Cyber Security Manager

Note: This role is based in Kelowna, BC and is 100% on-site during the six month probation with the option to move to hybrid afterwards. It is not a remote role.

We're all about the craft.

KF Aerospace is proud to deliver innovative aircraft services for corporate, commercial, and military customers worldwide. Launched in 1970 out of British Columbia's beautiful city of Kelowna, KF Aerospace has grown to specialize in a wide range of aviation services including maintenance and modifications, cargo operations, military pilot training and aircraft leasing. With facilities across Canada, KF Aerospace is home to a 1100 strong, highly skilled workforce. Our passion for our craft fuels every project we touch.

JOB OVERVIEW

The Cyber Security Manager is responsible for preventing cybersecurity incidents through real-time monitoring, detection, analysis, and coordinated response. The role collaborates closely with IT leadership to design, implement, and continuously improve KF's cybersecurity controls, technologies, processes, and governance structures. This position ensures KF meets internal policy expectations as well as all contractual, regulatory, and customer-driven cybersecurity obligations whilst pragmatically balancing those controls with KF's operational requirements and efficiencies.

This role is both strategic and operational: evolving KF's cyber posture, leading a security team, enabling business operations, and ensuring alignment with industry best practices and modern security frameworks.

DUTIES AND RESPONSIBILITIES

Strategy & Planning

• Work closely with the CIO, IT Operations Manager, and Senior Manager – Applications & Development to develop and evolve security policies, standards, and architectural principles that protect KF networks, data, cloud environments, and assets while enabling business operations.
• Anticipate and identify changes in cybersecurity obligations arising from contract amendments, customer requirements, or new bids. Assess impacts and lead adjustments to ensure KF remains compliant.
• Conduct regular audits of policies, controls, and processes; recommend targeted improvements to enhance KF's overall cyber maturity.
• Integrate recognized frameworks (e.g., NIST, ITSP10.171, ISO into KF's security governance to align with aerospace and defense expectations.
• Maintain strong situational awareness of evolving cybersecurity threats, emerging technologies, reported breaches, and regulatory trends.
• Ensure KF's cybersecurity strategy incorporates modern practices such as Zero Trust, identity governance, cloud security principles, and modern endpoint security.

Acquisition & Deployment

• Develop business cases, cost/benefit analyses, and investment plans for cybersecurity initiatives.
• Partner with the CIO on annual OPEX/CAPEX budget development and actively manage spending.
• Evaluate and improve existing cybersecurity technologies, infrastructure, and cloud-based controls.
• Assess the cyber security posture of third-party vendors and partners, recommend acceptance or required remediation, and ensure alignment with regulatory and contractual requirements.
• Negotiate and administer vendor, outsourcing, and consultant agreements related to cybersecurity services.

Operational Management

• Lead and manage cybersecurity staff, fostering a high-performing, collaborative, and inclusive team culture.

• Oversee recruitment, supervision, scheduling, coaching, performance management, and disciplinary actions.

• Lead KF's incident response process, coordinating cross-functional stakeholders, ensuring timely containment and recovery, and conducting post-incident reviews.

• Maintain and enhance security playbooks, runbooks, standard operating procedures, and response guidelines.
• Manage KF's cybersecurity training platform and associated awareness campaigns; monitor engagement metrics and optimize campaigns to drive strong user adoption.
• Plan, conduct, and report on simulations, tabletop exercises, and other cyber readiness assessments, ensuring learning translates to actionable improvements.
• Oversee the production, analysis, and reporting of cybersecurity KPIs; recommend improvements to the CIO.
• Produce ongoing internal communications and user education materials to enhance organizational security awareness.
• Manage the cybersecurity project portfolio, ensuring prioritization and delivery align with business needs and strategic objectives.
• Collaborate with key non-IT departments (Legal, Contracts, HR, PMO, Safety/QA) to ensure integrated cybersecurity risk management across the organization.

REQUIREMENTS

Formal Education & Certification

• University degree in Computer Science, Information Systems, Cybersecurity, or a related field, and 10 years of relevant work experience.
• CISM, CISSP certification, or equivalent framework-based certifications preferred

Knowledge & Experience

• Strong technical knowledge of cybersecurity principles, controls, architectures, and best practices, including cloud security (Azure, M365), identity management, and Zero Trust.
• Solid knowledge of network hardware, protocols, and standards.
• Strong understanding of organizational business goals, operational realities, and risk tolerance.
• Thorough knowledge of applicable data privacy practices and laws.
• Understanding of Canadian Government security standards and aerospace industry cyber requirements.
• Strong project management capabilities.
• Experience developing and maturing a cybersecurity program within a multi-site or regulated environment.

Personal Attributes

• Ability to obtain Canadian Government Secret clearance.
• Strong leadership and communication skills.
• Excellent interpersonal, written, and oral communication abilities.
• Pragmatic and business-oriented approach to balancing security and operational needs.
• Highly motivated, detail-oriented, and capable of performing effectively in high-pressure environments.
• Strong analytical, evaluative, and problem-solving skills.
• Collaborative mindset with extensive experience working in team-based environments.
• Willingness to travel occasionally to other operational sites.

BENEFITS

Full-Time staff benefits include (but are not limited to):

• Health and Dental
• Short & Long-Term Disability
• Health Spending Account
• Personal time off
• The opportunity to bank overtime
• Pension matching plan and voluntary RRSP
• Employee & Family Assistance Program
• A bonus program based on organizational performance

LOCATION

The successful incumbent could be based in the Kelowna, British Columbia.

Occasional travel within Canada is required.

SALARY

The wage band is level 15, $107,000 - $134,000 annually, depending on knowledge and experience. Note: The salary range maximum signifies full job knowledge.

HOW TO APPLY

Be a part of our craft. Apply for the Cyber Security Manager position at today