Senior Manager, Information Systems and Security Audit, Finance
Job Overview
Job title: Senior Manager, Information Systems and Security Audit, Finance
Job description: Req Id: 289852
At Bell, we do more than build world-class networks, develop innovative services and create original multiplatform media content – we advance how Canadians connect with each other and the world.
If you’re ready to bring game-changing ideas to life and join a community that values, professional growth and employee wellness, we want you on the Bell team.
The Finance Team manages the performance and risk profile of Bell, ensuring the needs of customers, investors and employees are balanced with long-term business success. We work closely with internal and external stakeholders to develop and execute plans that help the company achieve its strategic objectives and ensure financial sustainability.
Position Description:
Bell Internal Audit is an stand-alone appraisal function within Bell. Its purpose is to provide the Audit Committee of the Board of Directors and executive management with impartial evaluations of the control environment in managing risks facing the organization including Technology and Cybersecurity risks.
As a core team member of the Internal Audit team that is tasked with Cybersecurity, Network and IT and Regulatory Compliance risks, the Senior Manager, Information Systems and Security Audit, will work alongside a team of accomplished Cybersecurity and Technology professionals and auditors in evaluating ongoing technology and security risks and as well as risks arising from the adaptation of emerging technology.
Job Duties/Accountabilities:
- Lead or partner with other team members to plan and execute audit assignments with a particular focus on Cybersecurity, Network, Information Technology as well as Regulatory Compliance
- Design and perform audit procedures to assess the adequacy and effectiveness of Cybersecurity and technology controls through walkthroughs and review of technology design, implementation, configuration and ongoing operation.
- Design and perform technical tests (such as vulnerability assessments, code reviews, penetration tests) to identify vulnerabilities associated with network, infrastructure, software (O/S, applications, web applications, mobile applications, firmware, etc.) and hardware
- Document findings in a structured audit reports to brief findings to executive management
- Advise senior management on ongoing and emerging Cybersecurity, Regulatory and Technology risks
.
Critical qualifications/Competencies:
- Minimum 10 Years of experience in Cybersecurity
- Hands-on knowledge of networking, coding, web development, penetration testing and/or code review
- Broad and deep knowledge of the general security threat landscape and regulatory requirements
- Fast learner with a curious and exploratory mindset and a strong desire to the continuous pursuit of broad and deep technical and business knowledge
- Creative, innovative, analytical and ability to question the status quo in a constructive manner.
- Strong verbal and written communication skill, facilitation and negotiation skills
- Ability to maintain information in confidence and exercise good judgment
Preferred Qualifications/Competencies:
- University Degrees in Engineering, Computer Science, Mathematics or Statistics
- Security certifications and designations such as CISSP, CISM, CompTIA Security, CEH, GSEC, OSCP, OSCE, GWAPT, GMOB, GXPN, etc.
- Knowledge of OWASP, ISO, NIST, ISF, SANS or other security-related frameworks
- Experience in conducting vulnerability identification, bug bounty hunting, or security incident response.
- Knowledge in data analytics
#indeed
#cybersec
#LI-JW1
Bilingualism is an asset (English and French); adequate knowledge of French is required for positions in Quebec.
Additional Information:
Position Type: Management
Job Status: Regular – Full Time
Job Location: Canada : Ontario : Mississauga
Application Deadline: 05/28/2021
Please apply directly online to be considered for this role. Applications through email will not be accepted.
At Bell, we don’t just accept difference – we celebrate it. We’re committed to fostering an inclusive, equitable, and accessible workplace where every team member feels valued, respected, and supported, and has the opportunity to reach their full potential. We welcome and encourage applications from people with disabilities.
Accommodations are available on request for candidates taking part in all aspects of the selection process. For a confidential inquiry, simply email your recruiter directly or to make arrangements. If you have questions regarding accessible employment at Bell please email our Diversity & Inclusion Team at .
Created: Canada, ON, Mississauga
Bell, one of
Req Id: 289852
At Bell, we do more than build world-class networks, develop innovative services and create original multiplatform media content – we advance how Canadians connect with each other and the world.
If you’re ready to bring game-changing ideas to life and join a community that values, professional growth and employee wellness, we want you on the Bell team.
The Finance Team manages the performance and risk profile of Bell, ensuring the needs of customers, investors and employees are balanced with long-term business success. We work closely with internal and external stakeholders to develop and execute plans that help the company achieve its strategic objectives and ensure financial sustainability.
Position Description:
Bell Internal Audit is an stand-alone appraisal function within Bell. Its purpose is to provide the Audit Committee of the Board of Directors and executive management with impartial evaluations of the control environment in managing risks facing the organization including Technology and Cybersecurity risks.
As a core team member of the Internal Audit team that is tasked with Cybersecurity, Network and IT and Regulatory Compliance risks, the Senior Manager, Information Systems and Security Audit, will work alongside a team of accomplished Cybersecurity and Technology professionals and auditors in evaluating ongoing technology and security risks and as well as risks arising from the adaptation of emerging technology.
Job Duties/Accountabilities:
- Lead or partner with other team members to plan and execute audit assignments with a particular focus on Cybersecurity, Network, Information Technology as well as Regulatory Compliance
- Design and perform audit procedures to assess the adequacy and effectiveness of Cybersecurity and technology controls through walkthroughs and review of technology design, implementation, configuration and ongoing operation.
- Design and perform technical tests (such as vulnerability assessments, code reviews, penetration tests) to identify vulnerabilities associated with network, infrastructure, software (O/S, applications, web applications, mobile applications, firmware, etc.) and hardware
- Document findings in a structured audit reports to brief findings to executive management
- Advise senior management on ongoing and emerging Cybersecurity, Regulatory and Technology risks
.
Critical qualifications/Competencies:
- Minimum 10 Years of experience in Cybersecurity
- Hands-on knowledge of networking, coding, web development, penetration testing and/or code review
- Broad and deep knowledge of the general security threat landscape and regulatory requirements
- Fast learner with a curious and exploratory mindset and a strong desire to the continuous pursuit of broad and deep technical and business knowledge
- Creative, innovative, analytical and ability to question the status quo in a constructive manner.
- Strong verbal and written communication skill, facilitation and negotiation skills
- Ability to maintain information in confidence and exercise good judgment
Preferred Qualifications/Competencies:
- University Degrees in Engineering, Computer Science, Mathematics or Statistics
- Security certifications and designations such as CISSP, CISM, CompTIA Security, CEH, GSEC, OSCP, OSCE, GWAPT, GMOB, GXPN, etc.
- Knowledge of OWASP, ISO, NIST, ISF, SANS or other security-related frameworks
- Experience in conducting vulnerability identification, bug bounty hunting, or security incident response.
- Knowledge in data analytics
#indeed
#cybersec
#LI-JW1
Bilingualism is an asset (English and French); adequate knowledge of French is required for positions in Quebec.
Additional Information:
Position Type: Management
Job Status: Regular – Full Time
Job Location: Canada : Ontario : Mississauga
Application Deadline: 05/28/2021
Please apply directly online to be considered for this role. Applications through email will not be accepted.
At Bell, we don’t just accept difference – we celebrate it. We’re committed to fostering an inclusive, equitable, and accessible workplace where every team member feels valued, respected, and supported, and has the opportunity to reach their full potential. We welcome and encourage applications from people with disabilities.
Accommodations are available on request for candidates taking part in all aspects of the selection process. For a confidential inquiry, simply email your recruiter directly or to make arrangements. If you have questions regarding accessible employment at Bell please email our Diversity & Inclusion Team at .
Created: Canada, ON, Mississauga
Bell, one of
Company: Bell
Expected salary:
Location: Mississauga, ON
Job date: Sat, 15 May 2021 07:20:59 GMT