This job board retrieves part of its jobs from: Sherbrooke Jobs | Laval Jobs | Work From Home

Top job offers in Montreal & Region

To post a job, login or create an account |  Post a Job

  English jobs in montreal  

Bringing the best, highest paying job offers near you

previous arrow
next arrow
Slider

Myticas Consulting ULC: Bhjob15656_15884 – Senior Security Analyst

Myticas Consulting ULC

This is a Contract position in Montreal, QC posted March 16, 2021.

The recruitment team at Myticas Consulting is looking for an experienced Security Analyst who would be interested in a contract opportunity offered within the Ottawa, ON region.The Senior Security Analyst shall have a proven record of accomplishment in successfully delivering SaaS application security, including a particular focus on IAM business needs assessments, solutions assessment, procurement and deployment assistance.

The Senior Security Analyst will deliver a comprehensive scope of security consultative services and develop an extensive set of deliverables throughout the lifecycle of the project and overall program.The program has the following high-level IAM goals:Address long-standing identity and access related pain points and issues; Provide better user experience; Support the Learner Driven Plan, a highly strategic direction for the College; Support Collegedigital strategic direction; Support strategic ERP direction (e.G.

SIS); Improve security; andIncrease efficiencies and reduce costs.Key Responsibilities:Acts as a primary member of the SIS and sub-projects senior consulting teams (along with the Senior Project Manager, Business Analyst, System Architect, and others) as the primary security specialist covering all SIS projects (i.E.

SIS, IAM, Data Governance); Interfaces closely with ITS Cyber Security Unit (CSU) team members to understand AC security philosophy, organizational culture, plans, programs, risks, operations, policy and process; Reviews existing College security policies and standards for understanding and applicability; Reviews existing SIS, IAM and other related systems, data, and integrations from a security perspective; Works closely with the IAM consulting firm and other team members to develop detailed security requirements, using standardized security frameworks (e.G.

NIST Cyber Security Framework, NIST Privacy Framework and ISO 27001/2); Advises and guides on a wide variety of security and data privacy matters as they arise, including but not limited to, the following:Project personnel, physical and logical security controls required to protect the integrityof the program, project and entire procurement process; Data governanceand sensitivity assessment; System integration security requirements (e.G.

API Security); Data sovereignty protection; High availability considerations; Software as a Service (SaaS) security considerations; andDisaster recovery planning.Researches and writes the following, but not limited to, formal deliverables:Privacy Impact Assessment (PIA); Threat and RiskAssessment (TRA); Vendor ContractSecurity Requirements (with assistance provided by the CSU); Detailed Functional Security Requirements (assisting the IAM consulting firm); Security Requirements Traceability (assisting the IAM consulting firm); IAM system-level policy, standards, guidelines and procedures; Internal Controls (e.G.

financial integrity controls) Framework; System SecurityMonitoring Controls (e.G.

SIEM); andSystem Security Operations.Identifies high risks and gaps and then strives to mediate by working constructively with the rest of the IAM, SIS and CSU teams; Interfaces closely with SIS team members and other related IT/IT Security projects; andProvides periodic progress and risk reports to the Senior Manager, Information Security and Data Privacy, and to the Senior IAM Project Manager.Qualifications:Senior Security Consultant, minimum of eight (8) years of information security and cyber security experience, with particular proven expertise/experience in IAM systems and their deployment; Three-year diploma or four-year degree in Information Technology with a focus on Information Security, or equivalent, or equivalent experience; CISSP (preferred), CCSK, CCSP and CIAM certifications considered a definite asset; Experience withwriting security test cases, user stories, maintaining and updating those based on requirements and use cases; Ability to collaborate with many different teams including supporting cross functional teams and/or working with agile teams in sprints; Higher education experience within a College or University setting is considered a definite asset; A personable team player who gets along well with management, employees, contractors and other consultants; Proven experience engaging stakeholders from different areas of the business, to uncover and drive out detailed security requirements; Excellent communicator, both orally and in writing and ability to describe problems to others, to listen and to manage and influence stakeholders; Proven experience in using and applying NIST Cyber Security Framework and ISO 27001 security controls; Reliable and low maintenance, comes to work on time, manages time well, meets deadlines consistently, is proactive, a self-starter, reports upwards well and requires minimal supervision; Strong computerliteracy (Microsoft Word, Excel, PowerPoint, SharePoint, Teams, Visio); Strong personalsecurity habits and process; andMinimum, valid, enhanced reliability security clearance or favourable police records name check required.