Director, Information Security Operations

Tucows (NASDAQ:TCX, TSX:TC) is possibly the biggest Internet company you’ve never heard of. We started as a simple shareware site in 1993 and have since grown into a stable of businesses: Tucows Domains, Ting Internet and Wavelo.

What's next at Tucows

We embrace a people-first philosophy that is rooted in respect, trust, and flexibility. We believe that whatever works for our employees is what works best for us. It’s also why the majority of our roles are remote-first, meaning you can work from anywhere you can connect to the Internet!

Today, over one thousand people work in over 20 countries to help us make the Internet better. If this sounds exciting to you, join the herd!

We are seeking a Director of Information Security Operations to lead our dedicated team of cybersecurity analysts and engineers. This role is crucial in maintaining and enhancing the security posture of Tucows, ensuring the protection of company and customer data across three distinct lines of business.

You will report directly to the Chief Information Security Officer (CISO) and will work in concert with the Governance, Risk, and Compliance (GRC) and IT functions. This position plays a pivotal role in collaborating with and influencing stakeholders across the organization to foster a culture of security.

Key Responsibilities:

• Lead and grow a small to mid-sized team of cybersecurity professionals, fostering a culture of technical excellence, innovation, operational rigor, and continuous improvement.
• Leading and coordinating security projects, ensuring they are completed on time and within budget.
• Own and enhance the Incident Response (IR) function, ensuring rapid and effective response to security incidents to minimize impact.
• Implementing process improvement initiatives to enhance the efficiency and effectiveness of security operations.
• Assist in developing budgets and forecasts to support business needs, goals, and objectives.
• Collaborate with the CISO to provide strategic direction and oversight for the cybersecurity program, aligning with business objectives and regulatory requirements, including CCPA, GDPR, and other applicable laws.
• Advise on threat modeling, secure configuration practices, and risk mitigation strategies across the enterprise.
• Oversee the detection, investigation, and response to security events across Tucows's infrastructure and applications.
• Drive the selection, integration, and optimization of key technologies and managed providers within the security technology stack, with a focus on automation and operational efficiency.
• Collaborate with cross-functional teams to identify and remediate vulnerabilities, prioritizing based on risk assessment and business impact.
• Maintain and enhance physical security measures, ensuring the safety and security of Tucows offices and assets.
• Develop and maintain relationships with external security communities, regulatory bodies, and other stakeholders to stay ahead of emerging security trends and regulations.
• Monitor and stay current with security-related proven practices and technology.

Qualifications:

• A minimum of 10 years of combined experience in cybersecurity and IT, with at least 6 years focused on cybersecurity.
• A Bachelor’s degree in security management, computer science, information technology, or related field or a mix of demonstrable experience and certifications.
• Proven experience leading, managing, and growing a cybersecurity team in a fast-paced, distributed environment.
• Hands-on experience with modern IT and security technologies, including cloud infrastructure (AWS, Azure), SaaS applications, endpoint detection and response, security visibility and scanning technology, and network security.
• Profound knowledge of security principles, protocols, and best practices.
• Deep understanding of defensive cybersecurity practices, incident response, and security operations.
• Familiarity with cybersecurity frameworks (NIST, ISO 27001, PCI, SOX, SOC 2) and regulatory requirements (CCPA, GDPR).
• Strong written and verbal communication and negotiation skills, with the ability to effectively convey complex security concepts to both technical and non-technical stakeholders.
• Possession of Relevant Certifications: CISSP, with CISM or other relevant certifications considered a plus. #LI-NA1 #LI-Remote

The base salary range for this position is $149,600 to $176,000. Range shown in $CAD for Canadian residents. Other countries will differ. Range may vary on a number of factors including, but not limited to: location, experience and qualifications. Tucows believes in a total rewards offering that includes fair compensation and generous benefits

Want to know more about what we stand for? At Tucows we care about protecting the open Internet, narrowing the digital divide, and supporting fairness and equality.

We also know that diversity drives innovation. We are committed to inclusion across race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status or disability status. We celebrate multiple approaches and diverse points of view.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request an accommodation.

Tucows and its subsidiaries participate in the E-verify program for all US employees.

Learn more about Tucows, our businesses, culture and employee benefits on our site here.