Information Security Analyst

We are looking for an Information Security Analyst! Reach out if you are interested and feel free to refer friends/colleagues!

Type of Employment: Contract
Title: Information Security Analyst
Term: 6-month Contract
Location: Remote
Job ID number: C1086

Brief description of duties:

• The role also supports the delivery of analysis-based cyber security services to our internal clients across Canada including threat intelligence and vulnerability assessments.This is an intermediate level role.
  • Focused on providing information security consulting to the business and IT clients
  • Accountable for information security risk assessments
  • Leads security awareness activities
  • Conducts threat analysis, including researching evolving threats and providing recommendations
  • Develops and conducts vulnerability assessments, and documenting findings in reports
  • Conducting penetration tests is a nice to have
  • Strong desire to work collaboratively in an unconventional and non/linear way to problem solve unique solutions
  • Be customer focused and delivery oriented to drive change in ambiguous situations
  • Work proactively with internal clients to understand their needs and deliver creative solutions.
  • Strive for continuous learning and can influence others

MUST haves:

• Bachelor degree from an accredited college or university or equivalent experience.
• Minimum five years’ experience as an information technology professional with at least two of those in information security demonstrating the accountabilities as listed above.
• Holds at least one information security certification or actively working towards at least one security certification (e.g. CISSP, CISM).
• Strong working knowledge of threat risk assessment methodologies NIST, ISO, IRAM2, etc.
• Strong technical background with exposure to multiple aspects of information technology, networks, server, application dev, architecture, storage, cloud etc.
• Excellent communicator including demonstrated presentation and negotiation skills.
• Experience with security solutions for multi-tier cloud based application on Microsoft Azure.
• Experience with DevSecOps and/or Agile would be an asset.
• Experience interpreting and consulting around meeting the requirements of the Information Security Policies and Standards for a large organization.
• Strong knowledge of IT control frameworks such as COBIT, ISO 27001, and the NIST cyber security framework.
• Working knowledge of IT Audit processes, including design of control test procedures.
• Demonstrated ability to foster relationships and build trust.
• Ability to work independently and deliver on commitments.
• Strong analytical and problem-solving skills.
• Experience in risk assessment methodologies.