Manager, Information Security

Position Summary

At Samsung Electronics Canada, we take pride in the creativity and diversity of our talented people – they are at the forefront of everything we do. Their skillset and mindset drive our continued success. We want the best of the best at Samsung to join our team, not just those who fit into our Culture but those who will ADD to our Culture and make Samsung an even better place to work.

Did we catch your attention yet?

If you want to work for one of the most recognized brands in the world and one of the Top 100 Employers in Canada...and have a ton of fun…. then please keep reading!

Our Perks:

• Fantastic employee discount on all Samsung products
• Competitive Salary and Performance based incentive plan for all levels
• Employer paid Medical and Dental coverage from day one
• Group RRSP plan that helps you save for the future
• Free on-site gym to get your sweat on
• Subsidized Cafeteria; including free Starbucks coffee/latte machine
• 4-day in-office work schedule Monday through Thursday – with Friday remaining a flex day to work remotely
• Tuition Reimbursement to keep you learning/Access of Samsung U for 24/7 online learning
• Employee Referral program- we want great talent like you!
• Virtual Pet Care-to ensure the well-being and health of your beloved furry companions!
• Additional Well Being Days for better work life-balance!

Role and Responsibilities

Strategic Project Information Management:

• Ensure security protocols such as NDAs and Training are completed prior to project initiation.
• Determine asset access authorization for internal and external entities.
• Conduct security training for internal employees and agency partners.
• Prepare security and clean room checklists, printing requirements etc. before every strategic project kick-off to accommodate any change and ensure compliance to HQ security guidelines.
• Review exception requests and identify compensating controls before approval.
• Review and approve access to Samsung’s FTP solution for both internal employees and agencies. Establish a secure access management process.
• Manage vulnerabilities remediation and firewall requests by coordinating with Samsung Security teams.
• Keep a record of the all the access and ensure only employees part of the project are getting access.
• Conduct investigation in the event of a Security Incident and report to Information Assurance group.

Security Projects:

• Oversee the deployment, configuration, and ongoing administration of security tools like SIEM, EDR, DLP, CASB, and Password Manager Solutions.
• Configure and manage DLP/EDR Policies as per the security standard.
• Manage Splunk, including: ensure CIM compliancy, collaborating with system owners, correcting any logging issues, managing or creating SOPs and design documents, creating dashboards and optimizing searches.
• Work with Splunk Engineers to ensure all data is CIM compliant.
• Assist in the proper operation and performance of Splunk, Search Heads and data models.

Security Assessment, Monitoring, Reporting and Auditing:

• Monitor and analyze logs from various systems using Splunk SIEM.
• Identify, investigate, and respond to security incidents.
• Monitor, collect, analyze the activity data from endpoints in EDR that could indicate a threat and respond including notifying security personnel.
• Forensics and analysis tools to research identified threats and search for suspicious activities.
• Monitoring data transfer, implementing security measures, and conducting risk assessments to identify vulnerabilities in DLP.
• Develop on-going technology risk reporting, monitoring key trends and defining metrics to regularly measure control effectiveness for own area ensuring visibility and awareness of vulnerabilities with the company's internal and external IT systems.
• Perform security assessment for cloud deployments and services.
• Conduct regular vulnerability assessments and risk analysis.
• Oversee and audit the installation and operation of security equipment and facilities to comply with the Company's information security policy (Ex: Internet and Cloud Security, email, remote access, MDM etc.).
• Provide technical guidance and support to other members of the IT and Security team.
• Review and manage the ongoing assessment of firewall, Web Proxies, SIEM, Wi-Fi networks, Vulnerability Assessments and other network component policies.
• Oversee third-party security and compliance audits and any resulting remediation actions.
• Ensure Security Compliance with Policies and Laws.
• Training/awareness/communication/testing-Ex: KnowBe4 Platform Management, monthly newsletters.
• Stay informed about emerging security threats and recommend appropriate countermeasures.

Skills and Qualifications

Education:

• Bachelor's degree in Computer Science, Information Systems, or equivalent field.

Knowledge:

• Possess knowledge of work routines and procedures related to Risk Management, Security Architecture, Threat Modelling, Vulnerability Management, IT and Physical Security.
• Strong understanding of network protocols, system vulnerabilities, and attack vectors.
• Understanding of Canadian security and privacy legislation (including employer and employee obligations).
• Ability to serve as an expert resource in technology controls and information security for project teams, the business, organization and outside vendor.
• Specialized expertise and support on assessing risks, mitigating potential gaps.
• Advanced knowledge of MS Word, and Excel (including pivot tables, VLOOKUP) and MS PowerPoint is required.
• Must be willing and able to respond to security-related emergency calls 24x7x365.

Experience:

• Minimum 8 years of experience in information security, with at least 3 years of experience in Splunk SIEM, EDR, CASB and DLP solution.
• Experience in managing multiple security technologies and have a deep understanding of industry best practices.
• Hands-on experience on managing various security tools like SIEM (e.g. – Splunk), Web Proxies (e.g. – Sky-High, Broadcom, Zscaler etc.), Firewalls (e.g. – Palo Alto), DLP, EDR (e.g.- Symantec, Sentinel One, Carbon Black, Crowdstrike etc.), CASB, Password Manager, Security Awareness Tool (e.g. – KnowBe4), Vulnerability Management Tool(Qualys, Nexus, RAPID 7 etc.), Software License Management, PKI environment etc.
• Accreditation of at least one information security– CISSP, CISM, CRISC, CompTIA Security+, CCSP (Cloud security).
• Nice to have Splunk Enterprise Security Certified Admin or Splunk Enterprise System Administration Certification.