Senior Security and Risk Advisor

Sorry, this job is no longer available. Please Search for Jobs to conduct a new search

Eagle is currently seeking a Senior Security and Risk Advisor for an eleven (11) month contract opportunity, scheduled to begin in October.

Key Responsibilities

The successful candidate will be responsible for:
  • Analyzing and making recommendations pertaining to information security, incident response, policies, standards, and awareness;
  • Keeping up to date with emerging technology, security threats, and industry standards, and apply these concepts and techniques within the corporate environment;
  • Performing confidential, sensitive systems reviews and investigations, as well as moderate to complex system analysis and, as required, be available during disaster recovery and disruptions;
  • Participating in information security architecture and system design development, ensuring that all activities adhere to the corporate information security principles, standards, and processes;
  • Assisting with the development, maintenance, controls and enforcement of the corporate directives and practices, pertaining to information security;
  • Assisting with the development of internal and external communication to educate target audiences regarding information security, and delivers the information to target audiences;
  • Working with various teams to assist with planning and development of controls that manage access to corporate information in a manner which complies with policies and practices;
  • Developing and maintaining expertise in one or more areas of security threat and incident;
  • Supporting security compliance and remediation initiatives for technology, processes and services to ensure ongoing effectiveness of the information security program, protect the business from unknown exposures and ensure compliance with regulatory and contractual requirements;
  • Coordinating and/or participating in business security threat and risk assessments, and risk control assessments;
  • Measuring and communicating the risks and potential mitigation strategies to reduce the risk to an acceptable level;
  • Contributing to business cases for security solutions with a keen focus on risk assessment practices;
  • Participating in ad hoc consulting services to the business to identify information security requirements based on scope and risk;
  • Managing major security incidents, and ensures preventative measures are taken to protect the business;
  • Coordinating eradication and mitigation activities with business and IT partners for security incident recovery related to any IT or business application / infrastructure security incident;
  • Working with other departments providing consultation regarding their security concerns;
  • Following up with technical teams to ensure controls and mitigation strategies are in place and effective;
  • Maintaining and administering the information security service requests in alignment with company polices;
  • Developing and/or providing input into reports and presentations with regard to security, as requested;
  • Participating in the research and development of security and risk standards and procedures, organizes their adoption, and monitors them for effectiveness;
  • As required, participating on corporate technical projects regarding security-specific components of these projects; and,
  • Researching and providing consulting expertise to all other staff on security matters in alignment with corporate security policies and standards, and the Information Security Officer recommendations.
Skills and Qualifications

The qualified candidate must have:
  • A University Degree or a two (2) year College Diploma in Computer Science or similar discipline;
  • Completion of one (1) or more of the following Information Security Management professional designations is preferred:
    • Certified Information Systems Security Professional (CISSP);
    • Certified Information Security Manager (CISM);
    • Certified in Risk and Information Systems Control (CRISC);
    • Certified Information Systems Auditor (CISA);
    • Certified Penetration Tester (GPEN);
    • Certified Forensic Analyst (GCFA)Offensive Security Certified Professional (OSCP);
    • Other information security credentials;
  • Demonstrated record of related continuing education and certifications in the Information Technology field;
  • Seven (7) years in the IT industry with four (4) years related experience with supporting Information Security issues and controls;
  • Strong understanding of security and control frameworks such as COBIT, ISO 27002, NIST;
  • Excellent interpersonal and written communication skills;
  • The ability to deal with highly confidential matters;
  • Strong critical thinking and decision making skills;
  • Knowledge of security related policies, procedures, and practices;
  • The ability to manage multiple priorities under strict deadlines;
  • Demonstrated strong analytical and investigative skills with regard to moderately complex to complex issues;
  • Demonstrated ability to develop and maintain collaborative partnerships; and,
  • The ability to relate to others with all levels of technical competency.
Don’t miss out on this opportunity, apply online today!

Eagle is an equal opportunity employer and will provide accommodations during the recruitment process upon request. We thank all applicants for their interest; however, only candidates under consideration will be contacted. Please note that your application does not signify the beginning of employment with Eagle and that employment with Eagle will only commence when placed on an assignment as a temporary employee of Eagle.

JOB#67834
  • Posted On: September 18, 2020
  • Job Type: Contract
  • Job ID: 67834
  • Location: Winnipeg MB