IT Security Jobs

IT Security Specialist: Infrastructure Security

Spécialiste de la sécurité TI: Sécurité des infrastructures Lieu : Montréal, Place Bonaventure (IBM Centre d’Innovation client Montréal) Statut : Permanent, temps plein Années d’expérience minimum : + 4 années d’expérience Éducation: Licence en informatique / technologie de l’information de préférence Rôle : vous appliquerez vos connaissances et compétences en matière de cybersécurité pour défendre nos […]

IT Security / Business Continuity & DR Specialist

IT Security / Business Continuity & Disaster Recovery Specialist Start ASAP End Date: March 31, 2021 highly possible extension Work Location: entirely remote now, and onsite after the Covid 19 situation with partial remote Secret Level II security clearance required Our client, a global leading IT company, is looking for an IT Security / Business […]

Spécialiste en sécurité TI: Sécurité Endpoint

Spécialiste en sécurité TI: Sécurité Endpoint (Travail à domicile) (An English message will follow) Qui nous sommes CIC Montréal est un Centre d’innovation client d’IBM, exploité par LGS, une filiale à part entière d’IBM. Le centreoffre des services en développement et en support applicatif aux organisations privées et publiques canadiennes. Axé sur l’innovation, CIC Montréal […]

Spécialiste en sécurité TI: Sécurité PKI-KLM

Spécialiste en sécurité TI: Sécurité PKI-KLM (Travail à domicile) (An English message will follow) Qui nous sommes CIC Montréal est un Centre d’innovation client d’IBM, exploité par LGS, une filiale à part entière d’IBM. Le centreoffre des services en développement et en support applicatif aux organisations privées et publiques canadiennes. Axé sur l’innovation, CIC Montréal […]

IT Security Officer (IAM)

High Profile mid-sized Asset Management Company seeks IT Security Officer with a strong IAM background. This is a direct hire full-time role with a company that offers competitive compensation in addition to a phenomenal benefits package. Working in the IT Group (NOT the Information Security Group) you will be responsible for creating, reactivating, amending, and deleting user IDs and mailboxes for all employees; handling all activities related to the Identity and Access Management (IAM) process. This will include: Provisioning, de-provisioning of user entitlements Maintenance of IAM technology infrastructure, providing guidance for the IAM architecture in order to align IAM initiatives to business processes Managing application and user-store integration Enforce policies and standards Monitor and maintain controls for regulatory compliance including: Remote Access users Unauthorized access users to the systems Super Users activities in the systems Performing SQL database monitoring activities including performing entitlement reviews on SQL databases, monitoring various logs and/or other sources Initiating and managing periodic entitlement certification reviews Act as a liaison for controlling all systems User ID Management that reside with outside vendors Define user roles Define access controls necessary for application usage and data access Decide how best to use the IAM infrastructure tools for overall business success Requirements include: Strong understanding of multiple systems platforms (Windows Active Directory, LINUX, UNIX, AS400…) Firm understanding of Cyber Security initiatives, Risk Management, Privilege Access Management, and how they apply to access provisioning IAM experience with solutions like: SailPoint, NETIQ, Hitachi ID/HIPAM Identity Management – provisioning and workflow processes Access Management – authentication and entitlements Data security and privacy – database access Experience with LDAP, Role Base Access Controls, implementing IDM solutions and Identity Management Provisioning IT experience including IT Security Administration with ability to provide complex problem analysis Regulatory Compliance knowledge (SOX, FFIEC, PCI,…) with understanding of how to balance customer service with regulatory requirements Completed Bachelor’s Degree in Computer Science or related course of study Security related certifications preferred (ITIL, CISSP, CISA or CISM,…)

Conseiller Gouvernance de Sécurité Informatique

Conseiller Gouvernance de Sécurité Informatique Lieu de travail: Québec (éloigné) Début: ASAP Durée du contrat: extension possible de 12 mois Langue: le français est un must Notre client, un leader mondial de l’informatique, recherche un conseiller gouvernance de sécurité Informatique. Portée du projet Offrir le soutien et le conseil au projet CASA en matière de […]

Governance Risk and Compliance Senior Consultant

Location: Remote  75 % of travel required to client side 

Description:

Client Security Advisory Services is seeking a Governance, Risk and Compliance (GRC) consultant to work on GRC consulting projects for commercial customers.
We are seeking an innovative and motivated consultant who under general direction with a high level of autonomy, uses extensive knowledge and skills obtained through education and experience to perform the necessary assessment, analysis and consulting tasks related to specific regulations, industry standards and/or a customer’s unique requirements. 
Client Security Advisory Services aspires to be a strategic partner in helping our more than 1,000 business and government clients in 90 countries better serve their customers and citizens.
We work to overcome their IT challenges, collaborating to make technology work for them, anytime and anywhere.
To make it matter, so they can achieve more.
With a dedication to quality and innovation, we deliver IT consulting, systems integration, and applications development.
Enterprises can also outsource IT functions and management to us in areas like infrastructure and business processes.
These efforts enable organizations to take the best advantage of cloud computing, information optimization and enhanced security measures to achieve their goals. 
 

Responsibilities:

Analyze complex, enterprise environments from an information security perspective.
Develop comprehensive information security documentation Policies, Standards, Guidelines, Procedures Conduct risk assessments of business processes and supporting environments; including the determination of risk evaluating the existence of controls that help reduce risk determine residual risk and risk treatment plans.
Evaluate organizations against multiple best practice control frameworks, vertical specific requirements, or federal regulations ISO 27001/2 HIPAA COBIT NERC/CIP FISMA/NIST FFIEC PCI/DSS.
7+ years of experience with Governance Risk and Compliance within Information Security Bachelors’ degree in related field preferred Extensive experience with risk assessment frameworks/methodologies such as OCTAVE, CRAMM, NIST SP 800-37, ISAM, ISRM, ISO 27000, COBIT Deep understanding of IT security impacted regulations and/or standards such as HIPAA/HITECH, PCI, Sarbanes-Oxley, GLBA, etc.
Expert level experience with GRC platforms such as RSA Archer, Paisley, Lockpath, Modulo. Expertise in IT Governance frameworks such as COBIT, ISO 20000, ITIL.  
 

One or more of the following:

Key industry certifications such as CISSP, ISSAP, CISM, CRISC, CISA, SANS, etc.
Experience with GDPR a significant plus.
Demonstrable experience in “soft” consultancy skills (ie, deliverable generation, communications, executive level presentation development/delivery).
Good analytical skills.
Understanding of basic financial analysis in support of providing cost estimations in delivery of large-scale security programs and associated activities.
Ability to develop new portfolio solutions from concept to market (methodology development, marketing, sales/internal training, etc).
Self-motivated individual who is keen to take ownership of allocated tasks and drive them to completion.
Appreciation of trends in IT security and IT risk management.
Experience and knowledge of security management frameworks in multiple industries like finance, pharma, manufacturing, travel/transportation, retail or insurance.
Information Security and regulatory compliance consultancy experience.
Ability to interact with customer risk and security stakeholders at all levels.

We're sorry, there are currently no jobs in this category.