Job Description

All Manitoba Liquor & Lotteries employees may apply.

Manitoba Liquor and Lotteries is committed to Diversity, Equity and Inclusion. We strive to hire a workforce that reflects the community we serve. Employment equity will be considered therefore applicants who identify as women, Indigenous people, members of racialized groups, and persons with a disability are encouraged to apply.

If you require an accommodation at any time during the recruitment process, please let us know how we can meet your needs.

Job Purpose

---------------


The Senior Enterprise Architect - Cyber Security is the organization's chief cyber security strategist for integrating cyber security into business plans and strategies that securely enable and support business requirements. Additionally, the incumbent is responsible for advancing cyber security and resilience plans, strategies, and working with Information Technology Services in executing cyber security roadmap initiatives to evolve the organization's cyber security program. The incumbent also provides a lead role in cyber risk management, cyber security assessments, and information technology breach and incident response.

Job Responsibilities

------------------------


Perform hands-on gap or risk assessments to identify significant information security risks (including applications, systems, data centers, infrastructure, and vendor security risk assessments) to determine the organizational risk posture. Support cyber security risk assessment for new complex programs. Develop and maintain repeatable standards and checklists for Manitoba Liquor & Lotteries (MBLL) to embedded security-by-design. Oversee cyber security related maturity and threat and risk assessments. Function as the incident lead and security subject matter expert (SME) for the Computer Security Incident Response Team (CSIRT) and assist as necessary in the resolution of cyber security incidents. Collaborate with the Corporate Security or Human Resources departments regarding investigations. Create and maintain ITS policies as well as cyber security procedures and standards. Regularly communicate vital information, security needs and priorities to upper management. Define and assist in the creation of operational and executive security metrics, reports, and dashboards. Perform or supervise vulnerability testing, risk analyses, and security assessments. Develop position statements on the internal use of technology solutions and business opportunities. Lead, develop, and contribute to cloud architecture and design. Develop and maintain cloud security documentation including policies, standards, procedures, guidelines, and Security Reference Architectures. Determine security requirements by evaluating business strategies and requirements; researching information security frameworks; conducting system security and vulnerability analysis, risk assessments, and security assessments; studying architecture/platform; identifying integration issues; preparing effort and cost estimates for cyber security measures. Recommend, evaluate, and design cybersecurity solutions that meet security requirements, current state constraints, and alignment with target state architecture and technology roadmaps. Develop and maintain security architecture artifacts (e.g., patterns, models, templates, standards, workflows) that can be used to integrate security requirements in projects and operations. Perform technology evaluations, supporting business case development, test case definition, and vendor selection based on industry standard criteria. Oversight on testing the organization's final security structures to make sure they function as planned with security-by-design. Continue to improve internal development of standards and design documents, processes, and threat hunting, forensic and other investigatory or analytical techniques. Provide guidance on security architecture, practices and solutions to help business units to build and deliver solutions that meet security requirements. Ensure solution designs and implementations align and comply with contractual, regulatory, and other applicable standards or laws. Identify, report, or document exceptions to standards to the Architectural Review Board. Perform current and future state architectural review and control gap assessments against existing and planned security services, processes and technologies, and develop plans for moving toward the future state. Develop and maintain 3-to-5-year roadmap covering all cyber security domains including defense-in-depth, network security, identity and access management, cloud security, data security, application security, cyber security analytics, endpoint security, and compliance. Work with all levels of business and technical groups to identify cyber security requirements and develop cyber security strategies that support the MBLL Strategic Plan. Align organizational security strategy and infrastructure with overall business and technology strategy. Support development of security vision and strategy on security architectures of applications, programs, and initiatives. Support business strategic planning and work to align enterprise architecture with the organization's annual Strategic Plan. Other related duties as assigned.

Primary Qualifications

--------------------------


Completion of a recognized degree or diploma program in a related IT discipline, or an equivalent combination of education, certification, and experience. A minimum of fifteen years progressive information technology experience with ten years direct experience specializing in Cyber Security. Certification as a Certified Information Systems Security Professional with Architecture concentration (CISSP-ISSAP) or Certified Information Systems Security Professional (CISSP) Knowledge and experience with the Payment Card Industry standards. Previous or current certification as a PCI Qualified Security Assessor (QSA) or Internal Security Assessor (ISA) or willingness to become certified. Broad knowledge of complex and leading-edge technology solutions at the enterprise level and specific applications for discipline specific requirements coupled with a requirement to develop and maintain knowledge of MBLL's core businesses and support functions. In-depth knowledge of IT industry best practices, technologies, architectures, and emerging technologies across all IT domains (networking, servers, storage, application platforms, applications, software development tools and techniques, databases, internet, etc.). Significant written and verbal communication skills. Strong analytical, organizational, communication and presentation skills. Lifelong learning, in developing innovative ways of acquiring and transferring knowledge in complex circumstances. Recertification and upgrading is required to maintain certifications and keep up-to-date on changes in information technology. The core competencies for this position include achieving quality results, adaptability/managing change, communication, customer service, decision making and problem solving, integrity and building trust, teamwork and cooperation and valuing diversity. Leadership competencies include building strategic performance, coaching and developing, influencing and leading. These competencies are deemed important for the success of the position and organization. Satisfactory work performance in the preceding twelve (12) months is a requirement. Attendance rate will be a factor in the pre-screening process.

Secondary Qualifications

----------------------------


Additional certifications in SysAdmin, Audit, Networks, Security (SANS) professional certification (GIAC), Certified Information Security Manager (CISM) or Certified Information Security Auditor (CISA), Certified Cloud Security Professional (CCSP) are considered an asset. Bilingual French/English language skills are an asset.


Testing may form part of the screening/selection process. Circumstances may arise where the bulletin may need to be withdrawn or the number of positions may need to be increased.


We thank all interested applicants, however, only those selected for interviews will be contacted.

A Great Place to Work! Enjoy fantastic benefits with our Total Rewards package

Work/Life Balance and Wellness

Discretionary Time:

Up to 10 paid discretionary leave days per year, depending on bargaining unit. Employees can carry forward discretionary leave days each year for a total of up to 50 days.

Hybrid Work Model for Eligible Positions:

Remote/Office work for eligible positions.

Flex Time:

Flexible shifts and work hours for eligible positions.

Maternity and Parental Leave:

Top-up of E.I. maternity leave benefits to 93% of employee's basic earnings for 17 weeks.

Fitness Allowance Reimbursement, depending on bargaining unit:

Up to $250 per year that can be used to cover gym memberships, fitness equipment, and more.

Computer Purchase /Fitness Purchase Program:

Interest free loans for employees purchasing computer equipment to increase computer literacy, learning, and professional growth, or to purchase fitness equipment for personal health and wellness.

Diversity and Inclusion:

Our Diversity, Equity and Inclusion Committee is made up of employees from across the organization who are passionate about bringing diversity and inclusion to life.

The Together Project:

At Liquor & Lotteries, Caring is part of our corporate culture - we care for each other, our partners, and our community The Together Project represents the charitable efforts of the corporation and its employees working together to enrich the lives of Manitobans. Employee charitable activities are eligible for reward benefits.

Vacation

Accrue up to 10 paid vacation days per year during the first 2 years of employment. Accrue 15 paid vacation days per year after 3 years of employment. Accrue 20 paid vacation days per year after 5 years of employment. Accrue 25 paid vacation days per year after 9 years of employment. Accrue 30 paid vacation days per year after 19 years of employment.

Retirement Savings Plan

Defined Benefit Pension Plan: Guaranteed lifelong monthly payment at retirement provides great security for employee's long-term strategy. Voluntary Group Registered Retirement Savings Plan

Health Insurance and Benefits

Customize your Plan: Choose from a variety of options to best fit your needs. Includes coverage for prescription drugs, vision, dental, ambulance, extended health options and more for you and your eligible dependents. Health Spending Account: Depending on the option you choose, you may receive up to $1,750 towards eligible medical or dental expenses.

Flex Credit: Depending on the bargaining unit and status, you may be provided with a Flex Credit amount to purchase some or all of Group Life Insurance, Accidental Death and Disablement Insurance & Dependent Life Insurance.

World-wide Travel Health Benefits

Employee & Family Assistance Program (EFAP): Free professional wellness support for employees and their immediate family member

Training and Development

Educational Assistance: Tuition reimbursement for eligible employees. Training: Variety of courses and programs to support skill and professional development. Career progression: Internal job posting system that provides opportunities for a variety of career paths. Apprenticeship and skilled trade training: Programs offered in partnership with educational institutions such as RRC Polytech, the University of Winnipeg, and the University of Manitoba.

Discounts and Rewards

Employee Rewards & Recognition Program: Points-based program recognizing employees for earned and nominated achievements such as long-service, going above and beyond, and community volunteer work. * Discounts: Employees receive exclusive discounts from a variety of retailers, entertainment venues, and service providers.