Job Description

Company Description

Canada Goose isn't like anything else. We've built something great, something special - an iconic lifestyle brand with an inspirational and authentic story. At the heart of it is our promise to inspire and enable all people to thrive in the world outside. To Live in the Open. At Canada Goose, you're part of a movement that belongs to something bigger. One that seeks out the restorative power of nature and is driven by a purpose to keep the planet cold and the people on it warm. We endure any condition, observe every detail, and are building a community that believes in living bravely and coming together to support game-changing people.

Here, opportunities are everywhere - to try something new, to learn, to do meaningful and impactful work, and they're yours for the taking.



Job Purpose:

The Sr. Manager of Cybersecurity oversees the effectiveness and day-day operations of the cybersecurity team and platforms at Canada Goose. The Sr. Manager will lead, implement and execute security practices related to technology such as network and cloud defense(s), incident response, even management, threat intelligence, vulnerability assessments, security awareness, and documentation.

Key Responsibilities:

• Champion innovation and continue to evolve cybersecurity capabilities throughout the global infrastructure - cloud and on premise
• Develop and lead cybersecurity architecture and road-mapping
• Lead the deployment, integration, and configuration of all new security solutions
• Monitor, identify, investigate, report, and mitigate cyber security threats and risks day-day
• Take the lead on incident response (IR) activities; IR investigations, data gathering, forensics or other IR needs in the event of data/security breaches or incident
• Manage the security vulnerability program and collaborate with internal Technology teams and external partners to resolve findings
• Identify and remediate gaps in visibility and detection methodologies. Regularly evaluate log sources and onboarding of new data sources to enhance threat detection logic
• Create, review, and maintain security-related such as policies, procedures, baselines, guidelines and response playbooks
• Maintain up-to-date knowledge of the security industry, new attacks, and threat vectors
• Continuously build a cyber aware culture via the development and delivery of end-user training
• Conduct and report on various information security and compliance assessments
• Monitor and communicate key Cybersecurity metrics
• Manage financial aspects such as purchasing, licensing, renewals and vendor management

• Post-secondary education in Computer Science, Information Technology, Cybersecurity, or other IT-related field of study
• Industry certification such as CISSP, CCSP, CASP+, BTL1 and CySA+ required
• 5+ years of experience working in a Cyber security-related role
• 3+ years people management experience
• Additional technology experience considered an asset such as system and network administration

• Hybrid Work
• Regular business hours, though may require evenings and weekends to complete projects or manage incidents
• Occasional travel to local or international sites, conferences and/or seminars