Manager of Information Security

We are seeking an experienced Manager, Information Security to support and enhance the organization's global cybersecurity operations, governance, and compliance efforts. This role will be responsible for implementing and maintaining security controls, coordinating compliance initiatives, and ensuring day-to-day operational excellence in protecting organizational assets and data.

The ideal candidate will have strong technical and analytical skills, with the ability to translate security strategy into actionable plans, execute risk mitigation measures, and work collaboratively across global teams. The Manager, Information Security will report to the Director of Information Security and Compliance and play a key role in advancing cyber maturity, maintaining regulatory compliance, and embedding security best practices across CORA's international operations.

Job Responsibilities

• Implement and manage information security policies, standards, and controls, ensuring alignment with global frameworks such as ISO/IEC 27001, NIST CSF, and SOC 2.

• Coordinate day-to-day security operations, including monitoring, incident response, vulnerability management, and remediation tracking.

• Support global compliance initiatives such as SOC 2, ISO/IEC 27001, GDPR, and ADGM, including audit preparation, evidence collection, and corrective action follow-up.

• Collaborate with IT, DevSecOps, Risk, and Business Continuity teams to identify and mitigate technical and operational security risks.

• Manage and monitor security tools and systems (e.g., endpoint protection, SIEM, identity management, data loss prevention).

• Conduct risk assessments and security reviews for new systems, vendors, and projects, ensuring appropriate controls are in place.

• Drive security awareness and training programs across teams to strengthen the organization's security culture.

• Prepare and maintain audit-ready documentation, metrics, and reports on security posture, compliance progress, and risk remediation.

• Contribute to the continuous improvement of global security processes, helping to standardize practices across regions.

• Serve as an escalation point for operational security issues, working closely with the Director to implement long-term corrective measures.

Background and Experience

• 8–10+ years of experience in information security, cybersecurity operations, or compliance within enterprise or global environments.

• Demonstrated success in implementing and managing security controls and compliance programs based on standards such as ISO/IEC 27001, NIST CSF, GDPR, and SOC 2.

• Hands-on experience with security monitoring, risk assessments, and incident management processes.

• Familiarity with vulnerability management, cloud security, and access control frameworks.

• Proven ability to work across business units and geographies, collaborating with cross-functional teams.

• Strong understanding of governance, risk, and compliance (GRC) principles and practices.

Skills and Abilities

• Strong analytical and problem-solving skills, with attention to detail in identifying and resolving security gaps.

• Proficient in security technologies and platforms (SIEM, EDR, firewalls, IAM, DLP, etc.).

• Skilled at communicating technical and compliance information clearly to both technical and non-technical audiences.

• Strong organizational and documentation skills, with experience preparing audit-ready materials.

• Ability to balance multiple projects, prioritize effectively, and work under pressure in a global matrixed environment.

• Collaborative, adaptable, and proactive mindset with a passion for improving security maturity.

About CORA Loyalty

CORA Loyalty provides, in one integrated company, the software solutions and related services that brands need to maximize value from their Loyalty programs. The hub of CORA Loyalty, RewardOps, enables global financial institutions, travel providers, and coalition programs to connect their loyalty program members to a global e-commerce marketplace, where they can choose rewards from millions of products offered by the brands they love. For enterprise customers, Carlson Marketing Solutions provides an institutional-grade loyalty program management and points bank system. Channel loyalty programs are served by the Points at Work platform, a turnkey platform for sales and employee incentive plan use cases. Finally, the digital marketing and data sciences services of Carlson Marketing and the global supply chain management capabilities of RewardOps ensure that CORA Loyalty customers derive maximum value from their loyalty program investments.

#LI-VL1

Jonas Software is the leading provider of enterprise management software solutions to the Country and Golf Clubs, Foodservice, Construction, Fitness & Sports, Attractions, Salon & Spa, Education, Radiology/Laboratory Information Systems, and Product Licensing industries. Within these vertical markets, Jonas is made up of over 65 distinct brands, which are respected and leaders within their own domain.

Jonas' vision is to be the branded global leader across the aforementioned vertical markets and to be recognized by customers and respective industry stakeholders as the trusted provider of 'Software for Life' and as an ambassador for technology, product innovation, quality, and customer service.

Jonas Software is the valued technology partner of over 60,000 customers worldwide in more than 30 countries. Jonas employs over 2,000 skilled individuals consisting of a cross-section of industry experts and technology professionals.  Jonas is headquartered in Canada and also operates offices throughout North America, the United Kingdom, Europe, Australia New Zealand and Africa.  Jonas is a 100% owned subsidiary of Constellation Software Inc., headquartered in Toronto and traded on the S&P/TSX 60.