Senior Information Security Specialist (#14309540)

SPECIAL REFERRAL BONUS $2000
Work type:
Flexible (Office/Remote)
Technical Level:
Senior
Job Category:
IT
Project:
Canada’s leading online broker

About the client:

The client is home to a unique environment, where our culture thrives and, most importantly, we get stuff done! It is continuing with its digital transformation initiative, and our infrastructure footprint is growing beyond our data centers and into the Google Cloud Platform, on an exciting strategy that is driven by business value. Join us to help leverage the data we have, as we solve exciting challenges such as building out new models, algorithms and solving complex business problems to grow and deliver customer-centric solutions in a multi-product/multi-channel financial services environment.

Responsibilities:

  • Senior Information Security Specialist will be primarily involved in Security information and event management including owning relationships with SEIM/SOC managed service providers, testing and fine-tuning SIEM use cases, triaging and investigating alerts, incident response, metrics and reporting
  • You will be required to be well-versed in all aspects of cyber security with focus on security logging and monitoring, events investigations and incident response
  • Review IR plan and procedures, IR playbooks, prepare and facilitate table top exercises
  • Execute incident / breach scenario analysis and preparation, IR. BCP & DR testing
  • Demonstrate ability to find and then surface problems and opportunities with the team
  • Analyze key data issues, patterns, and trends to identify implications
  • Execute procedures, perform detailed data analysis, reach conclusions, document results, and suggest ideas for efficiencies, identify opportunities to reduce risk and documents remediation options regarding acceptance or mitigation of risk scenarios
  • Recognize relevant issues and assess the risks associated, and facilitate remediation of identified vulnerabilities across the enterprise, perform assessments of the IT security/risk posture within the IT network, systems and software applications, in addition to assessments within the Vendor Management Program
  • Take full responsibility for tasks including constantly reviewing your own work to identify and improve your own approach for producing quality work products. Complete work in a timely manner and take responsibility for all work outputs
  • Develop rapport with others by demonstrating an understanding of their concerns, needs and issues and focus on developing an internal network of relationships that can provide advice and support
  • Provide feedback to the broader IT team about new or emerging technologies and threats and relevant clients. Seek, develop, and present ideas to the team
  • Utilize technology and tools to continually learn and innovate, share knowledge with team members and enhance security posture

Requirements:

  • Bachelor’s Degree, Information Systems, Computer Science, Information Security or related field required
  •  7-10 years IT security or information security experience with a proven ability to engage with Senior Management and auditors
  • 4+ years experience in administering IT security controls in an organization. Prior experience working within a financial service organization preferred
  • Certified Information Systems Security Professional (CISSP), or related certification
  • Knowledge of technical infrastructure, networks, databases and systems in relation to IT Security and IT Risk
  • Must possess capabilities in the following: security logging and monitoring, SIEM solutions, security events investigations and incident response
  • Previous experience in implementing SIEM/SOC, Incident/Breach scenario analysis &amp, preparation, IR, BCP & DRP testing, table top exercises, Threat collection, Analysis &amp
  • Management and Situational Awareness
  • Experience with the security logging and monitoring in the cloud (Google cloud platform is preferred)
  •  Experience in defining metrics and KPIs, implementing cybersecurity/risk dashboards
  • Strong written and verbal communication, presentation and technical writing skills, coupled with a strong interest in further developing Cyber Security skills
  • Ability and comfort level researching current and emerging issues, including regulations, industry practices, and new technologies
  • Excellent teamwork skills
  • Multi-task with minimum supervision, uphold commitments made
  • Self-learner capable of independent study of new concepts and tools

We offer:

  • Flexible working hours
  • A competitive salary and good compensation package
  • Best hardware
  • A masseur and a corporate doctor
  • Healthcare & sport benefits
  • An inspiring, comfy, clean and safe office

Professional growth:

  • Challenging tasks and innovative projects
  • Meetups and events for professional development
  • An individual development plan
  • Mentorship program

Fun:

  • Corporate events and outstanding parties
  • Exciting team buildings
  • Memorable anniversary presents
  • A fun zone where you can play video games, foosball, ping pong, and more