Job Description

A TELUS Sante, nous donnons a chacun les moyens de vivre plus sainement. Guides par notre vision, nous exploitons la puissance de notre technologie de pointe et misons sur l'unicite des personnes pour creer le futur de la sante. En tant que chef de file mondial des services de sante et de bien-etre - englobant la sante physique, mentale et financiere - TELUS Sante ameliore les resultats en matiere de sante pour les consommateurs, les patients, les professionnels de la sante, les employeurs et les employes.
As a Senior Technical Project Manager, you will be a key member of the Technology and Implementation leadership team. You will guide the organization through the FedRAMP certification initiative for a large-scale commercial off-the-shelf pension administration platform. This role requires expertise in technical architecture, security compliance, and program delivery. You will translate regulatory requirements into actionable plans and drive measurable business outcomes.
Responsibilities
FedRAMP Authorization LeadershipLead the FedRAMP authorization program from initial gap assessment through full Authority to Operate (ATO) Coordinate cross-functional teams across Cloud Engineering, DevSecOps, Security, and Compliance to implement NIST 800-53 controls Oversee creation and maintenance of System Security Plans (SSP), Plan of Actions & Milestones (POA&M), and supporting documentation Act as primary liaison with Third Party Assessment Organizations (3PAOs) and federal sponsor agencies Manage remediation efforts based on audit findings and establish continuous monitoring practices

Multi-Framework Certification ManagementLead project planning, execution, and reporting for FedRAMP Moderate ATO, ISO 27001, and CSA STAR certifications Develop and maintain schedules, milestones, deliverables, and dependencies for certification efforts Coordinate with internal teams to ensure controls are documented, tested, and evidenced per relevant frameworks Manage documentation creation including Security Assessment Reports (SAR), incident response plans, and vulnerability management records Oversee continuous monitoring programs and periodic compliance reviews

Technical Architecture & ImplementationOversee that technical architecture and security control implementations are aligned with NIST 800-53 and FedRAMP baselines Partner with Cloud Engineering to build compliant Azure environments for multi-tenant systems Lead the implementation data protection mechanisms across the technology stack Lead the design and validation of identity management, data flow, and API integrations Lead the establishment of vulnerability management and incident response frameworks

Stakeholder Management & CommunicationCommunicate progress, risks, and dependencies to executive leadership and client stakeholders Prepare regular status reports, dashboards, and presentations for senior leadership Facilitate executive steering committees and governance forums Liaise with external auditors, cloud service providers, and regulatory bodies Provide technical mentorship and leadership for compliance best practices

Qualifications
Education and CertificationsBachelor's degree in Computer Science, Information Systems, or Engineering Master's preferred PMP or equivalent project management certification required Cloud certification such as Azure Architect Expert CISSP, CISM, CISA, or FedRAMP Practitioner certification is an asset

ExperienceTen or more years of experience in IT project management or solution architecture for enterprise or government platforms Prior hands-on experience managing FedRAMP certification(s), OR similar cloud security regulatory / assurance programs (e.g. DoD SRG, ISO 27001, SOC 2, GxP etc.). Specifically: familiarity with FedRAMP documentation, continuous monitoring, liaising with 3PAOs, building SSPs, POA&Ms. Experience with CSA STAR or familiarity with the Cloud Security Alliance's CCM or STAR registry, or other related trust & assurance cloud frameworks. Deep working knowledge of cloud environments / platforms (e.g. AWS, Azure, GCP), including security control implementation, cloud network/security architecture, identity & access management, encryption, logging, etc. Familiar with security / privacy / regulatory requirements relevant to pensions and benefits administration, and/or financial services, in the U.S./Canadian jurisdictions (e.g. privacy laws like PIPEDA, HIPAA, GLBA, state data breach laws; US federal agency or state agency standards if applicable). Background in pension administration, benefits management, or financial services technology is an advantage Experience working with third party assessment organizations, federal compliance bodies, and cloud providers

Skills and AttributesStrategic and hands-on leader with excellent communication skills Strong knowledge of NIST 80053 controls, ATO process, and continuous monitoring operations Ability to simplify complex technical and compliance concepts Collaborative, adaptable, and passionate about secure scalable technology

A propos de nous
Nous sommes une equipe axee sur les personnes, les clients et les objectifs, qui collabore, innove et cree des retombees positives au quotidien. Nous ameliorons des vies grace a nos solutions technologiques. Nous favorisons une culture d'innovation qui permet aux membres de l'equipe de resoudre des problemes complexes et de produire des resultats exceptionnels sur le plan humain dans un monde numerique.
A TELUS, nous sommes fiers de notre culture qui encourage la diversite. Nous croyons foncierement a l'importance d'adopter des pratiques equitables en matiere d'emploi. Ainsi, le dossier de tous les candidats qualifies est etudie. Pendant tout le processus de recrutement, nous tenons compte des besoins particuliers des candidats handicapes, au besoin.
Avertissement : Conformement a la Politique de securite des centres de donnees de TELUS Sante, tout membre de l'equipe susceptible de travailler dans un centre de donnees ou d'avoir acces a des renseignements detailles sur les technologies de service client peut faire l'objet d'une enquete de securite aupres du gouvernement du Canada.
La sante et la securite de notre equipe, de nos clients et des communautes que nous desservons sont primordiales pour TELUS. Par consequent, nous exigeons que toute personne qui se joint a nos Cliniques TELUS Sante soit completement vaccinee contre la COVID-19.
Remarque aux candidats du Quebec : si la connaissance de l'anglais est requise, c'est parce que le/la membre d'equipe qui occupera ce poste sera appele(e), sur une base reguliere, a interagir en anglais avec des parties externes ou internes ou encore a travailler dans un environnement informatique anglais dans le cadre de ses taches.
En deposant votre candidature pour ce role, vous comprenez et acceptez que vos informations seront partagees avec l'(les) equipe(s) d'acquisition de talents du groupe de societes TELUS et/ou tout gestionnaire implique dans le processus de selection.