Lead Information Security Specialist
Job Overview
Job title: Lead Information Security Specialist
Job description: As a Lead Information Security Specialist, your role will be to contribute to developing and maintaining the organization’s information security program by developing and maintaining a security policies and standards, performing risk assessments, and consulting with business owners on the implementation of information security throughout the SITA business units.
What you will do:
- Develop and maintain enterprise Information Security Policies and Standards.
- Identify requirements for enterprise security solutions
- Work with appropriate teams and organizations within the organization to support the adoption of security processes and procedures (i.e. role assignment matrices, process/procedural controls).
- Maintain a process for managing risk within the supply chain, by performing risk assessments on suppliers
- Perform IT risk assessments and compliance reviews
- Develop a security compliance monitoring regime for SITA by establishing security metrics and KPIs
Qualifications
Who you are:
- Minimum 5 years of professional experience, with 3 years of experience in information security role
- Experience in the development of information security and data protection policies and standards
- Experience in maintaining and monitoring compliance to information security process and procedures
- Experience implementing strategic information security programs within large organizations, ISO 27001
- Working knowledge of cloud security architectures, strategies and standards
- Experience designing and implementing security solutions in a multi-tenant ISP Datacenter environment and/or cloud computing environment
- Knowledge and understanding across a wide breadth of technology domains, with the ability to quickly assimilate with team members of various disciplines
- Strong analytical skills with the ability to explain security risks and relate them to appropriate security controls
- Ability to interact with personnel at all levels and across all business units and organizations, and to comprehend complex business initiatives
- Ability to work independently and manage and prioritize workload effectively
- Must be self-motivated and have the ability to work with minimal supervision.
- Excellent organization and project management skills
- Excellent written and verbal communication skills in English
- Expert knowledge of well-known information security standards (ISO 27001, PCI, NIST)
- Bachelor’s degree in computer science, information systems or related field, or equivalent experience required
- One or more of the following certifications:
1. Certified Information Systems Security professional (CISSP)
2. Certified Information System Auditor (CISA)
3. Certified in Risk and Information Systems Controls (CRISC)
4. ISO 27K Lead Implementer
Company: SITA
Expected salary:
Location: Montreal, QC – London
Job date: Fri, 20 Aug 2021 22:21:02 GMT
Job Source: Careerjet.ca