.
- Conduct post-incident analysis and develop lessons learned to enhance future response efforts.
- Threat Intelligence & Risk Assessment:
- Monitor emerging threats and vulnerabilities that may impact the institution.
- Conduct risk assessments and threat modeling to identify potential risks and recommend mitigation strategies.
- Collaborate with external threat intelligence partners and agencies.
- Ensure Vulnerability Management conducted effectively and remediation are preformed as per defined SLA.
- Compliance & Policy Development:
- Ensure compliance with regulatory requirements and industry standards (e.g., PCI-DSS).
- Develop and maintain cybersecurity policies, standards, and procedures in alignment with best practices.
- Collaborate with the compliance team to prepare for audits and assessments.
- Education:
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Experience:
- 7+ years of experience in cybersecurity, with at least 3 years in a leadership or managerial role.
- Proven hands on experience in incident response, threat intelligence, and security operations.
- Certifications:
- Relevant cybersecurity certifications such as CISSP, CISM, CEH, or GIAC are highly desirable.
- Skills:
- Strong operational leadership skills to manage a team
- Able to coach and mentor a team
- Able to manage and maintain engagement from multiple stakeholder groups
- Expert knowledge of cybersecurity frameworks, tools, and technologies.
- Strong knowledge of security information and event management (SIEM) systems.
- Excellent analytical, problem-solving, and decision-making skills.
- Strong communication skills, both written and verbal, with the ability to communicate complex security concepts to non-technical audiences.
Working Conditions:
This position may require on-call availability for incident response.
Will involve working in a high-pressure environment, particularly during cybersecurity incidents.
Additional Information
All your information will be kept confidential according to EEO guidelines.
*Notice to Ontario Applicants – Momentum Financial Services Group is committed to accommodating applicants with disabilities up to the point of undue hardship during the recruitment, assessment, and selection process. If you are selected for an interview, please notify Momentum Financial Services Group if you require accommodation in respect of the materials or procedures used at any time during this process. If you require accommodation, we will work with you to determine how to meet your needs.
Note to Internal Applicants: All internal applicants are required to notify current manager regarding interest in applying for this role.