Senior Cybersecurity SOC Manager

.**Range:**95,200.00 - 142,800.00 CAD**Job Description:****Senior Cybersecurity SOC Manager****GAME ON – OLG needs you**We’ve said GAME ON, and we mean it – OLG is rapidly transforming its organization to better serve Ontarians by delivering great gaming experiences through our digital, retail lottery, and land-based gaming channels. Over the course of fiscal 2023-24, OLG delivered a record $2.4 billion in net profit to the Province of Ontario. OLG is now expanding our horizons even further, with a new strategic direction that builds on successes to date as a world class gaming entertainment leader with a globally admired omni-channel platform.We are ready to take this game to the next level and need a passionate **Senior Cybersecurity SOC Manager** be responsible for leading and managing the daily operations of the security operations team, ensure the timely and effective detection, analysis, investigation, escalation and response to cybersecurity incidents. This role serves as a critical bridge between cybersecurity leadership (e.g. Director of Cybersecurity Operations) and the SOC analysts (Tier 1 to Tier 3), fostering operational excellence and team cohesion, while serving as a senior technical expert.**YOUR ROLE IN THE GAME**Reporting to the Director Cybersecurity Operations, you will be empowered to:**PRIMARY ACCOUNTABILITIES*** Supervise day to day SOC activities, ensuring consistent monitoring and response to security events, escalations and reporting* Coordinate cross functional response efforts and ensure timely escalation.* Lead post incident reviews, root cause analyses, lessons learned sessions and drive continuous improvement.* Provide technical and procedural guidance for escalated security events* Oversee high severity or escalated security incidents, guiding analysts and coordinating with stakeholders.* Oversee security operations procedures, ensuring adherence and effectiveness, including cloud security practices and automated threat responses.* Review actual or potential security incidents and vulnerabilities and ensure they are promptly and thoroughly investigated. Recommend actions and appropriate control improvements. Ensure the integrity and completeness of security records.* Contribute to the creation and maintenance of security policies, standards and procedures integrating new compliance requirements and technological advances.* Responsible for the operation of the incident management process.* Manage, mentor and develop SOC teams including L1, L2 and L3 analysts.* Define and track KPIs, SLAs and analysts' productivity, implement improvements based on performance gaps.* Ensure the efficient use of SIEM, EDR and other tools; oversee integrations and tuning projects.* Manage incident communications, ensuring all parties are aware of incidents and their role in the process.* Lead the review of major incidents and informs service owners of outcomes. Ensure incident resolution within service targets. Analyze metrics and reports on the performance of the incident management process.**SECONDARY ACCOUNTABILITIES*** Provide guidance on the application and operation of elementary physical, procedural and technical security controls.* Review and approve investigation reports and incident postmortems for thoroughness and accuracy.* Initiate and monitor actions to investigate and resolve problems in systems, processes and services. Collaborate with others to implement agreed remedies and preventative measures.* Support analysis of patterns and trends to improve problem management processes.* Drive continuous improvement plans, including automation opportunities and process maturity.* Monitor the implementation of effective controls for internal delegation, audit and control relating to information management. Report on the consolidated status of information controls to inform effective decision-making.* Identify risk mitigation measures required in addition to the standard organisation or domain measures.* Contribute to planning and organisation of information assurance and accreditation activities and the development and implementation of information assurance processes.* Monitor service delivery performance metrics.* Follow standard approaches to perform basic vulnerability assessments for small information systems.**COACHING/MENTORSHIP ACCOUNTABILITIES*** Coach colleagues to develop their target skills and capabilities in line with team and personal goals.* Allocate routine tasks or project work, in line with team objectives and individual capabilities. Monitor quality and performance against agreed criteria to make learning recommendations or to escalate concerns.* Help individuals navigate areas of uncertainty, offering practical advice and connecting them with the appropriate resources when needed.* Support learning and development activities under routine supervision.**WHAT YOU NEED TO PLAY*****Work Experience:*** Minimum 7 years’ experience in Cybersecurity related disciplines. | Minimum 10 years’ experience in Information Technology related disciplines. | Cybersecurity-related personal project portfolio is an asset.***Education:*** Post-secondary degree or diploma, preferably in Computer Science or Cybersecurity | Cybersecurity Professional Certification (CISSP, GCIH, BTL2, CCSP, CISM) | IT Service Management Certification is an asset (ITIL Foundations) | Access control principles and practices | Coaching and mentoring techniques | Computer networking principles and practices | Cryptography principles and practices \ Cybersecurity principles, practices, threats, and vulnerabilities | Incident detection / prevention system tools and techniques | Incident handling and response tools and techniques | Privacy requirements, principles and practices | Report writing and literacy | System administration principles and practices (Android, iOS, Linux, MacOS, Unix, Windows) | System hardening principles and practices | Threat actor tactics, techniques, and procedures and associated mitigation and detection strategies | Threat hunting techniques | Threat intelligence methodologies***Critical Skills:*** Security Operations: Manages and administers security measures, using tools and intelligence to protect assets, ensuring compliance and operational integrity. | Threat Intelligence: Developing and sharing actionable insights on current and potential security threats to the success or integrity of an organisation. | Incident Management: Coordinating responses to a diverse range of incidents to minimise negative impacts and quickly restore services.***Negotiation and Influence***: ability to negotiate and influence effectively while being open to perspectives and maintaining strong relationships***Strategic Thinker***: strong strategic and critical thinker with ability to delve into unique challenges and find creative solutions***Collaboration & Fun***: inclusive and collaborative work style while creating fun and excitement in our work***Integrity and Trust***: do what's right and operate with transparency and openness**Licenses, Registrations, Certificates:** AGCO Category 2 Gaming Assistant Registration (Initiated at offer stage - employment is conditional upon obtaining and maintaining this license)**PERKS OF JOINING OUR TEAM*** **Part of a Bigger Picture:** socially responsible company that gives back all its profits to the province and people of Ontario* **Flexible Work Environment:** to help balance both work and life* **Freedom to Innovate:** supports new and better ways to be successful* **Be your Authentic Self:** environment that values diversity as a source of strength* **Learning Galore:** 24-7 access to robust online learning programs* **Public Service Pension Plan:** participate in a major defined benefit pension plan sponsored by the Government of Ontario* **Variable Pay Program:** performance-based incentives to share in our success (Permanent
#J-18808-Ljbffr