Drive Cyber Resiliency Through Governance, Risk Management, and Awareness
Join our team and what we'll accomplish together
In today's rapidly evolving digital landscape, the significance of cybersecurity cannot be overstated. At TELUS Security, we are fully committed to staying ahead of the curve and proactively addressing the most challenging security issues. We offer an environment where you’re encouraged to share and act on your ideas, while learning new things and building your career. In our flexible work environment you will connect remotely with team members across Canada.
We're seeking a dynamic Manager of Security Governance, Risk and Awareness (GRA) to join our Security Programs team. The GRA team creates and maintains TELUS Security policies and standards, supports various audit requirements, manages the end-to-end process of our security risk management framework and educates team members to continuously strengthen TELUS' culture of security.
As the Manager of the Governance, Risk and Awareness team, you will contribute to our mission of safeguarding assets and information and improving security and privacy outcomes. Your innovative approach, strong communication and negotiation skills, and exceptional team leadership will be critical in helping TELUS to achieve desired risk outcomes and prevent costly incidents. You will collaborate with internal and external partners to mitigate evolving risks, protecting TELUS and our customers from cyber threats.
What you will do
Drive a high engagement, high performance culture and support team members to achieve individual and team goals
Evolve the framework for identifying and monitoring security risks throughout the organization
Establish clear corporate policies, procedures, and roles to manage security risks effectively
Increase the capability of team members to achieve collective security objectives through regular security awareness and training
Provide regular updates on security progress to executives and effectively escalate issues when required
Leverage your business/ security expertise to further improve our security programs, working collaboratively across our leaders and stakeholders to develop, refine, enhance, and implement
Stay up-to-date with the latest cyber threats, security trends, technologies, regulations and industry best practices
Qualifications
What you bring
University degree in Technology/Cybersecurity or equivalent experience
5+ years in information security consulting, compliance (PCI, SOC2, ISO 27001), or governance
Passion for automation, process improvement, and risk reduction through technology and people
Strong understanding of enterprise IT security practices, frameworks, and architecture
Leadership experience providing technical guidance to senior resources
Excellent communication skills across technical and non-technical audiences
Proven stakeholder management across departments, vendors, and executive leadership
Ability to seek diverse perspectives, ask key questions, and remove barriers
Great to haves
Experience developing short and long-term strategies with effective stakeholder communication and engagement
Understanding and experience in Identity & Access Management, Telecommunications, or Cloud infrastructure
Recognized security designation (CISSP, CISM, or equivalent)
Working-level fluency in French
Advanced knowledge of English is required because you will most of the time interact in English with external parties (clients, suppliers, candidates, external partners, etc.); interact in English with internal parties (colleagues, internal partners, stakeholders, etc.); and work with IT tools whose interface is only accessible in English as part of this position's main responsibilities given its national scope.