Senior Project Manager (IT Cybersecurity)

Job Summary

A public sector organization is seeking a Senior Cybersecurity Project Manager to lead a large-scale cybersecurity program within a highly sensitive and regulated environment. This role focuses on strengthening the security posture across technology services through risk-based architecture, governance, vulnerability management, and incident response readiness.

Project Overview

The cybersecurity program consists of multiple initiatives aimed at enhancing enterprise security capabilities, including risk management, threat assessments, security architecture, incident response, and policy development aligned with a judicial or highly regulated environment.

Key Responsibilities

• Lead end-to-end delivery of multiple cybersecurity initiatives, from planning through implementation and operational transition
• Provide risk-based cybersecurity architecture leadership for new and existing systems
• Oversee key initiatives such as:
  • Security services onboarding and optimization
  • Enterprise vulnerability management implementation
  • Threat and Risk Assessment (TRA) framework execution
  • Application security and risk assessments
  • Firewall and security control optimization
  • Security architecture reviews for new systems and major changes
• Develop and operationalize cybersecurity incident response playbooks
• Support incident readiness through simulations, drills, and continuous improvement
• Advance cybersecurity policies, standards, and procedures through approval and adoption
• Prepare executive-level briefings, reports, and decision documents, translating technical risks into business impact
• Collaborate with cross-functional stakeholders including IT, Legal, Procurement, Finance, governance bodies, and vendors
• Ensure compliance with privacy, regulatory, and security requirements
• Identify and implement opportunities for AI and automation in cybersecurity operations

Work Environment & Requirements

• Fully on-site role based in Edmonton, Alberta
• Work must be performed within Canada due to data security requirements
• Standard working hours: Monday to Friday, 08:15 AM 04:30 PM (excluding public holidays)

Required Qualifications (Must Have)

• Active cybersecurity certification (e.g., CISSP, CISM, CISA, GIAC, ISACA, or equivalent)
• Post-secondary education in Computer Science, IT, Cybersecurity, or related field (or equivalent experience)
• Minimum 8 10 years of experience in IT/security, with at least 5 years in a senior project management role
• Experience designing secure architectures across network, cloud, application, identity, and data domains
• Experience developing and implementing cybersecurity incident response plans and participating in incident handling
• Experience conducting Threat and Risk Assessments (TRA) or similar
• Hands-on experience with enterprise security tools (e.g., Microsoft 365 security stack, SIEM, vulnerability management tools, firewalls, endpoint protection)
• Experience working with security frameworks such as NIST CSF and ISO 27001
• Strong stakeholder management and communication skills, including ability to present to non-technical audiences
• Experience working with diverse stakeholders across IT, business, and governance teams
• Ability to obtain required background checks, including criminal record and enhanced security clearance
• Must be able to work 100% on-site for the contract duration

Preferred Qualifications (Nice To Have)

• PMP certification or equivalent
• Experience with cloud-based data platforms and AI/ML-integrated architectures
• Experience in information management, privacy impact assessments, and compliance within IT projects
• Experience implementing enterprise security services or similar capabilities
• Experience establishing vulnerability management programs (tools, processes, reporting)
• Experience working in judicial or highly regulated environments
• Experience in public sector environments with knowledge of privacy legislation
• Familiarity with cybersecurity and information management policies and governance frameworks
• Experience with cloud platforms (e.g., Azure) and data services

Core Competencies

• Cybersecurity Program Leadership
• Risk-Based Security Architecture
• Stakeholder & Relationship Management
• Strategic Planning & Execution
• Regulatory & Compliance Awareness
• Incident Response & Preparedness
• Communication & Executive Reporting