Job Description

Qualifications:

- A degree in Information Technology, Information Security or related major

- Minimum 7 years of experience in IT;

- Minimum 3 years' experience in IT cyber security or related area and/or 3 years working specifically in a Critical Infrastructure Protection information security operations or consulting function;

- IS Certification would be an asset (CISM, CISA, or equivalent)

- Excellent communication skills.

- Bilingual, written and spoken (French and English);

- A functional understanding of NIST – Cybersecurity Framework and NIST – 800-53 Security Controls.

- Prior experience with information security management.

- Experience with monitoring, collecting, and analyzing device, system, and application logs for attempted and/or achieved unauthorized access into our environment.

- Familiarity with Microsoft Windows client/server and Office 365, RedHat/CentOS Linux servers, Cisco enterprise networking, and other modern workplace technology platforms.

Job Description:

- Gain a thorough understanding of the company’s systems and recommend ways to improve and update the security of the company’s computers through both hardware and software;

- Perform monitoring and analysis of incoming alerts and warnings from our internal systems and external SOC;

- Work in collaboration with the IT infrastructure and support teams for incident response and vulnerability remediation in all systems;

- Define security requirements; planning, implementing, and testing security systems; preparing security standards, policies, and procedures; mentoring team members;

- Leads the security review process and makes formal recommendations for new and existing technologies;

- Subject matter and technical expert responsible for vulnerability management, privileged account management, end point protection, email filtering, threat prevention and detection, incident response, threat intelligence, security vendor management (and working with outside vendors on security assessments and penetration testing), and responding to a centralized security information and event management system;

- Identifies and evaluates potential threats and vulnerabilities (either detected internally or publicly announced) that could impact the company’s applications or infrastructure and recommends mitigating controls to reduce the companies’ risk;

- Leads the recovery of our security solutions in the annual Disaster Recovery Test;

Job Tags

Similar Jobs