Manager, Cybersecurity

You know those big cities that still feel like small towns? Where everyone’s friendly and helps each other out? That’s like Grant Thornton. Except here we’re all professionals and there isn’t a mayor or a general store. What we’re trying to say is that we’re a large and growing professional services firm that still feels like a community. We employ over 2500 people across Canada, and we truly care about our colleagues, our clients and the communities where we work and live. That’s what’s most important to us. We’re building a thriving organization that’s purpose-driven and still want to remember what your favourite milkshake flavour is.

As a Manager, your duties and responsibilities include:

Client Responsibilities

Performing cybersecurity assessments to detect and identify weaknesses in the security posture of an organization’s information technology environment (platforms, applications, infrastructure, etc.);
Developing recommendations and action plans to reduce, mitigate, and/or remediate the impact of identified vulnerabilities and risks;
Conducting or evaluating results of vulnerability scans, and delivering comprehensive reports to communicate findings and impact to both technical and non-technical audiences;
Performing engagement management responsibilities, including performance reviews, task delegation, project scheduling, project financials, quality review and client management.
Managing business development activities, such as proposals, whitepapers, conferences, and/or other thought leadership materials.
Acting as performance manager (coach) for coachees outside of specific engagement responsibilities.
Working with the team during the hiring process for new candidates, conducting interviews and providing input into hiring decisions.

Colleagues Responsibilities

Contributing to national team-related initiatives;
Maintaining rapport and strong relationships with team members across the country; and
Understanding and following workplace policies and procedures.

Be Grant Thornton

If you’re a bit like us, you’re driven to connect with how others are feeling and thinking. Here we walk in others’ shoes before taking action. Just imagine being part of a team that puts “we before me”, where flexibility is a mindset, and where you trust your colleagues to have your back. At Grant Thornton, you’ll work with inspiring leaders who support your development, both personally and professionally. This is a place where your insatiable curiosity enables you to think, see and hear from a variety of perspectives, a place where every day is different and having the courage to grow is part of who you are. And when all this comes together, well that’s when the magic happens!

Want to learn more about who we are and how we live our purple every day? Read our colleagues’ stories at

Think you’ve got what it takes to be a Manager, Cybersecurity? Like the colour purple? Great. Here are a few more boxes we’re also hoping you can tick:

  • Bachelor’s degree in Information Systems, Computer Science, Computer Engineering, Engineering, Cyber Security or an equivalent combination of formal education and experience appropriate for the assigned duties;
  • Knowledge and 3-5 years of hands-on experience with key components of cybersecurity incl. conducting cybersecurity maturity assessments, developing strategic plans and roadmaps for clients, developing cybersecurity target operating models, etc.
  • Working knowledge of at least one of the following information security control frameworks including NIST SP 800-53, ISO 2700x, NIST CSF 1.1, ISF IRAM2, etc.
  • Demonstrate proven and extensive abilities solving complex cyber-risk management issues, including the following areas:
  • Design and development of IT Risk and Cybersecurity programs using industry frameworks and methodologies;
  • Assessment of enterprise-wide business risks and cyber threats;
  • Development of detailed business risk scenarios and cyber threat models;
  • Design and implementation of cyber risk management controls;
  • Monitoring and reporting of cyber risks, threats and vulnerabilities;
  • Development, implementation and periodic testing of cyber resiliency plans;
  • Use of tools and technology to provide data analytics and business intelligence on cyber threats, risks and vulnerabilities;
  • Building and operationalizing complex IT risk management and cybersecurity programs for clients.
  • Strong analytical skills and problem-solving approach.
  • Strong communication, report writing and presentation skills.

At Grant Thornton, we’re focused on making a difference in the lives of our clients, our colleagues and our communities. That’s our purpose. Or, as we like to say, living our purple.