Manager, Information Security

Join to apply for the Manager, Information Security role at Samsung Electronics. At Samsung Electronics Canada, we take pride in the creativity and diversity of our talented people – they are at the front of everything we do. They drive our continued success. We want the best of the best to join our team, not just those who fit into our culture but those who will add to it. Position Summary The Manager, Information Security will play a key role in our company, working closely with IT and Business to help align security goals with business objectives. This role will also help in the implementation and maintenance of various security solutions; ensuring effective integration while managing day‑to‑day operations. The role oversees the flow of all Strategic Project Information (samples, specs, design, S/W, etc.) for Security Projects, including security protocols and approvals for both Samsung employees and third party providers. Role And Responsibilities Strategic Project Information Management Ensure security protocols such as NDA and training are completed prior to project initiation. Determine asset access authorization for internal and external entities. Conduct security training for internal employees and agency partners. Prepare security and clean‑room checklists, printing requirements, etc., before every strategic project kick‑off. Review exception requests and identify compensating controls before approval. Review and approve access to Samsung’s FTP solution for both internal employees and agencies; establish a secure access management process. Manage vulnerability remediation and firewall requests by coordinating with Samsung Security teams. Keep records of all access and ensure only employees part of the project have access. Conduct investigation in the event of a security incident and report to Information Assurance group. Security Projects Oversee deployment, configuration, and ongoing administration of security tools such as SIEM, EDR, DLP, CASB, and password manager solutions. Configure and manage DLP/EDR policies as per security standard. Manage Splunk, ensuring CIM compliancy, collaborating with system owners, correcting any logging issues, managing or creating SOPs and design documents, creating dashboards, and optimizing searches. Work with Splunk engineers to ensure all data is CIM compliant. Assist in proper operation and performance of Splunk, search heads, and data models. Security Assessment, Monitoring, Reporting and Auditing Monitor and analyze logs from various systems using Splunk SIEM. Identify, investigate, and respond to security incidents. Monitor, collect, analyze endpoint activity in EDR that could indicate a threat and respond, including notifying security personnel. Use forensics and analysis tools to research identified threats and search for suspicious activities. Monitor data transfer, implement security measures, and conduct risk assessments to identify vulnerabilities in DLP. Develop ongoing technology risk reporting, monitor key trends and define metrics to measure control effectiveness; ensure visibility and awareness of vulnerabilities with the company’s internal and external IT systems. Perform security assessment for cloud deployments and services. Conduct regular vulnerability assessments and risk analysis. Oversee and audit installation and operation of security equipment and facilities to comply with the company’s information security policy. Provide technical guidance and support to other IT and Security team members. Review and manage ongoing assessment of firewalls, web proxies, SIEM, Wi‑Fi networks, vulnerability assessments and other network component policies. Oversee third‑party security and compliance audits and any resulting remediation actions. Ensure security compliance with policies and laws. Training/awareness/communication/testing – e.g., KnowBe4 Platform Management, monthly newsletters. Stay informed about emerging security threats and recommend appropriate countermeasures. Requirements Education Bachelor’s degree in Computer Science, Information Systems, or equivalent field. Knowledge Knowledge of risk management, security architecture, threat modelling, vulnerability management, IT and physical security routines. Strong understanding of network protocols, system vulnerabilities and attack vectors. Understanding of Canadian security and privacy legislation. Capability to serve as an expert resource in technology controls and information security for project teams, business, organization and outside vendor. Specialized expertise and support on assessing risks and mitigating gaps. Advanced knowledge of MS Word, Excel (including pivot tables, VLOOKUP) and PowerPoint. Willingness and ability to respond to security‑related emergency calls 24/7/365. Experience Minimum 8 years in information security, with at least 3 years in Splunk SIEM, EDR, CASB and DLP solutions. Experience managing multiple security technologies and deep understanding of industry best practices. Hands‑on experience managing SIEM (e.g., Splunk), web proxies, firewalls, DLP, EDR, CASB, password managers, security awareness tools, vulnerability management tools, software license management, PKI. Accreditation in at least one information security certification (CISSP, CISM, CRISC, CompTIA Security+, CCSP). Nice to have: Splunk Enterprise Security Certified Admin or Splunk Enterprise System Administration Certification. Benefits Fantastic employee discount on all Samsung products. Competitive salary and performance‑based incentive plan for all levels. Employer‑paid medical and dental coverage from day one. Group RRSP plan to help you save for the future. Free on‑site gym. Subsidized cafeteria, including free Starbucks coffee/latte machine. 4‑day in‑office work schedule (Monday‑Thursday); Friday is a flex day to work remotely. Tuition reimbursement for learning and access to Samsung U for 24/7 online learning. Employee referral program. Virtual pet care. Additional Well‑Being days for better work‑life balance. Equal Opportunity Employer Samsung is an equal employment opportunity employer. Samsung has an accommodation process in place and provides accommodations for job applicants with disabilities. Assessment and selection materials and procedures can be made available in accessible formats and methods as appropriate. If you require a specific accommodation because of disability or medical need, please let us know when selected to take part in our recruitment process. Application Notice We thank you for your interest in working for Samsung. Only candidates selected for an interview will be contacted. We reserve the right to remove or modify job postings at any time. #J-18808-Ljbffr