Description

Being part of Air Canada is to become part of an iconic Canadian symbol, recently ranked the best Airline in North America. Let your career take flight by joining our diverse and vibrant team at the leading edge of passenger aviation.

 The IT & Cyber Operations team is responsible for the overall cyber security posture of Air Canada’s technology environment. The incumbent will participate in developing and implementing the latest security policies, guidelines and standards for improved security.

This position will be reporting to the Senior Manager, IT & Cyber Operations

 Functional Accountabilities

Lead business and technology analysis efforts for all aspects of PKI management

Lead requirements and analysis efforts, including translating business requirements

Lead business case creation efforts

Lead planning and monitoring processes in PKI management

Provide management with business/economic impact and compliance issues surrounding key business decisions

Define and maintain methods, techniques and calculations for identifying ways to improve business/technical processes

Responsible for guiding and leading the strategy for planning, architecture, design, development, documentation and implementation of the Cyber Security PKI program 

Responsible for guiding the steady state organization that manages the SSL certificate life cycle management 

Responsible to prepare, develop and update the PKI management plan and roadmaps

Partner with diverse IT and business teams to prioritize and centralize private keys within HSM (Hardware Security Module)

Build relationships throughout the organization to enhance and support our focus on safe, secure, and reliable operations

Guide, develop, promote, and mentor a highly functioning team of analysts and specialists

Develop, manage, measure and report on key service-level metrics showcasing the effects of large projects and continuous improvements

Develop and lead large transformational projects to improve our IT efficiency, enhance our customer experience, and improve our cyber security

Develop a method or system for consistent tracking and review of PKI/HSM use cases using a risk-based approach

Accountable and responsible to own a specific delivery area, with teams having similar or uniform skill sets

Qualifications

A relevant University degree/technical certification, and/or relevant experience commensurate to the role 

9+years of IT technology, operations experience in a large company

At least 5years of experience in one of the following areas: SSL Life Cycle management, Web Application Security Testing, Network Penetration Testing, Advanced Cyber Resiliency Testing or Security Operations, HSM (Hardware Security Management)

Experience with Security Risk assessment

Must possess a strong technical background in various operating systems, networks, applications, databases, and cloud

Ability to work effectively under pressure and in rapidly changing environments or uncertain conditions.

Demonstrates openness and willingness to adapt to different and new ways of doing things 

Takes responsibility for the results and actively participates in the future direction of the organization

Demonstrates concern for satisfying one’s external and/or internal customers.

Focuses on the accomplishment of the team’s and unit’s work; sets challenging goals and meets or exceeds goals

Anticipates the implications and consequences of situations and takes appropriate action to be prepared for possible contingencies

Ability to work cooperatively with others on a team, and to establish and maintain effective business relationships

Approaches a problem by using a logical, systematic, and sequential approach

Ability to notice, interpret, and anticipate others’ concerns, and to communicate effectively 

Vendor relationship management and leadership skills

Experience in building or developing a PKI management program

Knowledge of application security fundamentals

Expertise in relationship building with partners

Ability to lead by example and influence change

Good understanding of Information Security standards, frameworks, and best practices

Experience working with IT infrastructure and development teams

Conditions of Employment:

Candidates must be eligible to work in the country of interest, at the time any offer of employment is made and seeking any required work permits/visas or other authorizations which may be required is the sole responsibility of the candidates applying for this position.

Mandatory Covid-19 Vaccination Required

Linguistic Requirements

Based on equal qualifications, preference will be given to bilingual candidates. 

Diversity and Inclusion 

Air Canada is strongly committed to Diversity and Inclusion and aims to create a healthy, accessible and rewarding work environment which highlights employees’ unique contributions to our company’s success.

As an equal opportunity employer, we welcome applications from all to help us build a diverse workforce which reflects the diversity of our customers, and communities, in which we live and serve.

Air Canada thanks all candidates for their interest; however only those selected to continue in the process will be contacted