Cyber Security Architect - RRCR

About The Position

Requirements

• Minimum 5+ years of experience in cyber security roles (security operations, incident response, threat management, or similar).
• Demonstrated expertise with SIEM platforms, including monitoring, rule development, and incident investigation.
• Experience conducting cyber incident investigations and managing response actions.
• Strong understanding of threats, vulnerabilities, attack techniques, and security controls.
• Hands-on experience with SOC 2 and ISO 27001 compliance requirements and certification processes.
• Knowledge of cyber security considerations specific to the casino and gaming industry.
• The incumbent must obtain and maintain Registration with IGCO.
• Bachelor’s degree in Computer Science, Information Technology (security specialty or focus), or a related field (or equivalent professional experience).

Nice To Haves

• CISSP (Certified Information Systems Security Professional)
• CISM (Certified Information Security Manager)
• Other relevant certifications (e.g., GIAC, CEH, CompTIA Security+) considered an asset.

Responsibilities

• Work collaboratively with the Technology Services team and BCLC to develop the company’s Cyber Security program and establish controls appropriate to a casino environment, and sensitive player and personal employee information.
• Monitor security alerts and events across SIEM and other security platforms.
• Investigate, analyze, and respond to cyber security incidents, including triage, containment, and remediation activities.
• Lead root-cause analysis and provide recommendations to prevent recurrence.
• Maintain incident response plans, runbooks, and related documentation.
• Conduct threat hunting and continuous analysis of anomalous activity.
• Maintain current knowledge of cyber threats, vulnerabilities, and emerging trends relevant to the gaming and entertainment industry.
• Conduct risk assessments on new technologies, systems, and processes.
• Recommend and implement security controls to reduce risk exposure.
• Support vulnerability management processes, including scanning, reporting, and remediation tracking.
• Perform penetration testing to identify gaps and oversee third-party testing if and when required.
• Manage and oversee security vendors, including security-as-a-service, to ensure compliance with contractual requirements, including appropriate levels of monitoring and response.
• Support compliance with SOC 2, ISO 27001, and internal security policies and standards.
• Assist with review activities, evidence collection, and documentation.
• Ensure continuous alignment of cyber controls with regulatory requirements, including requirements set out by the Independent Gambling Control Office (IGCO) and the British Columbia Lottery Corporation (BCLC).
• Collaborate with Technology Services, Compliance and business unit leadership to establish strong information security policies that support effective and efficient service delivery.
• Implement and maintain anti-phishing awareness.
• Develop and deliver cyber security training as needed.
• Administer, tune, and enhance SIEM rules, dashboards, and correlations.
• Manage and support key security tools, including endpoint protection, identity and access management, logging platforms, and intrusion detection systems.
• Support Technology Services in secure configuration management for servers, networks, and cloud environments.
• Collaborate with Technology Services to ensure secure deployment of applications and infrastructure.
• Partner with internal teams to ensure security best practices are embedded in operations and projects.
• Provide security awareness training and promote a security-focused culture across the organization.
• Work with third‑party vendors, auditors, and consultants as needed.
• Communicate security risks and recommendations to technical and non-technical stakeholders.

Benefits

• We have an inclusive and collaborative working environment that encourages creativity, curiosity, and celebrates success!
• We provide you with the tools and technology needed to delight your clients!
• You'll get to work with and learn from diverse industry leaders, who have hailed from top organizations around the world.
• Freedom to Innovate: supports new and better ways to be successful.
• Be your Authentic Self: environment that values diversity as a source of strength.