lead security systems and information analyst, Toronto

posted
contact
randstad canada
job type
permanent
salary
$ 70,000 - $ 80,000 per year
apply now

job details

posted
location
toronto, ontario
sector
technologies
job type
permanent
salary
$ 70,000 - $ 80,000 per year
reference number
2220763PROEN
contact
randstad canada
apply now

job description

LOCATION: Toronto/Markham, ON

JOB DESCRIPTION:

The Lead Security Systems and Information Analyst will develop and implement technology controls, policies and systems in order to improve the company’s security posture. You will be responsible for planning, developing, implementing security protocols in support of existing infrastructure as well as directing policy and implementations towards future projects.

At the Enterprise level, the Lead Security Systems and Information Analyst be involved with assessing security and working within the infrastructure team to mitigate any vulnerabilities of our systems to protect against new cybersecurity threats. You will be involved in the design and implementation of IT security solutions, including creation and/or maintenance of IT security policies, standards, guidelines and assessments.

As part of the Infrastructure Services department, the Lead Security Systems and Information Analyst will shape and support secure services in alignment with corporate business objectives. The incumbent is a partner in upholding the company’s security directives and controls. The Lead Security Systems and Information Analyst will improve and drive the company’s security goals, technology, policies, procedures, incident responses.

ESSENTIAL FUNCTIONS:
 Lead or contribute to the completion of risk and control design assessments for business applications, business portfolios, and the overall enterprise, as well as risk mitigation and remediation plans and remediation strategies.
 Contribute to the definition, development, and oversight of a global security management strategy and framework. Ensure technology, processes, and governance are in place to monitor, detect, prevent, and react to both current and emerging technology and security threats against the company.
 Improve corporate security strategies and standards for On Premise, Cloud and M&A opportunities.
 Evaluate, plan, implement and maintain IT security controls. Including but not limited to: Cloud systems, IPS/IDS, Malware protection, Security incident identification, Data loss protection.
 Identify infrastructure systems for security improvement and control opportunities. Ensure improvements and controls address client business needs.
 Consult on Information Technology global regulatory compliance requirements and business related security questionnaires.
 Develop and communicate status of key information security metrics/trends to peers, management and all other relevant individuals.
 Participate and contribute to IT projects. Responsibilities include but are not limited to: Evaluating/Implementing security controls, engage in risk assessments of existing and new systems. Document Security Controls where applicable.
 Perform penetration testing, vulnerability scanning and remediation solutions.
 Provide incident management investigation, response and root cause analysis for security events.
 Co-ordinate phishing, security awareness training, security briefings and training opportunity improvements.
 Apply, and ensure compliance with all appropriate IT standards (Security, Architecture, Project Delivery Methodology). Working knowledge of one or more security assessment standards as PCI, HIPAA, ISO 27001/9001, and SOC2 attestations an asset.
 Provide backup desktop/network support when required.

JOB SPECIFICATIONS:
 University degree, college diploma or relevant working experience.
 Information Security Certification/Accreditation is an asset.
 7+ years of relevant experience.
 Advanced knowledge of organization, technology controls, security and risk issues.
 Technical background and the ability to understand/implement technical requirements.
 Experience with intrusion prevention, malware mitigation, firewall, VPN, encryption, data loss prevention, protocol and traffic analysis.
 Proven understanding of IT security processes, procedures and tools.
 Experience with requirement analysis, product research selection and project implementation.
 Excellent interpersonal skills, written and verbal communication, including with Executive audiences
 Able to work effectively with all levels of the organization, including staff, business stakeholders, and all levels of management.
 Ability to work well independently while maintaining alignment with overall corporate direction.
 Requires occasional overtime on weeknights and weekends
 Requires carrying a corporate mobile device and providing emergency 24 x 7 support
 Some travel to regional branch offices may be required
Randstad Professionals Canada
Randstad Canada is committed to building a diverse workforce reflective of the diversity of Canada. As a result, we promote employment equity and encourage candidates, especially those who identify as a woman, an Aboriginal person, a person with a disability or a member of a visible minority group, and any others who may contribute to the diversification of our workforce, to apply.

Randstad Canada is also committed to developing an inclusive, barrier-free selection processes and work environments.If contacted in relation to a job opportunity, you should advise your Randstad Representative or your local Randstad branch in a timely fashion of the accommodation measures which must be taken to enable you to be assessed in a fair and equitable manner.Information received relating to accommodation measures will be addressed confidentially.

For all feedback on equity and accommodation needs, please contact your local Randstad Canada Branch.