Security Operations Center Manager
Your Opportunity:
The Security Operations Manager defends against cybersecurity incidents and identifies, analyzes, communicates and contains incidents as they occur. The role is responsible for the front line of defense against security incidents and Cyber risks directed at the Enterprise Candidates will be evaluated primarily on their ability to demonstrate proven leadership experience in building and scaling a Security Operations Center (SOC) from the ground up. We’re seeking a seasoned SOC Manager with a track record of designing, implementing, and leading a high-performing Ops Center including team structure, tooling, processes, and incident response frameworks.
Description:
Responsibilities and Accountability: Conducts continuous network, endpoint, and cloud monitoring using intrusion detection/prevention systems, firewalls, host-based security tools, and log-based analytics. Reviews, triages, and investigates security alerts from multiple sensors, documents findings in formal technical incident reports. Correlates activity across endpoints, networks, applications, and cloud/on premises environments to identify anomalous behavior, attacks, and unauthorized use. Manages and tunes the Security Information and Event Management (SIEM) platform, including detection content development and alert monitoring. Research emerging threats, vulnerabilities, and adversary techniques to enhance detection and incident identification. Deploys and maintains cloud centric detection capabilities for services and platforms used by the organization. Provides incident response support, including containment, mitigation actions, and coordination of forensic analysis as required. Collaborates with threat intelligence and threat hunting teams to improve detection and response effectiveness. Supports business continuity and disaster recovery planning by participating in DR testing, documenting results, and addressing identified gaps. Performs security standards testing on systems prior to implementation to ensure compliance and risk reduction. Delivers ongoing training within the team on intrusion detection, incident response procedures, threat intelligence, and log analysis.
- Classification: Program Manager
- Union: Exempt
- Unit and Program: IT, Information Security Management
- Primary Location: Quarry Crossing
- Location Details: As Per Location
- Employee Class: Regular Full Time
- FTE: 1.00
- Posting End Date: 30-MAR-2026
- Date Available: 27-APR-2026
- Hours per Shift: 7.75
- Length of Shift in weeks: 2
- Shifts per cycle: 10
- Shift Pattern: Days
- Days Off: Saturday/Sunday
- Minimum Salary: $44.17
- Maximum Salary: $75.70
- Vehicle Requirement: Not Applicable
In-depth experience in security incident management processes and tools. [5+] years of technology experience, including troubleshooting and performing root cause analysis of complex solutions. [5+] years of demonstrated leadership experience building consensus across IT domains to include cloud services. [5+] years of demonstrated experience managing a high-performing, cohesive security response team. [5+] years of demonstrated experience in liaising with middle and senior management of a large commercial enterprise. Tertiary qualifications in information or security, or industry qualifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), CERT Incident Response Process Professional Certificate, or EC-Council Certified Incident Handler (ECIH).
Additional Required Qualifications:
Strong communication skills with a proven ability to understand key concepts and communicate with technical staff, lines of business and senior management. Proven ability to build relationships and influence individuals at all levels in a matrixed environment, as well as external vendors and service providers, to ensure that segregation and overlapping roles are identified and coordinated. Strong organizational skills and the ability to perform in a command-and-control role under pressure, and the ability to manage multiple priorities with competing demands for resources. Ability to consume and synthesize intelligence about actors, techniques or situations to identify emerging risk scenarios. Strong analytical and problem-solving skills. Proficiency in process formulation and improvement. Proficiency working in a fast-paced, complex, dynamic, multicultural business environment.
Preferred Qualifications:
Desired, but not required: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM). Experience with risk assessment, incident response, and security audits.
Please note:
All postings close at 23:59 MT of the posting end date indicated.
Security Screening:
A satisfactory criminal record check and/or Vulnerable Sector Search is required prior to your first day of work. Additionally, all employees have an ongoing duty to disclose any charges or convictions that may occur during their employment with AHS.
Healthy Albertans. Healthy
Communities. Together.
We’re passionate about what we do. Our team of skilled and dedicated health care professionals, support staff, and physicians promote wellness and provide health care all across Alberta.
Everything we do at AHS reflects a patient and family centred approach; it’s about putting patients’ and families’ experiences, priorities and trust first.
We are an equal opportunity employer. AHS values the diversity of the people and communities we serve and is committed to attracting, engaging and developing a diverse and inclusive workforce.
