Manager, Cyber Security Operations

Stikeman ElliottToronto, ON
CA$115,000 - CA$130,000Onsite

About The Position

Join the ranks of Stikeman Elliott, one of Canada's leading business law firms. Located in the heart of Toronto's financial district with convenient access to public transit, our Toronto office offers an exceptional workplace for talented professionals. Recognized as one of Canada's Best Employers for 15 years, we are committed to attracting and developing exceptional talent. Are you ready to lead a modern cybersecurity operations program and help protect one of Canada's premier law firms? We are seeking an experienced Manager, Cyber Security Operations to lead our Security Operations team and drive the continued evolution of our cybersecurity capabilities. Reporting to the CISO, the Manager, Cyber Security Operations is responsible for the day-to-day leadership of Stikeman Elliott's security operations, including internal and outsourced Security Operations Centre (SOC) services, threat intelligence, and vulnerability management within a co-managed SOC model. Working closely with the Lead Security Architect and the Senior Information Security & Risk Analyst, this role develops and manages the technical standards, solutions, and processes that support the Security Operations team's mission. The Manager combines operational leadership with program ownership to ensure the firm's security operations remain effective, resilient, and aligned with evolving business needs.

Requirements

  • Minimum 5 years of cyber security operations experience (e.g. SOC/CIRT) preferred.
  • Experience managing a team of Security Operations staff.
  • In-depth understanding of security issues and tools used across different platforms including threat intelligence, security operations, incident response and forensic investigation.
  • Excellent reporting and presentation skills using Excel, PowerBI and PowerShell to present complex information in a manner suitable for technical and non-technical audiences, including executives.
  • Knowledge of security controls/mechanisms and threat/risk assessment techniques.
  • Thorough understanding of M365/Azure Cloud Native Services such as Defender for Cloud Apps, Defender for Office 365, Microsoft Purview, etc.
  • Knowledge and experience in M365/Azure domains – Compliance, Identity and Access, Threat and Vulnerability, Network and Application security.
  • Ability to work with security analysts, cross-functional IT staff and external vendors to rapidly detect, contain, investigate, remediate, and recover from security incidents.
  • Demonstrated ability to build, execute and lead SOC initiatives, programs, and an organization.
  • Broad understanding of cyber security and networking.

Nice To Haves

  • Bachelor’s Degree in Computer Science or related field, or equivalent experience and knowledge is preferred.
  • One or more of the following certifications: CISSP, CISA, CISM are an asset

Responsibilities

  • Provide oversight for the Security Operations team.
  • Oversee the monitoring, identification, and resolution of security incidents to detect threats through analysis, investigation and prioritization of incidents based on risk/exposure.
  • Develop and maintain an incident response management program that includes incident detection, analysis, containment, eradication, recovery, and chain of evidence / forensic artifacts required for additional investigations.
  • Produce detailed reporting of findings, events, and activities related to incident response.
  • Monitor and assess developments in the threat and vulnerability landscape, proactively provide security advisories to relevant stakeholders.
  • Perform trend analysis to identify potential cyber threats, targets of interest, and timeframes of attacks.
  • Deliver cyber intelligence briefings to key stakeholders.
  • Analyze vulnerability scan results, identify vulnerability patterns, and partner with technology teams to define and execute streamlined processes to remediate vulnerable systems across the estate.
  • Develop and maintain information security metrics on the effectiveness of cybersecurity initiatives as well as provide related insight to security leadership.
  • Advise the CISO on findings and assist with mitigation strategies to address vulnerabilities used by advanced attackers.
  • Provide security analytics reports as well as information regarding emerging threats to the appropriate stakeholders.
  • Work with enterprise architecture and IT operational teams to implement security best practices and standards.
  • Manage and coordinate with cybersecurity vendors to ensure operational effectiveness, SLA achievements and KPI definitions.

Benefits

  • Convenient access to public transit
  • Recognized as one of Canada's Best Employers for 15 years
  • Commitment to accommodating people with disabilities as part of our hiring process
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service