TRADER Corporation is a trusted Canadian leader in online media, dealer and lender services. The company is comprised of AutoTrader.ca, AutoSync and Dealertrack Canada. AutoTrader.ca (AutoHebdo.net in Quebec) offers the largest inventory of new cars and used cars in Canada, receiving over 25 million monthly visits to its marketplace. With over 3,500 subscribers and counting, AutoSync is the largest and fastest growing dealer and OEM software provider in Canada. The platform's suite of connected automotive software solutions brings advertising, conversion and operational support together, synchronizing the entire retail process. AutoSync's diverse range of offerings includes: vAuto, EasyDeal, xtime, Motoinsight, Activix, TAdvantage and TRFFK. Dealertrack is Canada’s largest automotive financing portal, enhancing efficiency and profitability for all major segments of the automotive, marine, recreational vehicle, motorcycle and powersport retail industries. Over 6.5 million credit applications are submitted via the Dealertrack Canada portal each year. Visit tradercorporation.com to learn more..

The Sr. Manager of Information Security will lead a team of Security professionals and will be responsible for directing all information security and risk management initiatives to align with the Dealertrack Security Policies and Standards. This position will be the information security and compliance subject matter expert working with their direct reports as well as technology, business, and legal teams to develop and maintain a secure environment. The Sr. Manager of Information Security will hold overall responsibility for prioritizing all security projects for the business. These projects may include:  coordination of network and application security vulnerability remediation efforts, providing security guidance for new business projects, oversight of critical security access reviews, collaborating in the development of business continuity and disaster recovery documentation, and assisting with the coordination of BCP/DR test activities, acting as the liaison for customer security audits and coordinating the remediation of all security audit findings. The Sr. Manager of Information Security also ensures compliance with all legal, regulatory, and contractual security obligations and assists with the development and implementation of security process improvements, and champions security and risk mitigation efforts.


 

* Works under the direct guidance of the CISO to ensure adoption and compliance with Dealertrack Security Standards while enabling business success.

* Periodically perform risk assessments of the Retail applications, systems, and business processes to verify compliance with the Dealertrack Security Standards and prioritize the remediation of gaps based on risk to the organization. Direct the remediation of all gaps identified.

* Oversees all customer security audits and requests. Oversee and assist with prioritization of the remediation efforts, if any, as a result of these audits.

* Oversees application and system/network security vulnerability assessments and directs efforts to ensure remediation for Retail website applications and systems.

* Provides security guidance for new projects to ensure security best practices are implemented and that projects are developed in compliance with Dealertrack Corporate Security Standards.

* Oversees the maintenance of disaster recovery and business continuity plans and procedures for the Retail suite of solutions. Assists with disaster recovery testing efforts when needed.

* Meets as scheduled, or as needed, with various departments (i.e. IT, Audit, Legal) to provide leadership updates and information on security issues.

* BA/BS Degree, preferably formal studies in Computer Science or Information Systems or equivalent

* 5-10 years’ experience in IT Security, Risk and/or Compliance or equivalent

* Experience managing local and remote team members

* Strong infrastructure and application security skills

* Strong Vulnerability Management background

* Understanding of web-based applications, infrastructure, and architecture

* Strong MS office skills with Excel and Access

* Ability to work in a fast-paced and dynamic environment.

* Ability to work in a team and independently to fix issues with little or no supervision.

* Excellent organizational, project management, and follow-up skills

* Ability to build effective working relationships at all levels of the organization.

* Excellent communication skills

CISA, CISSP, CISM, or other security certification(s).