thank you for subscribing to your personalised job alerts.

    9 jobs found for cisa

    filter
      • Quebec, Québec
      • Contract
      Randstad Technologies est présentement à la recherche d'un analyste en sécurité senior pour combler un poste contractuel dans le domaine des assurances.• Élaboration, rédaction et modification des analyses conformément aux principes d’architecture.• Participation avec les clients et les architectes à la recherche de solutions détaillées permettant de définir et traiter les besoins en sécurité de l’information.• Participation à l’élaboration des règles et normes de sécurité.• Rédaction, réalisation, validation des essais sécurité, des cas d’essais jusqu’aux résultats.• Rédaction, réalisation, validation des évaluations de risques des solutions technologiques ou applicatives livrées par les projets.• Modélisation des accès. • Participation à la rédaction des documents d'exploitation de la sécurité pour les solutions livrées. • Contribution à l’assurance qualité des biens livrables et aux actions d’amélioration de la fonction sécurité.Exigences de l’emploi :• Baccalauréat et un minimum de 10 ans d’expérience en technologies de l’information;• Posséder une connaissance fonctionnelle de l’anglais;• Être familier avec les méthodes et approches standards du domaine de la sécurité de l’information;• Avoir fait des analyse de risques, avis de sécurité et du conseil en sécurité de l'information dans les projets technologiques ou applicatifs;• Posséder des connaissances de base en télécommunication et pare-feu et une bonne connaissance des environnements Microsoft et cloud;• Posséder des connaissances de base en GIA;• Posséder des certifications (CISSP, CCSK, CISA…) en sécurité informatique, est un atout.Si vous avez un intérêt ou vous voulez en savoir plus, je vous invite à postuler! Vous pouvez également nous contacter directement à notre bureau au 418-525-8163, par courriel au genevieve.moreau@randstad.ca ou visiter toutes nos offres d'emploi en TI sur notre site web suivant: https://www.randstad.ca/fr/jobs/s-technologies/quebec/quebec/Au plaisir de vous connaître!RESPONSIBILITIESQUALIFICATIONS
      Randstad Technologies est présentement à la recherche d'un analyste en sécurité senior pour combler un poste contractuel dans le domaine des assurances.• Élaboration, rédaction et modification des analyses conformément aux principes d’architecture.• Participation avec les clients et les architectes à la recherche de solutions détaillées permettant de définir et traiter les besoins en sécurité de l’information.• Participation à l’élaboration des règles et normes de sécurité.• Rédaction, réalisation, validation des essais sécurité, des cas d’essais jusqu’aux résultats.• Rédaction, réalisation, validation des évaluations de risques des solutions technologiques ou applicatives livrées par les projets.• Modélisation des accès. • Participation à la rédaction des documents d'exploitation de la sécurité pour les solutions livrées. • Contribution à l’assurance qualité des biens livrables et aux actions d’amélioration de la fonction sécurité.Exigences de l’emploi :• Baccalauréat et un minimum de 10 ans d’expérience en technologies de l’information;• Posséder une connaissance fonctionnelle de l’anglais;• Être familier avec les méthodes et approches standards du domaine de la sécurité de l’information;• Avoir fait des analyse de risques, avis de sécurité et du conseil en sécurité de l'information dans les projets technologiques ou applicatifs;• Posséder des connaissances de base en télécommunication et pare-feu et une bonne connaissance des environnements Microsoft et cloud;• Posséder des connaissances de base en GIA;• Posséder des certifications (CISSP, CCSK, CISA…) en sécurité informatique, est un atout.Si vous avez un intérêt ou vous voulez en savoir plus, je vous invite à postuler! Vous pouvez également nous contacter directement à notre bureau au 418-525-8163, par courriel au genevieve.moreau@randstad.ca ou visiter toutes nos offres d'emploi en TI sur notre site web suivant: https://www.randstad.ca/fr/jobs/s-technologies/quebec/quebec/Au plaisir de vous connaître!RESPONSIBILITIESQUALIFICATIONS
      • Guelph, Ontario
      • Permanent
      Our client in the Guelph region is looking for a network administrator to join their team permanently. This role would require experience with Cisco firewall and switch management for LAN/WAN connectivity as experience with security: IDS, IPS, compliance and policies. You will also provide support for escalated infrastructure issues, have experience with routing protocols, windows servers as well as firewall configuration (NAT, PAT, ACLs). As a Network Administrator you are also responsible to build a highly available, highly secure LAN/WAN environment, this includes hardware, software, configurations, and security as they relate to the network. Qualifications:3-5 years as a Network Administrator3-5 years experience building and administering of Cisco firewalls and switches3-5 years experience with configurations for OSPF, BGP, VLAN, QoS, and IPSec/SSL VPN3-5 years supporting TCP/UDP, DHCP, DNS, HTTPS, FTPIdeally 3+ years designing mid-tier networking infrastructure environments2+ year experience with change management practices2+ years experience with Syslog tools, prtf, splunk, IDS solutionsExperience collecting and analyzing packet capturesExperience with security Tools and Penetration Testing MethodsExperience working with Azure components Excellent communication skillsA technical diploma or degree in networking / information security a strong asset.CISA, CISSP, PCI ISA, or PCIP certifications are an asset If you or anyone you know is looking for a great opportunity with an excellent company and have 3-5 years of Network Admin experience, please apply today!ADVANTAGESResponsibilities: * Implement changes, incident or change requests for load balancers or firewalls, switch upgrades..etc.* 75% Palo Alto firewall changes or Load Balancer changes, with some vulnerability and switch upgrades as well.* Must be available to work afternoon/Evening 8pm-1am (preferred, but could start later if necessary)* Steady State work and Project work - some incident troubleshooting as well. Qualifications: * 5+ years of hands on Network Support experience preferred* Experience/understanding configuring Load Balancers* Palo Alto Firewall configuration experience * CISCO switch OS upgrade experience preferred* Must be able to follow documented change management procedures for configuration and deployment* Must be able to work off business hours and possibly some weekend work* Strong written and verbal communication skills* General understanding of Firewall administration, configuration, and troubleshooting.* Work within a dynamic large-scale environment with the ability to understand and follow assigned tasks* Experience with Microsoft RESPONSIBILITIESResponsibilities: * Implement changes, incident or change requests for load balancers or firewalls, switch upgrades..etc.* 75% Palo Alto firewall changes or Load Balancer changes, with some vulnerability and switch upgrades as well.* Must be available to work afternoon/Evening 8pm-1am (preferred, but could start later if necessary)* Steady State work and Project work - some incident troubleshooting as well. Qualifications: * 5+ years of hands on Network Support experience preferred* Experience/understanding configuring Load Balancers* Palo Alto Firewall configuration experience * CISCO switch OS upgrade experience preferred* Must be able to follow documented change management procedures for configuration and deployment* Must be able to work off business hours and possibly some weekend work* Strong written and verbal communication skills* General understanding of Firewall administration, configuration, and troubleshooting.* Work within a dynamic large-scale environment with the ability to understand and follow assigned tasks* Experience with Microsoft QUALIFICATIONSA technical diploma or degree in networking / information security is mandatoryCISA, CISSP, PCI ISA, or PCIP certifications are an assetSUMMARYResponsibilities: * Implement changes, incident or change requests for load balancers or firewalls, switch upgrades..etc.* 75% Palo Alto firewall changes or Load Balancer changes, with some vulnerability and switch upgrades as well.* Must be available to work afternoon/Evening 8pm-1am (preferred, but could start later if necessary)* Steady State work and Project work - some incident troubleshooting as well. Qualifications: * 5+ years of hands on Network Support experience preferred* Experience/understanding configuring Load Balancers* Palo Alto Firewall configuration experience * CISCO switch OS upgrade experience preferred* Must be able to follow documented change management procedures for configuration and deployment* Must be able to work off business hours and possibly some weekend work* Strong written and verbal communication skills* General understanding of Firewall administration, configuration, and troubleshooting.* Work within a dynamic large-scale environment with the ability to understand and follow assigned tasks* Experience with Microsoft
      Our client in the Guelph region is looking for a network administrator to join their team permanently. This role would require experience with Cisco firewall and switch management for LAN/WAN connectivity as experience with security: IDS, IPS, compliance and policies. You will also provide support for escalated infrastructure issues, have experience with routing protocols, windows servers as well as firewall configuration (NAT, PAT, ACLs). As a Network Administrator you are also responsible to build a highly available, highly secure LAN/WAN environment, this includes hardware, software, configurations, and security as they relate to the network. Qualifications:3-5 years as a Network Administrator3-5 years experience building and administering of Cisco firewalls and switches3-5 years experience with configurations for OSPF, BGP, VLAN, QoS, and IPSec/SSL VPN3-5 years supporting TCP/UDP, DHCP, DNS, HTTPS, FTPIdeally 3+ years designing mid-tier networking infrastructure environments2+ year experience with change management practices2+ years experience with Syslog tools, prtf, splunk, IDS solutionsExperience collecting and analyzing packet capturesExperience with security Tools and Penetration Testing MethodsExperience working with Azure components Excellent communication skillsA technical diploma or degree in networking / information security a strong asset.CISA, CISSP, PCI ISA, or PCIP certifications are an asset If you or anyone you know is looking for a great opportunity with an excellent company and have 3-5 years of Network Admin experience, please apply today!ADVANTAGESResponsibilities: * Implement changes, incident or change requests for load balancers or firewalls, switch upgrades..etc.* 75% Palo Alto firewall changes or Load Balancer changes, with some vulnerability and switch upgrades as well.* Must be available to work afternoon/Evening 8pm-1am (preferred, but could start later if necessary)* Steady State work and Project work - some incident troubleshooting as well. Qualifications: * 5+ years of hands on Network Support experience preferred* Experience/understanding configuring Load Balancers* Palo Alto Firewall configuration experience * CISCO switch OS upgrade experience preferred* Must be able to follow documented change management procedures for configuration and deployment* Must be able to work off business hours and possibly some weekend work* Strong written and verbal communication skills* General understanding of Firewall administration, configuration, and troubleshooting.* Work within a dynamic large-scale environment with the ability to understand and follow assigned tasks* Experience with Microsoft RESPONSIBILITIESResponsibilities: * Implement changes, incident or change requests for load balancers or firewalls, switch upgrades..etc.* 75% Palo Alto firewall changes or Load Balancer changes, with some vulnerability and switch upgrades as well.* Must be available to work afternoon/Evening 8pm-1am (preferred, but could start later if necessary)* Steady State work and Project work - some incident troubleshooting as well. Qualifications: * 5+ years of hands on Network Support experience preferred* Experience/understanding configuring Load Balancers* Palo Alto Firewall configuration experience * CISCO switch OS upgrade experience preferred* Must be able to follow documented change management procedures for configuration and deployment* Must be able to work off business hours and possibly some weekend work* Strong written and verbal communication skills* General understanding of Firewall administration, configuration, and troubleshooting.* Work within a dynamic large-scale environment with the ability to understand and follow assigned tasks* Experience with Microsoft QUALIFICATIONSA technical diploma or degree in networking / information security is mandatoryCISA, CISSP, PCI ISA, or PCIP certifications are an assetSUMMARYResponsibilities: * Implement changes, incident or change requests for load balancers or firewalls, switch upgrades..etc.* 75% Palo Alto firewall changes or Load Balancer changes, with some vulnerability and switch upgrades as well.* Must be available to work afternoon/Evening 8pm-1am (preferred, but could start later if necessary)* Steady State work and Project work - some incident troubleshooting as well. Qualifications: * 5+ years of hands on Network Support experience preferred* Experience/understanding configuring Load Balancers* Palo Alto Firewall configuration experience * CISCO switch OS upgrade experience preferred* Must be able to follow documented change management procedures for configuration and deployment* Must be able to work off business hours and possibly some weekend work* Strong written and verbal communication skills* General understanding of Firewall administration, configuration, and troubleshooting.* Work within a dynamic large-scale environment with the ability to understand and follow assigned tasks* Experience with Microsoft
      • Toronto, Ontario
      • Contract
      Our downtown Toronto client is looking for an experienced Network Analyst for an exciting 12 months project. Previous experience working with Ontario Public Sector or Broader Public Sector clients is Mandatory. Mandatory Skills / Certification: •Mandatory Skills / Certification:• Minimum 5+ years of direct involvement in the architecture, design,construction and support of large, complex enterprise level Network / Securitysystems including firewalls, security appliances, multi-homed Internet, multi-vendor firewall appliances, network segments / segmentation• Minimum 5+ years of direct involvement in the architecture, design,construction and support of critical infrastructure Network / Security systemsacross Operational Technology and Industrial Controls Systems such as PLCs,various other SCADA devices, Power Control etc…• Minimum 4+ years experience with security appliances and configuraton ofFirewalls, intrusion detection and prevention, monitoring, containment andremediation across Operational Technology and Industrial Controls Systems• Experience with Change Management and Change Impact Analysis forOperational Technology and Industrial Controls Systems• One or more security industry certifications including but not limited to: CISSP,CISA, CISM, SANs certifications• Experience with core security technologies such as Security Information andEvent Monitoring systems (SIEM), Web Application Firewall (WAF), IntrusionDetection and Prevention Systems (IDPS), Vulnerability Management,EndPoint Security, NGFWs, Log Management (centralized logging)• Experience with setting up policies for DLP, IPS, DDoS, SSL inspection etc. onRESPONSIBILITIESQUALIFICATIONS
      Our downtown Toronto client is looking for an experienced Network Analyst for an exciting 12 months project. Previous experience working with Ontario Public Sector or Broader Public Sector clients is Mandatory. Mandatory Skills / Certification: •Mandatory Skills / Certification:• Minimum 5+ years of direct involvement in the architecture, design,construction and support of large, complex enterprise level Network / Securitysystems including firewalls, security appliances, multi-homed Internet, multi-vendor firewall appliances, network segments / segmentation• Minimum 5+ years of direct involvement in the architecture, design,construction and support of critical infrastructure Network / Security systemsacross Operational Technology and Industrial Controls Systems such as PLCs,various other SCADA devices, Power Control etc…• Minimum 4+ years experience with security appliances and configuraton ofFirewalls, intrusion detection and prevention, monitoring, containment andremediation across Operational Technology and Industrial Controls Systems• Experience with Change Management and Change Impact Analysis forOperational Technology and Industrial Controls Systems• One or more security industry certifications including but not limited to: CISSP,CISA, CISM, SANs certifications• Experience with core security technologies such as Security Information andEvent Monitoring systems (SIEM), Web Application Firewall (WAF), IntrusionDetection and Prevention Systems (IDPS), Vulnerability Management,EndPoint Security, NGFWs, Log Management (centralized logging)• Experience with setting up policies for DLP, IPS, DDoS, SSL inspection etc. onRESPONSIBILITIESQUALIFICATIONS
      • Toronto, Ontario
      • Permanent
      • $100,000 - $120,000 per year
      We're looking for a Security Assurance and Advisory Lead to join our team in a permanent-full-time capacity.This role is 100% work at home.PURPOSE OF THE ROLE: ROLE: The Assurance and Advisory Lead will execute, develop, and support the Manager ofGRC with planned Corporate projects, focusing on identifying technology and business risks, compensatingcontrols, and opportunities for improvement in internal controls.Responsibility Breakdown Internal Quality Control, Assurance & Advisory 40%- Manage and oversee risk and ensure quality control procedures are executed across the enterprise.- Perform security audits and risk assessments on new or existing solutions.- Manage domain of Advisory and Assurance services and continue to improve efficiencies- Validate security controls Information Technology teams and vendors.- Identify, propose, and implement security methodologies, and tools that simplify security testing anddiscovery activities.- Support business units in identifying improvement opportunities to manage risk and apply quality controlthroughout existing applications/systems, processes, and projects.- Identify and assess technology solutions and business risks, identifying internal controls to mitigate risks,Provide subject matter expertise in selecting and tailoring existing risk management approaches,methodologies, and tools to support and secure services and products.Risk Management 30%- Assess projects and IT changes for compliance w/ security policies and regulatory landscape.- Identify areas of information security compliance vulnerability and risk within new and existing projects,processes, and technologies.- Perform strategic threat risk assessments, identifying key business risks and threats within projects, existingprocesses, leading communication, and reporting of identified risk and risk remediation plans.- Review and evaluate existing processes and projects to benchmark security compliance with industrystandards.- Present and communicate risk status to senior management.- Continue the development and management for the TRA and advisory services programProject & Team Management 15%- Identify scope and objectives of projects, gaining an understanding of the business, and managingresources needed to conduct risk identification, risk mitigation, and risk compliance assurance activities.- Support and facilitate practice development in information security assurance and advisory engagementactivities, simultaneously overseeing and managing multiple projects.- Lead and manage outsourced commodity vendor and Third-Party Risk Management provider specific to theadvisory and assurance functionChange Management 15%- Lead and drive change across the enterprise in implementing and improving existing risk managementmethodologies to ensure stakeholder buy-in and effective integration of risk management methodologies inbusiness practice.- Integrate and align risk management methodologies to other organizational initiatives:o, Identify and mitigate barriers to success.o, Ensure risk management methodologies are adopted within existing processes and programs.o Identify change management needs in staffing, training, communications, and organizationaldesigns.o Support and coordinate security training and awareness material that identifies and communicatesinformation on security compliance trends to employees.Requirements:- 8+ years of direct experience in an information security risk management and compliance role and several years of experience within the healthcare sector-The successful candidate has lots of experience working in the healthcare industry.- Expertise in evaluating security controls, conducting risk assessments (including third-party risk management).- Knowledge and interest in technology including topics such as operating systems, mobile technologies, software development, networking, and business applications.- Understanding of internal control frameworks including COBIT, ISO 27001, NIST, ITIL, etc.- Experience in the implementation of ISO 27001 standards and certification- Knowledge of developing risk reports and control summaries.- Familiarity with the Internet of Things (IoT) devices, industrial control systems (ICS), and supervisory control and data acquisition (SCADA).- Architectural and network security experience.- Strong writing and interpersonal communication skills.- The ability to handle multiple projects simultaneously.- Exhibits intellectual curiosity and analytical thinking.- Bachelor’s degree or Diploma in IT, Business Technology Management, or any related technical field- Designation (if applicable): One or more relevant security certifications (CISA, CISSP, CPA, CISM, CRISC, GSNA, GCCC)For immediate consideration, please send resume to Edwin.chang@randstad.caADVANTAGESA chance to work with one of Canada's largest health industry, and alongside top leaders in the security world.RESPONSIBILITIESInternal Quality Control, Assurance & Advisory 40%Risk Management 30%Project & Team Management 15%Change Management 15%QUALIFICATIONS- 8+ years of direct experience in an information security risk management and compliance role and several years of experience within the healthcare sector-The successful candidate has lots of experience working in the healthcare industry.- Expertise in evaluating security controls, conducting risk assessments (including third-party risk management).- Knowledge and interest in technology including topics such as operating systems, mobile technologies, software development, networking, and business applications.- Understanding of internal control frameworks including COBIT, ISO 27001, NIST, ITIL, etc.- Experience in the implementation of ISO 27001 standards and certification- Knowledge of developing risk reports and control summaries.- Familiarity with the Internet of Things (IoT) devices, industrial control systems (ICS), and supervisory control and data acquisition (SCADA).- Architectural and network security experience.- Strong writing and interpersonal communication skills.- The ability to handle multiple projects simultaneously.- Exhibits intellectual curiosity and analytical thinking.- Bachelor’s degree or Diploma in IT, Business Technology Management, or any related technical field- Designation (if applicable): One or more relevant security certifications (CISA, CISSP, CPA, CISM, CRISC, GSNA, GCCC)SUMMARYThe Assurance and Advisory Lead will execute, develop, and support the Manager ofGRC with planned Corporate projects, focusing on identifying technology and business risks, compensatingcontrols, and opportunities for improvement in internal controls.
      We're looking for a Security Assurance and Advisory Lead to join our team in a permanent-full-time capacity.This role is 100% work at home.PURPOSE OF THE ROLE: ROLE: The Assurance and Advisory Lead will execute, develop, and support the Manager ofGRC with planned Corporate projects, focusing on identifying technology and business risks, compensatingcontrols, and opportunities for improvement in internal controls.Responsibility Breakdown Internal Quality Control, Assurance & Advisory 40%- Manage and oversee risk and ensure quality control procedures are executed across the enterprise.- Perform security audits and risk assessments on new or existing solutions.- Manage domain of Advisory and Assurance services and continue to improve efficiencies- Validate security controls Information Technology teams and vendors.- Identify, propose, and implement security methodologies, and tools that simplify security testing anddiscovery activities.- Support business units in identifying improvement opportunities to manage risk and apply quality controlthroughout existing applications/systems, processes, and projects.- Identify and assess technology solutions and business risks, identifying internal controls to mitigate risks,Provide subject matter expertise in selecting and tailoring existing risk management approaches,methodologies, and tools to support and secure services and products.Risk Management 30%- Assess projects and IT changes for compliance w/ security policies and regulatory landscape.- Identify areas of information security compliance vulnerability and risk within new and existing projects,processes, and technologies.- Perform strategic threat risk assessments, identifying key business risks and threats within projects, existingprocesses, leading communication, and reporting of identified risk and risk remediation plans.- Review and evaluate existing processes and projects to benchmark security compliance with industrystandards.- Present and communicate risk status to senior management.- Continue the development and management for the TRA and advisory services programProject & Team Management 15%- Identify scope and objectives of projects, gaining an understanding of the business, and managingresources needed to conduct risk identification, risk mitigation, and risk compliance assurance activities.- Support and facilitate practice development in information security assurance and advisory engagementactivities, simultaneously overseeing and managing multiple projects.- Lead and manage outsourced commodity vendor and Third-Party Risk Management provider specific to theadvisory and assurance functionChange Management 15%- Lead and drive change across the enterprise in implementing and improving existing risk managementmethodologies to ensure stakeholder buy-in and effective integration of risk management methodologies inbusiness practice.- Integrate and align risk management methodologies to other organizational initiatives:o, Identify and mitigate barriers to success.o, Ensure risk management methodologies are adopted within existing processes and programs.o Identify change management needs in staffing, training, communications, and organizationaldesigns.o Support and coordinate security training and awareness material that identifies and communicatesinformation on security compliance trends to employees.Requirements:- 8+ years of direct experience in an information security risk management and compliance role and several years of experience within the healthcare sector-The successful candidate has lots of experience working in the healthcare industry.- Expertise in evaluating security controls, conducting risk assessments (including third-party risk management).- Knowledge and interest in technology including topics such as operating systems, mobile technologies, software development, networking, and business applications.- Understanding of internal control frameworks including COBIT, ISO 27001, NIST, ITIL, etc.- Experience in the implementation of ISO 27001 standards and certification- Knowledge of developing risk reports and control summaries.- Familiarity with the Internet of Things (IoT) devices, industrial control systems (ICS), and supervisory control and data acquisition (SCADA).- Architectural and network security experience.- Strong writing and interpersonal communication skills.- The ability to handle multiple projects simultaneously.- Exhibits intellectual curiosity and analytical thinking.- Bachelor’s degree or Diploma in IT, Business Technology Management, or any related technical field- Designation (if applicable): One or more relevant security certifications (CISA, CISSP, CPA, CISM, CRISC, GSNA, GCCC)For immediate consideration, please send resume to Edwin.chang@randstad.caADVANTAGESA chance to work with one of Canada's largest health industry, and alongside top leaders in the security world.RESPONSIBILITIESInternal Quality Control, Assurance & Advisory 40%Risk Management 30%Project & Team Management 15%Change Management 15%QUALIFICATIONS- 8+ years of direct experience in an information security risk management and compliance role and several years of experience within the healthcare sector-The successful candidate has lots of experience working in the healthcare industry.- Expertise in evaluating security controls, conducting risk assessments (including third-party risk management).- Knowledge and interest in technology including topics such as operating systems, mobile technologies, software development, networking, and business applications.- Understanding of internal control frameworks including COBIT, ISO 27001, NIST, ITIL, etc.- Experience in the implementation of ISO 27001 standards and certification- Knowledge of developing risk reports and control summaries.- Familiarity with the Internet of Things (IoT) devices, industrial control systems (ICS), and supervisory control and data acquisition (SCADA).- Architectural and network security experience.- Strong writing and interpersonal communication skills.- The ability to handle multiple projects simultaneously.- Exhibits intellectual curiosity and analytical thinking.- Bachelor’s degree or Diploma in IT, Business Technology Management, or any related technical field- Designation (if applicable): One or more relevant security certifications (CISA, CISSP, CPA, CISM, CRISC, GSNA, GCCC)SUMMARYThe Assurance and Advisory Lead will execute, develop, and support the Manager ofGRC with planned Corporate projects, focusing on identifying technology and business risks, compensatingcontrols, and opportunities for improvement in internal controls.
      • Verdun, Québec
      • Contract
      Responsibilities:Provide expertise in the implementation and improvement of Cyber Security’s standards and compliance framework, in line with Cyber’s mission to protect information, Digital Assets and Industrial Control Systems.Primarily provide practical expertise in the ongoing implementation of the control framework (CPICS). It will require active engagement across and Business teams, service partners, and assurance stakeholders, both internal and external.The role includes collaboration with other teams in the region on shared initiatives, including follow up compliance remediation; and to support, where required, Cyber initiatives related to development of technical standards and enablement of tools.Objectives:Independently assess the compliance of in scope digital information assets and third parties, identifying compliance gaps, agreeing with stakeholder a remediation plan, and to follow up and manage remediation to completion.Utilize technical and business experience in guiding Cyber control design and remediation efforts, consulting and collaborating with technical subject matter specialists where required to achieve tangible, pragmatic outcomes.Provide specialist advice in the definition, application and communication of Cyber Security standards and guidanceProvide local context and support for other Cyber initiatives as requiredMaintain strong working relationships with individuals and groups involved in managing Cyber Security , as well as IS&T representatives, key business stakeholders, service partners and vendors, and assurance providers.Skills and Qualifications:Bachelor’s degree in business, management, compliance or audit or IT management or related degreeMinimum 5 years’ experience as an IT Business Analyst or in an IT governance & compliance for a large enterprise, or equivalent professional services experienceDemonstrated practical knowledge and experience in a breadth of Cyber Security topics and compliance requirements, particularly with respect to outsourced and cloud-based services.Ability to work unsupervised with high personal standards and integrity, and in a highly deadline driven environment.Excellent communication and interpersonal skills, with the ability to work with multi-disciplinary projects teams, and influence othersRelevant tertiary qualification, and professional qualification such as CISA or CISSPBilingual is an assetADVANTAGES________________________________________________________________________________RESPONSIBILITIES________________________________________________________________________________QUALIFICATIONSqualifications:____________________________________________________________SUMMARY________________________________________________________________________________
      Responsibilities:Provide expertise in the implementation and improvement of Cyber Security’s standards and compliance framework, in line with Cyber’s mission to protect information, Digital Assets and Industrial Control Systems.Primarily provide practical expertise in the ongoing implementation of the control framework (CPICS). It will require active engagement across and Business teams, service partners, and assurance stakeholders, both internal and external.The role includes collaboration with other teams in the region on shared initiatives, including follow up compliance remediation; and to support, where required, Cyber initiatives related to development of technical standards and enablement of tools.Objectives:Independently assess the compliance of in scope digital information assets and third parties, identifying compliance gaps, agreeing with stakeholder a remediation plan, and to follow up and manage remediation to completion.Utilize technical and business experience in guiding Cyber control design and remediation efforts, consulting and collaborating with technical subject matter specialists where required to achieve tangible, pragmatic outcomes.Provide specialist advice in the definition, application and communication of Cyber Security standards and guidanceProvide local context and support for other Cyber initiatives as requiredMaintain strong working relationships with individuals and groups involved in managing Cyber Security , as well as IS&T representatives, key business stakeholders, service partners and vendors, and assurance providers.Skills and Qualifications:Bachelor’s degree in business, management, compliance or audit or IT management or related degreeMinimum 5 years’ experience as an IT Business Analyst or in an IT governance & compliance for a large enterprise, or equivalent professional services experienceDemonstrated practical knowledge and experience in a breadth of Cyber Security topics and compliance requirements, particularly with respect to outsourced and cloud-based services.Ability to work unsupervised with high personal standards and integrity, and in a highly deadline driven environment.Excellent communication and interpersonal skills, with the ability to work with multi-disciplinary projects teams, and influence othersRelevant tertiary qualification, and professional qualification such as CISA or CISSPBilingual is an assetADVANTAGES________________________________________________________________________________RESPONSIBILITIES________________________________________________________________________________QUALIFICATIONSqualifications:____________________________________________________________SUMMARY________________________________________________________________________________
      • Toronto, Ontario
      • Permanent
      • $100,000 - $120,000 per year
      For immediate consideration, please send resume to Edwin.chang@randstad.caWe're looking for a Security Assurance and Advisory Lead to join our team in a permanent-full-time capacity.This role is 100% work at home.PURPOSE OF THE ROLE: ROLE: The Assurance and Advisory Lead will execute, develop, and support the Manager ofGRC with planned Corporate projects, focusing on identifying technology and business risks, compensatingcontrols, and opportunities for improvement in internal controls.Responsibility Breakdown Internal Quality Control, Assurance & Advisory 40%- Manage and oversee risk and ensure quality control procedures are executed across the enterprise.- Perform security audits and risk assessments on new or existing solutions.- Manage domain of Advisory and Assurance services and continue to improve efficiencies- Validate security controls Information Technology teams and vendors.- Identify, propose, and implement security methodologies, and tools that simplify security testing anddiscovery activities.- Support business units in identifying improvement opportunities to manage risk and apply quality controlthroughout existing applications/systems, processes, and projects.- Identify and assess technology solutions and business risks, identifying internal controls to mitigate risks,Provide subject matter expertise in selecting and tailoring existing risk management approaches,methodologies, and tools to support and secure services and products.Risk Management 30%- Assess projects and IT changes for compliance w/ security policies and regulatory landscape.- Identify areas of information security compliance vulnerability and risk within new and existing projects,processes, and technologies.- Perform strategic threat risk assessments, identifying key business risks and threats within projects, existingprocesses, leading communication, and reporting of identified risk and risk remediation plans.- Review and evaluate existing processes and projects to benchmark security compliance with industrystandards.- Present and communicate risk status to senior management.- Continue the development and management for the TRA and advisory services programProject & Team Management 15%- Identify scope and objectives of projects, gaining an understanding of the business, and managingresources needed to conduct risk identification, risk mitigation, and risk compliance assurance activities.- Support and facilitate practice development in information security assurance and advisory engagementactivities, simultaneously overseeing and managing multiple projects.- Lead and manage outsourced commodity vendor and Third-Party Risk Management provider specific to theadvisory and assurance functionChange Management 15%- Lead and drive change across the enterprise in implementing and improving existing risk managementmethodologies to ensure stakeholder buy-in and effective integration of risk management methodologies inbusiness practice.- Integrate and align risk management methodologies to other organizational initiatives:o, Identify and mitigate barriers to success.o, Ensure risk management methodologies are adopted within existing processes and programs.o Identify change management needs in staffing, training, communications, and organizationaldesigns.o Support and coordinate security training and awareness material that identifies and communicatesinformation on security compliance trends to employees.Requirements:- 8+ years of direct experience in an information security risk management and compliance role and several years of experience within the healthcare sector-The successful candidate has lots of experience working in the healthcare industry.- Expertise in evaluating security controls, conducting risk assessments (including third-party risk management).- Knowledge and interest in technology including topics such as operating systems, mobile technologies, software development, networking, and business applications.- Understanding of internal control frameworks including COBIT, ISO 27001, NIST, ITIL, etc.- Experience in the implementation of ISO 27001 standards and certification- Knowledge of developing risk reports and control summaries.- Familiarity with the Internet of Things (IoT) devices, industrial control systems (ICS), and supervisory control and data acquisition (SCADA).- Architectural and network security experience.- Strong writing and interpersonal communication skills.- The ability to handle multiple projects simultaneously.- Exhibits intellectual curiosity and analytical thinking.- Bachelor’s degree or Diploma in IT, Business Technology Management, or any related technical field- Designation (if applicable): One or more relevant security certifications (CISA, CISSP, CPA, CISM, CRISC, GSNA, GCCC)ADVANTAGESA chance to work with one of Canada's largest health industry, and alongside top leaders in the security world.RESPONSIBILITIESInternal Quality Control, Assurance & Advisory 40%Risk Management 30%Project & Team Management 15%Change Management 15%QUALIFICATIONS- 8+ years of direct experience in an information security risk management and compliance role and several years of experience within the healthcare sector-The successful candidate has lots of experience working in the healthcare industry.- Expertise in evaluating security controls, conducting risk assessments (including third-party risk management).- Knowledge and interest in technology including topics such as operating systems, mobile technologies, software development, networking, and business applications.- Understanding of internal control frameworks including COBIT, ISO 27001, NIST, ITIL, etc.- Experience in the implementation of ISO 27001 standards and certification- Knowledge of developing risk reports and control summaries.- Familiarity with the Internet of Things (IoT) devices, industrial control systems (ICS), and supervisory control and data acquisition (SCADA).- Architectural and network security experience.- Strong writing and interpersonal communication skills.- The ability to handle multiple projects simultaneously.- Exhibits intellectual curiosity and analytical thinking.- Bachelor’s degree or Diploma in IT, Business Technology Management, or any related technical field- Designation (if applicable): One or more relevant security certifications (CISA, CISSP, CPA, CISM, CRISC, GSNA, GCCC)SUMMARYThe Assurance and Advisory Lead will execute, develop, and support the Manager ofGRC with planned Corporate projects, focusing on identifying technology and business risks, compensatingcontrols, and opportunities for improvement in internal controls.
      For immediate consideration, please send resume to Edwin.chang@randstad.caWe're looking for a Security Assurance and Advisory Lead to join our team in a permanent-full-time capacity.This role is 100% work at home.PURPOSE OF THE ROLE: ROLE: The Assurance and Advisory Lead will execute, develop, and support the Manager ofGRC with planned Corporate projects, focusing on identifying technology and business risks, compensatingcontrols, and opportunities for improvement in internal controls.Responsibility Breakdown Internal Quality Control, Assurance & Advisory 40%- Manage and oversee risk and ensure quality control procedures are executed across the enterprise.- Perform security audits and risk assessments on new or existing solutions.- Manage domain of Advisory and Assurance services and continue to improve efficiencies- Validate security controls Information Technology teams and vendors.- Identify, propose, and implement security methodologies, and tools that simplify security testing anddiscovery activities.- Support business units in identifying improvement opportunities to manage risk and apply quality controlthroughout existing applications/systems, processes, and projects.- Identify and assess technology solutions and business risks, identifying internal controls to mitigate risks,Provide subject matter expertise in selecting and tailoring existing risk management approaches,methodologies, and tools to support and secure services and products.Risk Management 30%- Assess projects and IT changes for compliance w/ security policies and regulatory landscape.- Identify areas of information security compliance vulnerability and risk within new and existing projects,processes, and technologies.- Perform strategic threat risk assessments, identifying key business risks and threats within projects, existingprocesses, leading communication, and reporting of identified risk and risk remediation plans.- Review and evaluate existing processes and projects to benchmark security compliance with industrystandards.- Present and communicate risk status to senior management.- Continue the development and management for the TRA and advisory services programProject & Team Management 15%- Identify scope and objectives of projects, gaining an understanding of the business, and managingresources needed to conduct risk identification, risk mitigation, and risk compliance assurance activities.- Support and facilitate practice development in information security assurance and advisory engagementactivities, simultaneously overseeing and managing multiple projects.- Lead and manage outsourced commodity vendor and Third-Party Risk Management provider specific to theadvisory and assurance functionChange Management 15%- Lead and drive change across the enterprise in implementing and improving existing risk managementmethodologies to ensure stakeholder buy-in and effective integration of risk management methodologies inbusiness practice.- Integrate and align risk management methodologies to other organizational initiatives:o, Identify and mitigate barriers to success.o, Ensure risk management methodologies are adopted within existing processes and programs.o Identify change management needs in staffing, training, communications, and organizationaldesigns.o Support and coordinate security training and awareness material that identifies and communicatesinformation on security compliance trends to employees.Requirements:- 8+ years of direct experience in an information security risk management and compliance role and several years of experience within the healthcare sector-The successful candidate has lots of experience working in the healthcare industry.- Expertise in evaluating security controls, conducting risk assessments (including third-party risk management).- Knowledge and interest in technology including topics such as operating systems, mobile technologies, software development, networking, and business applications.- Understanding of internal control frameworks including COBIT, ISO 27001, NIST, ITIL, etc.- Experience in the implementation of ISO 27001 standards and certification- Knowledge of developing risk reports and control summaries.- Familiarity with the Internet of Things (IoT) devices, industrial control systems (ICS), and supervisory control and data acquisition (SCADA).- Architectural and network security experience.- Strong writing and interpersonal communication skills.- The ability to handle multiple projects simultaneously.- Exhibits intellectual curiosity and analytical thinking.- Bachelor’s degree or Diploma in IT, Business Technology Management, or any related technical field- Designation (if applicable): One or more relevant security certifications (CISA, CISSP, CPA, CISM, CRISC, GSNA, GCCC)ADVANTAGESA chance to work with one of Canada's largest health industry, and alongside top leaders in the security world.RESPONSIBILITIESInternal Quality Control, Assurance & Advisory 40%Risk Management 30%Project & Team Management 15%Change Management 15%QUALIFICATIONS- 8+ years of direct experience in an information security risk management and compliance role and several years of experience within the healthcare sector-The successful candidate has lots of experience working in the healthcare industry.- Expertise in evaluating security controls, conducting risk assessments (including third-party risk management).- Knowledge and interest in technology including topics such as operating systems, mobile technologies, software development, networking, and business applications.- Understanding of internal control frameworks including COBIT, ISO 27001, NIST, ITIL, etc.- Experience in the implementation of ISO 27001 standards and certification- Knowledge of developing risk reports and control summaries.- Familiarity with the Internet of Things (IoT) devices, industrial control systems (ICS), and supervisory control and data acquisition (SCADA).- Architectural and network security experience.- Strong writing and interpersonal communication skills.- The ability to handle multiple projects simultaneously.- Exhibits intellectual curiosity and analytical thinking.- Bachelor’s degree or Diploma in IT, Business Technology Management, or any related technical field- Designation (if applicable): One or more relevant security certifications (CISA, CISSP, CPA, CISM, CRISC, GSNA, GCCC)SUMMARYThe Assurance and Advisory Lead will execute, develop, and support the Manager ofGRC with planned Corporate projects, focusing on identifying technology and business risks, compensatingcontrols, and opportunities for improvement in internal controls.
      • Toronto, Ontario
      • Permanent
      Our client, located in Toronto is looking for a Cyber Security Specialist to join them on a full time - permanent basis.This role implements processes, systems or projects that contribute to the confidentiality, integrity, and availability of our client data, information technology and operational technology assets. S/he is responsible for identifying, implementing and maintaining security controls in accordance with our client’s policies and standards in addition to discreetly monitoring, detecting, and responding to cyber incidents.KEY RESPONSIBILITIES:Identifies, develops, implements cyber security controls to support cyber security operations. Proactively identifies problems and opportunities for improvement of cyber security systems or processes, including architecture advancement, threat and risk migration, service level improvements, identity and access management improvements and customer demand management.Provides cyber security services and solutions to support IT&S project delivery. As a SME, provide advice on tailored solutions for security controls, measures for project delivery, security awareness and training, security protocols, risks for a project from a security standpoint.Troubleshoots and maintains IT assets (i.e. hardware, software, infrastructure like mobile devices, servers, computers, networks etc.) to improve reliability, response to incidents and issue resolution, life cycle management/refresh.Identifies opportunities and improves productivity of cybersecurity services, which may include re-engineeringcurrent processes and finding automation and efficiency.Researches and identifies industry trends (relative to scope of responsibility), leveraging best practices to improve and align cybersecurity servicesCOMPETENCIES:Post-secondary technical degree (e.g. Computer Engineering or Computer Science) or diploma with a suitable combination of education and experience maybe consideredRelevant certifications (CISSP, CISA, CISM, GCIH, OCSP, CCIE-Security) 5 years of experience in Cyber Security Graduate degree (MBA, MSc, PhD) preferredExtensive knowledge and expertise with the following technologies: Firewalls, DNS Firewalls, Web ApplicationFirewalls (WAF), Secure Email Gateways, Intrusion Detection and Prevention Systems (IDS/IPS), Security Incidentand Event Management Systems (SIEM), Threat Intelligence, Data Loss Prevention (DLP), Endpoint ProtectionPlatforms (EPP) and Endpoint Detection and Response (EDR), ForensicsDemonstrated experience in management and improvement of IT security technologies and process, security architecture, and cyber incident responseExperience with NIST Cybersecurity Framework and Ontario Cybersecurity FrameworkUtility Experience is an assetKnowledge of Information Technology Infrastructure Library (ITIL)Strong influencing and negotiating skillsSuperior verbal and written communication skills; ability to effectively communicate ideas and influence change with people at all levels of the organizationStrong stakeholder engagement and project management skillsStrong problem-solving, decision-making and analytical skillsStrong organizational and me management skills, with the ability to multi-task and meet deadlines.Strong strategic business focus and commitment to partnering with business units to enable them to meet their objectives.RESPONSIBILITIESQUALIFICATIONS
      Our client, located in Toronto is looking for a Cyber Security Specialist to join them on a full time - permanent basis.This role implements processes, systems or projects that contribute to the confidentiality, integrity, and availability of our client data, information technology and operational technology assets. S/he is responsible for identifying, implementing and maintaining security controls in accordance with our client’s policies and standards in addition to discreetly monitoring, detecting, and responding to cyber incidents.KEY RESPONSIBILITIES:Identifies, develops, implements cyber security controls to support cyber security operations. Proactively identifies problems and opportunities for improvement of cyber security systems or processes, including architecture advancement, threat and risk migration, service level improvements, identity and access management improvements and customer demand management.Provides cyber security services and solutions to support IT&S project delivery. As a SME, provide advice on tailored solutions for security controls, measures for project delivery, security awareness and training, security protocols, risks for a project from a security standpoint.Troubleshoots and maintains IT assets (i.e. hardware, software, infrastructure like mobile devices, servers, computers, networks etc.) to improve reliability, response to incidents and issue resolution, life cycle management/refresh.Identifies opportunities and improves productivity of cybersecurity services, which may include re-engineeringcurrent processes and finding automation and efficiency.Researches and identifies industry trends (relative to scope of responsibility), leveraging best practices to improve and align cybersecurity servicesCOMPETENCIES:Post-secondary technical degree (e.g. Computer Engineering or Computer Science) or diploma with a suitable combination of education and experience maybe consideredRelevant certifications (CISSP, CISA, CISM, GCIH, OCSP, CCIE-Security) 5 years of experience in Cyber Security Graduate degree (MBA, MSc, PhD) preferredExtensive knowledge and expertise with the following technologies: Firewalls, DNS Firewalls, Web ApplicationFirewalls (WAF), Secure Email Gateways, Intrusion Detection and Prevention Systems (IDS/IPS), Security Incidentand Event Management Systems (SIEM), Threat Intelligence, Data Loss Prevention (DLP), Endpoint ProtectionPlatforms (EPP) and Endpoint Detection and Response (EDR), ForensicsDemonstrated experience in management and improvement of IT security technologies and process, security architecture, and cyber incident responseExperience with NIST Cybersecurity Framework and Ontario Cybersecurity FrameworkUtility Experience is an assetKnowledge of Information Technology Infrastructure Library (ITIL)Strong influencing and negotiating skillsSuperior verbal and written communication skills; ability to effectively communicate ideas and influence change with people at all levels of the organizationStrong stakeholder engagement and project management skillsStrong problem-solving, decision-making and analytical skillsStrong organizational and me management skills, with the ability to multi-task and meet deadlines.Strong strategic business focus and commitment to partnering with business units to enable them to meet their objectives.RESPONSIBILITIESQUALIFICATIONS
      • Montreal, Québec
      • Contract
      Contract CYBERSECURITY ANALYSTBILINGUALNeeds to be able to be in Montreal officeThe Information Security Analyst will be responsible for evaluating application environments to ensure they are being designed and deployed in compliance with InfoSec standards, policies and US regulatory requirements. This includes following up on security assessments, partnering with Cyber security team and business owner for systems risk analysis, reporting security findings and recommending corrective actions for the relevant operational teams. ESSENTIAL DUTIES AND JOB RESPONSIBILITIES: The successful individual will leverage their proficiency in Application Security to : • Work with developers, architects, project leads/managers, business analysts, and others, in determining security requirements for projects and ensures that these requirements are met as part of the software development lifecycle.• Work alongside IT partners and act as the "go to" individual for all security questions, concerns, and guidance for a specific IT entity.• Partner with Cyber security team in developing and presenting training material on security-related topics, and develop application security-related development standards and controls alongside other governance and architecture teams.• Serve as a Subject Matter Expert (SME) in the field of application security for a specific IT entity.• Conducting dynamic & Static code reviews.• Act to integrate application/software security tools within existing development processes.• Assist with the planning and execution of application penetration tests.• Identify and help resolve false positive findings in security assessment results.• Generate reports on assessment findings and help guide and track remediation tasks.• Assist with formulation and distribution of security metrics that demonstrate assessment coverage and remediation effectiveness.Profile The accomplished individual will possess :• Solid understanding of secure coding principles (OWASP Top 10)• 2-4 years experience with Application Security Tools like Qualys, IBM AppScan, Weblnspect, Veracode, Checkmarx, etc.• Strong familiarity with widely used application development tools & languages (ex..Net, JAVA, XCode, etc.)• Strong familiarity with data manipulation (SQL, Excel)• Strong critical thinking and problem solving skills, ability to prioritize work• Excellent written and oral communications skills• Ability to understand business needs and commitment to delivering high-quality, prompt, and efficient service to the businessEDUCATION & EXPERIENCE REQUIREMENTS• BS in Computer Science, Information Security, or a related field• 2-4 years of past experience in information security, especially in an analyst role• Industry Certifications such as CISSP,CISM, CISA, CEH are considered a plusRESPONSIBILITIESQUALIFICATIONS
      Contract CYBERSECURITY ANALYSTBILINGUALNeeds to be able to be in Montreal officeThe Information Security Analyst will be responsible for evaluating application environments to ensure they are being designed and deployed in compliance with InfoSec standards, policies and US regulatory requirements. This includes following up on security assessments, partnering with Cyber security team and business owner for systems risk analysis, reporting security findings and recommending corrective actions for the relevant operational teams. ESSENTIAL DUTIES AND JOB RESPONSIBILITIES: The successful individual will leverage their proficiency in Application Security to : • Work with developers, architects, project leads/managers, business analysts, and others, in determining security requirements for projects and ensures that these requirements are met as part of the software development lifecycle.• Work alongside IT partners and act as the "go to" individual for all security questions, concerns, and guidance for a specific IT entity.• Partner with Cyber security team in developing and presenting training material on security-related topics, and develop application security-related development standards and controls alongside other governance and architecture teams.• Serve as a Subject Matter Expert (SME) in the field of application security for a specific IT entity.• Conducting dynamic & Static code reviews.• Act to integrate application/software security tools within existing development processes.• Assist with the planning and execution of application penetration tests.• Identify and help resolve false positive findings in security assessment results.• Generate reports on assessment findings and help guide and track remediation tasks.• Assist with formulation and distribution of security metrics that demonstrate assessment coverage and remediation effectiveness.Profile The accomplished individual will possess :• Solid understanding of secure coding principles (OWASP Top 10)• 2-4 years experience with Application Security Tools like Qualys, IBM AppScan, Weblnspect, Veracode, Checkmarx, etc.• Strong familiarity with widely used application development tools & languages (ex..Net, JAVA, XCode, etc.)• Strong familiarity with data manipulation (SQL, Excel)• Strong critical thinking and problem solving skills, ability to prioritize work• Excellent written and oral communications skills• Ability to understand business needs and commitment to delivering high-quality, prompt, and efficient service to the businessEDUCATION & EXPERIENCE REQUIREMENTS• BS in Computer Science, Information Security, or a related field• 2-4 years of past experience in information security, especially in an analyst role• Industry Certifications such as CISSP,CISM, CISA, CEH are considered a plusRESPONSIBILITIESQUALIFICATIONS
      • Quebec, Québec
      • Contract
      Randstad Technologies est présentement à la recherche d'un analyste en sécurité GIA pour combler un poste contractuel dans le domaine des assurances.Plus précisément le candidat :- Contribue à l’évolution des grands processus de la GIA : arrivées, départs, transferts etc.;- Produit et analyse les indicateurs de performance clé des processus et assure un cycle d’amélioration continue des processus opérationnels de l’équipe en intervenant comme coach auprès des équipes opérationnelles;- Développe des pratiques d’analyse basées sur les données et métadonnées à notre disposition afin de maintenir l’intégrité et l’efficacité des contrôles de sécurité de la GIA;- Agit en tant qu’expert conseil auprès des projets pour assurer des modèles d’accès respectant les principes fondamentaux de la GIA permettant de réduire la surface d’attaque et la compromission des données.- Agit en tant qu’expert pour la gestion, la maintenance et le développement des pratiques GIA, ainsi qu’assurer leur évolution basée sur les requis d’affaires et avancements technologiques du domaine; - Adapte les processus et outils d’authentification, de gestion d’identités et d’accès aux plateformes cloud;- Participe aux positionnements et initiatives visant à faire de l’identité des autorisations et de l’authentification un catalyseur pour faciliter la croissance des affaires et l’expérience client;- Favorise une approche libre-service pour les utilisateurs, équipes TI, clients et partenaires en automatisant les traitements et intégrations dans les outils et plateformes appropriées selon les standards corporatifs;- Veille à ce que les contrôles GIA requis soient implantés, testés, efficaces, et en conformité avec les obligations légales et règlementaires;- Participe activement aux activités d’intégration des différents systèmes et applications aux plateformes GIA;- Contribuer aux initiative d'intégration de la GIA des plateformes et applications TI lors des acquisitions." Exigences de l’emploi :- Baccalauréat et un minimum de 10 ans d’expérience en technologies de l’information;- Posséder une connaissance fonctionnelle de l’anglais;- Avoir contribué à la mise en place de plateformes et processus de GIA : Identification, Autorisations et Authentification;- Être familier avec les méthodes et approches standards du domaine de la sécurité de l’information;- Posséder des connaissances de base en télécommunication, pare-feu, fonctions du SOC, et une excellente connaissance des environnements Microsoft, AD, LDAP, Azure, AWS, GPC, MS 365;- Être à l'aise en manipulation et analyse de données (excel, SQL, powerBI etc);- Posséder des certifications (CISSP, CCSK, GIAC, CISA…) en sécurité informatique, est un atout.Si vous avez un intérêt ou vous voulez en savoir plus, je vous invite à postuler! Vous pouvez également nous contacter directement à notre bureau au 418-525-8163, par courriel au genevieve.moreau@randstad.ca ou visiter toutes nos offres d'emploi en TI sur notre site web suivant: https://www.randstad.ca/fr/jobs/s-technologies/quebec/quebec/Au plaisir de vous connaître!RESPONSIBILITIESQUALIFICATIONS
      Randstad Technologies est présentement à la recherche d'un analyste en sécurité GIA pour combler un poste contractuel dans le domaine des assurances.Plus précisément le candidat :- Contribue à l’évolution des grands processus de la GIA : arrivées, départs, transferts etc.;- Produit et analyse les indicateurs de performance clé des processus et assure un cycle d’amélioration continue des processus opérationnels de l’équipe en intervenant comme coach auprès des équipes opérationnelles;- Développe des pratiques d’analyse basées sur les données et métadonnées à notre disposition afin de maintenir l’intégrité et l’efficacité des contrôles de sécurité de la GIA;- Agit en tant qu’expert conseil auprès des projets pour assurer des modèles d’accès respectant les principes fondamentaux de la GIA permettant de réduire la surface d’attaque et la compromission des données.- Agit en tant qu’expert pour la gestion, la maintenance et le développement des pratiques GIA, ainsi qu’assurer leur évolution basée sur les requis d’affaires et avancements technologiques du domaine; - Adapte les processus et outils d’authentification, de gestion d’identités et d’accès aux plateformes cloud;- Participe aux positionnements et initiatives visant à faire de l’identité des autorisations et de l’authentification un catalyseur pour faciliter la croissance des affaires et l’expérience client;- Favorise une approche libre-service pour les utilisateurs, équipes TI, clients et partenaires en automatisant les traitements et intégrations dans les outils et plateformes appropriées selon les standards corporatifs;- Veille à ce que les contrôles GIA requis soient implantés, testés, efficaces, et en conformité avec les obligations légales et règlementaires;- Participe activement aux activités d’intégration des différents systèmes et applications aux plateformes GIA;- Contribuer aux initiative d'intégration de la GIA des plateformes et applications TI lors des acquisitions." Exigences de l’emploi :- Baccalauréat et un minimum de 10 ans d’expérience en technologies de l’information;- Posséder une connaissance fonctionnelle de l’anglais;- Avoir contribué à la mise en place de plateformes et processus de GIA : Identification, Autorisations et Authentification;- Être familier avec les méthodes et approches standards du domaine de la sécurité de l’information;- Posséder des connaissances de base en télécommunication, pare-feu, fonctions du SOC, et une excellente connaissance des environnements Microsoft, AD, LDAP, Azure, AWS, GPC, MS 365;- Être à l'aise en manipulation et analyse de données (excel, SQL, powerBI etc);- Posséder des certifications (CISSP, CCSK, GIAC, CISA…) en sécurité informatique, est un atout.Si vous avez un intérêt ou vous voulez en savoir plus, je vous invite à postuler! Vous pouvez également nous contacter directement à notre bureau au 418-525-8163, par courriel au genevieve.moreau@randstad.ca ou visiter toutes nos offres d'emploi en TI sur notre site web suivant: https://www.randstad.ca/fr/jobs/s-technologies/quebec/quebec/Au plaisir de vous connaître!RESPONSIBILITIESQUALIFICATIONS

    thank you for subscribing to your personalised job alerts.

    It looks like you want to switch your language. This will reset your filters on your current job search.