Senior Manager, Global Cyber Security & Risk

The Atlas Corp. and Seaspan teams are goal-driven and share a high-performance culture, focusing on building services offerings to become a leading asset manager. Seaspan provides many of the world's major shipping lines with alternatives to vessel ownership by offering long-term leases on large, modern containerships and pure car, truck carriers (PCTCs) combined with industry leading ship management services. Seaspan's fleet has evolved over time to meet the varying needs of our customer base. We own vessels in a wide range of sizes, from 2,500 TEU to 24,000 TEU vessels. As a wholly owned subsidiary of Atlas Corp, Seaspan delivers on the company's core strategy as a leading asset management and core infrastructure company.

Position Description :

As the Senior Manager, Global Cyber Security & Risk, you will lead the cybersecurity and IT compliance activities for the Atlas Group of Companies, including Seaspan Corporation and APR. Reporting to the Vice President, Information Technology, you will be a key member of the IT management team with overall responsibility for developing and executing the Cyber Security strategy, roadmap, security operations, and incident handling.

Job Responsibilities :

• Develop a comprehensive security strategy that aligns with business goals and prioritizes risk awareness.
• Connect with industry peers and governing bodies in the maritime industry.
• Build and manage a global team of security analysts to identify, assess, and mitigate cyber risks in both on-premises and cloud environments.
• Demonstrate a clear vision, encourage cooperation, and promote information sharing among IT and business peers.
• Regularly prepare and present detailed reports on the status of the company's cybersecurity posture to senior management.
• Evaluate risks, stakeholder expectations, and risk tolerance to establish meaningful objectives.
• Conduct a comprehensive gap analysis to identify improvements.
• Monitor and evaluate developments and changes in the business and threat environments to ensure they are properly addressed.
• Organize and enforce security awareness and training programs.
• Offer suggestions for continuous improvement by researching current cybersecurity trends and keeping track of relevant laws, standards, and regulations.
• Facilitate regular security audits, risk assessments, and penetration tests.
• Perform control reviews and reports, working in conjunction with internal and external auditors.
• Develop and oversee incident response plans and spearhead the response to any security breaches or incidents.

Security Operations :

• Conduct comprehensive vulnerability audits and network/system security assessments to strengthen the enterprise landscape including vessels. Provide validation, remediation recommendations, and thorough documentation.
• Conduct thorough research and select advanced security solutions, including firewalls, intrusion detection and prevention systems, and endpoint protection. Manage and optimize partnerships with external cybersecurity vendors and consultants to ensure robust security measures.
• Collect all event logs from critical assets into the SIEM Platform. Regularly monitor, configure, correlate, and measure this data; review processes to find and fix any gaps.

Policy Development & Implementation :

• Develop and communicate comprehensive security policies, including detailed guidelines and standard operating procedures.
• Assess and right-size cybersecurity best practices to defend against evolving threats. Align people, processes, and technology to scale security efficiently.

Collaboration and Communication :

• Develop and communicate the cyber security roadmap to senior leadership.
• Participate or lead the business continuity plan and disaster recovery plan, where appropriate.

Requirements :

• Minimum 7-10 years of experience in cyber security, with at least 3-5 years in a leadership role.
• Experience in managing cybersecurity for both IT and OT environments.
• Proven experience developing and implementing a cyber risk and security framework.
• Knowledge of the trends, principles, standards, practices and tools pertaining to Cyber Security.
• Excellent interpersonal, leadership and relationship-building skills to deal with senior levels of management, local and remote business partners and Technology teams.
• Professional designation or certification in an IT security field such as Certified Information Systems Security Professional (CISSP) or equivalent.
• The ability to manage cyber security projects, meet deadlines and manage stakeholder expectations.
• Undergraduate degree in business, computer science or engineering.
• Ability to work outside regular business hours, as required.

Additional Desired Qualifications :

• Proven experience in Business Continuity planning and execution.
• Experience with information security concepts and controls (both technical and conceptual).
• Broad understanding of computer networking technology and security, server infrastructure, various communication protocols, operating systems, cloud operations and security (Microsoft Azure), virtualization, storage technologies, backup and recovery testing, Identity and Access Management.
• Experience with data, network and internet security technologies and products including firewalls, network intrusion prevention, e-mail security, host-based intrusion detection devices, file integrity monitoring systems, vulnerability testing, encryption key management, Security Information and Event Management systems.

Job demands and / or physical requirements :

• Availability via a mobile device outside of office hours.
• Occasional travel may be required and may be on short notice.

Compensation and Benefits package :

Seaspan’s total compensation is based on our pay-for-performance philosophy that rewards team members who deliver on and demonstrate our high-performance culture. The hiring range for this position is $145,000- $181,000 CAD per annum. The exact base salary offered will be commensurate with the incumbent’s experience, job-related skills and knowledge, and internal pay equity. In addition to base salary, we offer a competitive total rewards package which includes an annual performance-based bonus, a comprehensive benefits package (extended health, dental, life and disability insurance), retirement savings plan matching and other company-provided rewards.

Atlas Corp. and Seaspan Corporation are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, race, colour, religion, gender, sexual orientation, gender identity, national origin, disability, or protected Veteran status. We thank all applicants in advance. If your application is shortlisted to be included in the interview process, one of our team will be in contact with you.