Apply now »

Manager, Cyber Supply-Chain Risk Management

Joplin, MO, US, 64818 Nevada, MO, US, 64772 Ozark, MO, US, 65721 White Hall, AR, US, 71602 BM, HM 07 Laforce, Quebec, CA, J0Z 2J0 Herbert, SK, CA, S0H 2A0 Lynch Station, VA, US, 24571 Blackstone, MA, US, 01504-2215 Henrietta, MO, US, 64036 Rice Lake, WI, US, 54868 Tahoe Vista, CA, US, 96148 Stockton, MO, US, 65785 Gold Canyon, AZ, US, 85218 Fall River, MA, US, 02721 Kirksville, MO, US, 63501 Greenfield, MO, US, 65661 Saint-Gédéon, Quebec, CA Clinton, MO, US, 64735 Maryville, MO, US, 64468 Joplin, MO, US, 64801 Buffalo, MO, US, 65622 Massena, NY, US, 13662 Litchfield Park, AZ, US, 85340 Rio Rico, AZ, US, 85648 Carefree, AZ, US, 85377 Sanger, CA, US, 93657-0397 Republic, MO, US, 65738 Dorchester, WI, US, 54425 Elk Mound, WI, US, 54739 Deerfield, MI, US, 48445 Newburgh, NY, US, 12550 Harrisburg, IL, US, 62946 Granby, MO, US, 64844 Keokuk, IA, US, 52632 Sikeston, MO, US, 63801 Marshall, MO, US, 65340 Riverton, KS, US, 66770 Hollister, MO, US, 65672 Malden, MO, US, 63863 Gainesville, GA, US, 30501 Moncton, New Brunswick, CA, E1E 3R8 Alma Center, WI, US, 54611 Humansville, MO, US, 65674 Ash Grove, MO, US, 65604 Fall River, MA, US, 02721 Tinker, New Brunswick, CA, E7H 5A8 Ste. Catherine, Quebec, CA, J5C 1L9 Joplin, MO, US, 64804 Caribou, ME, US, 04736 Mont-Laurier, Quebec, CA, J9L 2A2 Concord, NH, US, 03301 Cornwall, ON, CA, K6H 5R6 Neosho, MO, US, 64850 Ozark, MO, US, 65721 Tilton, NH, US, 03276 Riviere-du-Loup, Quebec, CA, G5R 5B7 Nixa, MO, US, 65714-7969 Cochrane, ON, CA, P0L 1C0 Bryson, TX, US, 76427 Pine Bluff, AR, US, 71601 Sea Cliff, NY, US, 11579-1926 Bolivar, MO, US, 65613 Pierce City, MO, US, 65723 Anderson, MO, US, 64851 Butler, MO, US, 64730-0209 Salem, NH, US, 03079 Asbury, MO, US, 64832 Westover, MD, US, 21871 Paw Paw, IL, US, 61353 Manchester, NH, US, 03101 Keene, NH, US, 03431 Tyler, TX, US, 75703 Oakville, ON, CA, L6J 2X1 Downey, CA, US, 90241 Hannibal, MO, US, 63401 Baxter Springs, KS, US, 66713 Merrick, NY, US, 11566 St. Leon, MB, CA, R0G 2E0 Branson, MO, US, 65616 Pikeville, KY, US, 41501 Lebanon, NH, US, 03766-2637 Londonderry, NH, US, 03053 Ashland, KY, US, 41101 Noel, MO, US, 64854 Nashua, NH, US, 03060 Hawkins, TX, US, 75765 Princess Anne, MD, US, 21853 South Lake Tahoe, CA, US, 96150 Bolivar, MO, US, 65613 Ozark, MO, US, 65721 Strafford, MO, US, 65757 Caruthersville, MO, US, 63830-1133 Red Deer, AB, CA, T4G 0K1 Chillicothe, MO, US, 64601 Goodyear, AZ, US, 85395 Girard, IL, US, 62640 Baxter Springs, KS, US, 66713 Joplin, MO, US, 64804 LaRussell, MO, US, 64862 Taft, CA, US, 93268 Mountain Lake, MN, US, 56159 Commerce, OK, US, 74339 St. Raphael, Quebec, CA, G0R 4C0 Oakville, ON, CA, L6J 2X1 Vandalia, IL, US, 62471 Willard, MO, US, 65781 Seneca, MO, US, 64865 Massena, NY, US, 13662 Jackson, MO, US, 63755-0268 Reeds, MO, US, 65737 Gravette, AR, US, 72736 Tyrone, PA, US, 16686 Buford, OH, US, 45171 Fall River, MA, US, 02720 St-Damase, Quebec, CA, G0J 2J0 Joplin, MO, US, 64801 Sedalia, MO, US, 65301 Fall River, MA, US, 02724 Ste. Brigitte des Saults, Quebec, CA, J0C 1E0 Mayer, AZ, US, 86333 Platte City, MO, US, 64079 Windsor Locks, CT, US, 06096-2335 Columbus, GA, US, 31901 St. Hyacinthe, Quebec, CA, J2S 5N8 Billings, MO, US, 65610 Hewlett, NY, US, 11557 Webb City, MO, US, 64870 Donnacona, Quebec, CA, G3M 1B5 Charlestown, NH, US, 03603 Ogdensburg, NY, US, 13669 Apple Valley, CA, US, 92308 Fredericton, New Brunswick, CA, E3B 7G5 Saint John, New Brunswick, CA, E2K 2Y6 Pine Bluff, AR, US, 71601 Concord, NH, US, 03301 Minonk, IL, US, 61760 Columbus, KS, US, 66725 Surprise, AZ, US, 85387 Forsyth, MO, US, 65653 Aurora, MO, US, 65605 Louisa, KY, US, 41230 Sierra Vista, AZ, US, 85635 Rawdon, Quebec, CA, J0K 1S0 Metropolis, IL, US, 62960

Our purpose is sustaining energy and water for life, and it is demonstrated in everything we do as a business, and as an employee team.

At Liberty, we hire passionate people who care about doing the right thing for our customers. We are entrepreneurial, creative, and outcome-focused. Here, your natural talent and achievements will flourish in an inclusive environment of teamwork, trust and continuous learning. We are always pursuing excellence to exceed our ambitions goals, rewarding both the goal outcome and how we achieve it. 

Purpose

 

As the Manager, Cyber Supply-Chain Risk Management you will develop and deliver the supply-chain risk management strategy for the organization. This role will support the enterprise efforts of managing an increasingly complex and challenging cyber supply-chain in collaboration with stakeholders in multiple lines of business operations, and other shared services groups such as procurement and enterprise risk. The Manager, Cyber Supply-Chain Risk Management shall focus their expertise and attention upon supply chain vulnerabilities which can lead to system reliability issues, data theft and manipulation, malware dissemination, and persistent unauthorized access across the organization’s technology landscape. 

 

Your role within the organization will assess and verify that our suppliers maintain an adequate security program to appropriately address the risks posed to the organization. You will drive and lead in establishing protocols and standards for the organization to use in assessing the cybersecurity practices of the organization’s cyber supply-chain. Daily activities may include performing assessments, documenting findings, and providing risk-based recommendations to stakeholders as part of the overall project and system lifecycle as technologies and solutions are selected and implemented. You will collaborate with representatives from various roles and functions of the organization (e.g., information technology, physical security, procurement/acquisition, legal, logistics, marketing, and business development). You will lead in producing and documenting the set of policies and procedures that address security, integrity, resilience, and quality within the cyber supply-chain. 

 

Extensive Security Operations experience is a REQUIREMENT. Candidates must have a demonstrated history in performing functional security operations in both on-prem and cloud environments. Candidates should be well-versed in understanding frameworks such as NIST 800-53, NIST 800-171, NIST 800-61, NIST 800-86, FedRAMP, ISO27001, and CSA Star and their application to security operational capacities.
 

#LI-Remote

Accountabilities

 

  • Develop and manage a comprehensive Supply-Chain Risk Management (SCRM) program which illuminates potential security risks and informs the business and IT on effective countermeasures to fortify the supply-chain of the enterprise.
  • Develop and implement effective SCRM programs across all facets of the APUC enterprise including current and future acquisitions enabled an integrated risk-reduction approach to protecting the critical supply-chains of the organization.
  • Develop and foster enterprise-wide commitment involving multiple disciplines including: comprehensive information sharing, and adherence of industry best practices pertaining to cyber SCRM.
  • Build and manage an integrated enterprise team building relationships and enterprise commitment from stakeholders across the enterprise including Cybersecurity, Enterprise Risk, Business Development, Information Technology, Procurement, and all other lines of business operations.
  • Manage and lead the communication pathways through horizontal and vertical communication ensuring that senior leadership and stakeholders are invested in the success of the SCRM program. These communications must be tailored to informing the business upon risk-based decisions and implementing appropriate security mitigations.
  • Develop and manage organizational-wide awareness and training further embedding the SCRM practices within the enterprise empowering employees to manage, mitigate, and respond to supply-chain risks.
  • Develop and manage the SCRM assessment and due diligence practice assessing supplies, service providers, and other third parties. This assessment must feed into the overall visibility and risk posture of the organization, leveraged through effective vetting of vendors who key components to the systems, networks, and operations of the enterprise.
  • Lead and manage a team in the incorporation of the SCRM Requirements into commercial terms and contracts. Use the SCRM-related cybersecurity, compliance and risk requirements as a primary metric within commercial terms (such as cost, schedule, and performance) for measuring a vendor’s compliance with the contract. Leveraging the NIST SP 800-161 and standard enterprise cybersecurity terms as guidelines.
  • Monitor and oversee the compliance of vendors to the SCRM-related security requirements throughout the supply-chain lifecycle, including the termination and offboarding of supplier relationships.
  • Travel will be required as necessary for the purpose of meeting with customers, consultants, stakeholders, and IT personnel or management.
     

Education and Experience

 

  • Education: Bachelor's degree in Cybersecurity, Legal Studies, Computer Science, or another related field; or an associate degree plus four (4) years of related IT / Cyber supply-chain experience 
  • Minimum of eight (8) years of experience with cybersecurity, cybersecurity compliance, and cyber supply-chain risk management.
  • Relevant security certifications (i.e., GCIA, GCIH, GSOC, Security+, CISSP, etc.)
     

Algonquin Power & Utilities Corp. is a growing renewable energy and utility company with over $15 billion of assets across North America and internationally.

For more than 30 years, Algonquin has demonstrated an unwavering commitment to delivering clean energy and water solutions. Our rapid growth has led both our regulated utility services and renewable energy business groups into different geographies and commodities, but our purpose remains unchanged – Sustaining Energy and Water for Life.

Through our operating business (Liberty), we provide regulated electricity, water, and natural gas utility services to over 1 million customer connections, primarily in North America. And, our growing portfolio of clean, renewable wind, solar, hydro and thermal power generation facilities represent over 3 GW of renewable generation capacity in operation and under construction.

With our robust, diversified, and growing presence in communities across North America and internationally, we are continually demonstrating our “Think Global,  Act Local” business model.

What we offer

Company funded Pension program

401k with Company match

Full insurance benefits (health/dental/vision/life)

Collaborative environment with a genuine flexible working policy

Share purchase/match plan

Defined Contribution savings plan

Top Talent Program

Volunteer paid days off

Employee Assistance Program

Achievement fund

Free parking, including free electrical charging

 

We are focused on building a diverse and inclusive workforce.  If you are excited about this role and are not certain you meet the all the qualification requirements, we encourage you to apply to further investigate the opportunity.

We are an equal opportunity employer and value each person’s unique background, diversity, experiences, perspectives and talents. Full participation of all employees in a safe, healthy and respectful environment is key to individual and company success. We are committed to fully utilizing the abilities of all of our employees and expect each of our employees to honor this commitment in their daily responsibilities.

Apply now »