Job title: IT Security Analyst
Job type: Contract
Emp type: Full-time
Industry: Banking
Expertise: Information Technology
Location: 200 Bloor Street East, Suite 1813, 200 Bloor Street East, ON, M4W 1E5
Job published: 2023-01-05
Job ID: 59452

Job Description

 

Job Description

 

Position: Technical Security Analyst

Duration: 12 months

Location: Waterloo

 

Description:  

As a member of the IT Risk Management team, you will serve as the technical authority answering to our client security assessments by actively participating in client calls and attending meetings to understand what the client's Security Compliance requirements are.

Responsibilities

  • Interact with the Global Information Risk Management team, Canadian Division Information Risk Management team, the Global Security and ETS teams
  • Develop a solid grasp of company’s overall polices and security standards
  • Support security assessments which will include self-assessment questionnaires, contract reviews, site visits and external audit reports analysis
  • Provide Controls, Audit, and Compliance consulting support for Program(s) and Program teams and initiatives
  • Consult with the business unit on information security, compliance, and controls requirements
  • Assess compliance and drive remediation/alignment with company's Security Policies, Standards and Procedures
  • Review and provide assessments into the control monitoring process, ensuring that appropriate internal controls are followed for all underpinning processes

Experience and Qualifications

  • Bachelor’s degree in computer science or equivalent and relevant professional experience
  • At least 3 - 5 years of working experience in information security audit and contracts reviews.
  • Professional certification(s) related to information controls, audit, or compliance such as CISSP, CRISC, CISM, CISA, GIAC is helpful
  • Extraordinary written and oral communication skills
  • Working knowledge of French is considered an asset
  • Must have a deep understanding of IT controls combined with information technology audit and compliance experience
  • Must have the ability to analyze and synthesize information and complex issues to develop meaningful analyses to help make informed decisions
  • Must have the ability to analyze and form an opinion on risks and controls relating to systems and link to associated business impacts
  • Must have the ability to voice opinions (supported by facts), call out issues and ideas, and positively handle conflict
  • Must be familiar with IT General Controls
  • Solid understanding of industry frameworks such as NIST, ISO, COBIT5, and CSA

Attributes

  • High level of professionalism, integrity, and ethics
  • Can perform tasks independently, yet are also capable of working within a team environment
  • Ability to design and implement new processes and build efficiencies
  • Comfortable working in a fast-paced, evolving, and growing environment
  • Proven time management and organizational skills are required to meet tight deadlines
  • Strong presentation and interpersonal skills
  • Strong computer skills