Job Specifications
Your Opportunity:
The Security Operations Manager defends against cybersecurity incidents and identifies, analyzes, communicates and contains incidents as they occur. The role is responsible for the front line of defense against security incidents and Cyber risks directed at the Enterprise Candidates will be evaluated primarily on their ability to demonstrate proven leadership experience in building and scaling a Security Operations Center (SOC) from the ground up. We’re seeking a seasoned SOC Manager with a track record of designing, implementing, and leading a high-performing Ops Center including team structure, tooling, processes, and incident response frameworks.
Description:
Responsibilities and Accountability: Conducts continuous network, endpoint, and cloud monitoring using intrusion detection/prevention systems, firewalls, host-based security tools, and log-based analytics. Reviews, triages, and investigates security alerts from multiple sensors, documents findings in formal technical incident reports. Correlates activity across endpoints, networks, applications, and cloud/on premises environments to identify anomalous behavior, attacks, and unauthorized use. Manages and tunes the Security Information and Event Management (SIEM) platform, including detection content development and alert monitoring. Research emerging threats, vulnerabilities, and adversary techniques to enhance detection and incident identification. Deploys and maintains cloud centric detection capabilities for services and platforms used by the organization. Provides incident response support, including containment, mitigation actions, and coordination of forensic analysis as required. Collaborates with threat intelligence and threat hunting teams to improve detection and response effectiveness. Supports business continuity and disaster recovery planning by participating in DR testing, documenting results, and addressing identified gaps. Performs security standards testing on systems prior to implementation to ensure compliance and risk reduction. Delivers ongoing training within the team on intrusion detection, incident response procedures, threat intelligence, and log analysis.
Classification: Program Manager Union: Exempt Unit and Program: IT, Information Security Management Primary Location: Quarry Crossing Location Details: As Per Location Employee Class: Regular Full Time FTE: 1.00 Posting End Date: 23-MAR-2026 Date Available: 27-APR-2026 Hours per Shift: 7.75 Length of Shift in weeks: 2 Shifts per cycle: 10 Shift Pattern: Days Days Off: Saturday/Sunday Minimum Salary: $44.17 Maximum Salary: $75.70 Vehicle Requirement: Not Applicable
Required Qualifications:
In-depth experience in security incident management processes and tools. [5+] years of technology experience, including troubleshooting and performing root cause analysis of complex solutions. [5+] years of demonstrated leadership experience building consensus across IT domains to include cloud services. [5+] years of demonstrated experience managing a high-performing, cohesive security response team. [5+] years of demonstrated experience in liaising with middle and senior management of a large commercial enterprise. Tertiary qualifications in information or security, or industry qualifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), CERT Incident Response Process Professional Certificate, or EC-Council Certified Incident Handler (ECIH).
Additional Required Qualifications:
Strong communication skills with a proven ability to understand key concepts and communicate with technical staff, lines of business and senior management. Proven ability to build relationships and influence individuals at all levels in a matrixed environment, as well as external vendors and service providers, to ensure that segregation and overlapping roles are identified and coordinated. Strong organizational skills and the ability to perform in a command-and-control role under pressure, and the ability to manage multiple priorities with competing demands for resources. Ability to consume and synthesize intelligence about actors, techniques or situations to identify emerging risk scenarios. Strong analytical and problem-solving skills. Proficiency in process formulation and improvement. Proficiency working in a fast-paced, complex, dynamic, multicultural business environment.
Preferred Qualifications:
Desired, but not required: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM). Experience with risk assessment, incident response, and security audits.
About the Company
Alberta Health Services (AHS) is proud to be part of Canada's first and largest provincewide, integrated health system, responsible for delivering health services to more than 4.5 million people living in Alberta, as well as occasionally to some residents of other provinces and territories
Our skilled and dedicated professionals, support staff and physicians come from numerous disciplines, from all walks of life, and from all corners of the world.
Our mission is to provide a patient-focused, quality health system that is ...
Know more