ob Title: Manager, Cybersecurity and IT Risk Management
Location: Winnipeg, Manitoba

We are seeking an experienced and strategic Manager of Cybersecurity and IT Risk Management to lead and enhance our organization's security posture. This leadership role is responsible for developing, implementing, and overseeing cybersecurity policies, risk management frameworks, and compliance initiatives. The ideal candidate will collaborate with senior leadership, IT teams, and external partners to safeguard data, mitigate risks, and ensure regulatory compliance.

• Develop and implement a comprehensive cybersecurity strategy aligned with business objectives.

• Oversee threat detection, incident response, and vulnerability management programs.

• Ensure compliance with industry standards and regulatory requirements (e.g., NIST, ISO 27001, SOC 2).

• Lead cyber risk assessments and ensure the organization has effective risk mitigation strategies.

• Drive continuous improvement of security protocols to address evolving threats.

• Establish and maintain a risk management framework to identify, assess, and mitigate IT risks.

• Collaborate with internal teams to ensure risk controls are integrated into IT operations.

• Conduct regular security audits and assessments to identify potential vulnerabilities.

• Provide risk reporting and recommendations to senior leadership and stakeholders.

• Develop and enforce cybersecurity policies, standards, and procedures.

• Ensure adherence to regulatory and compliance requirements, including data privacy laws.

• Collaborate with legal, audit, and compliance teams to ensure effective governance.

• Monitor third-party vendor risk and ensure appropriate security controls are in place.

• Lead and mentor a team of cybersecurity analysts, engineers, and IT risk specialists.

• Foster a culture of security awareness across the organization through training and education.

• Collaborate with IT, legal, and business units to align cybersecurity with business goals.

• Manage vendor relationships, including security service providers and consultants.

• Bachelor's or Master's degree in Computer Science, Information Technology, or a related field.

• 7+ years of experience in cybersecurity, IT risk management, or information security leadership.

• Strong knowledge of cybersecurity frameworks and standards (NIST, ISO 27001, CIS, etc.).

• Experience with threat intelligence, incident response, and security operations.

• Proven track record in risk assessment, mitigation strategies, and policy enforcement.

• Familiarity with cloud security, endpoint protection, and network security protocols.

• Strong project management skills with experience overseeing security initiatives.

• Certifications such as CISSP, CISM, CRISC, or CISA.

• Experience with GRC tools and risk management platforms.

• Knowledge of emerging threats, zero-trust architecture, and cloud security best practices.

• Leadership role with strategic influence in a growing organization.

• Opportunity to drive cybersecurity innovation and risk management practices.

• Competitive salary, benefits, and professional development opportunities.

If you are a dynamic leader with expertise in cybersecurity and IT risk management, we encourage you to apply for this exciting opportunity in Winnipeg!