IT Security Analyst

3 weeks ago


Toronto ON, Canada ProViso Staffing Full time

Story Behind the Need:
• Business Group: The US Information Security Team is sourcing one (1) IT Security Analyst to assist with the completion of security Threat Risk Assessments (TRAs) for the US application technology landscape.
• An additional resource is necessary due to increased workload, competing regulatory projects, and the need to keep all BAU work and upcoming projects on track.
• We are seeking self-starters who can immediately contribute to the threat risk assessment process, security advisory services including support for regulatory requirements and projects.

Candidate Value Proposition:
• In addition to gaining experience with a top global bank, successful candidate(s) with outstanding performance and skills will have the opportunity to be converted to full time employment, assuming the budget allows.

Typical Day in the Role:
• Conduct threat risk assessments on technology assets, specifically applications. Verify security controls, provide suggestion on compensating controls, and advise stakeholders on security best practices
• Work with third and fourth parties to capture data inputs to the assessments, including the review of testing reports and summaries
• Experience with architecture documentation – ability to recognize and identify risks based upon application design or implementation plan
• Review and evaluate responses to security assessments, collect and validate supporting evidence
• -Review security and technical design documentation
• -Understand compensating and mitigating controls
• Identify risks and understand their impact
• Clearly and intelligently communicate findings to stakeholders
• Provide guidance to stakeholders regarding risks and corresponding actions necessary to remediate said risks
• Prepare and report results to stakeholders and management
• Understand regulatory requirements and how they apply to the evaluation/assessment of tooling or solution
• Understand the financial regulations that legislate and impact technology and security controls
• Work closely with stakeholders, including application owners and business lines to ensure risk remediation or acceptance is addressed
• Conduct security risk assessments for 3rd and 4th party applications, components, services
• Understand cloud infrastructure and cloud security controls
• Work closely with third party relationship managers to define security expectations and hold vendor accountable for risk mitigation or remediation plans
• Collaborate with IT business partners and team leads

Must Have Skills/Requirements:
• IT Security Analyst or related cybersecurity background (2+ years of experience, but will consider recent university graduates with a degree in Cyber or Information Security)
• Recent experience working directly on Cyber Risk Assessments ( 2+ years, or 1 recent project)
• Experienced with GCP or related Cloud Platforms
• Prior knowledge of security engineering/architecture
• Proficiency in MS Office with extended knowledge in MS Excel – 3+ years

Nice to have Skills:
• CISA OR CISSP Certification
• An understanding and experience with security controls/mechanisms and risk assessment techniques pertaining to complex data, application, infrastructure and networking environments proven through recent experience or last project
• Recent relevant Financial Industry Experience
• Extensive knowledge of Financial regulations and regulatory requirements (NYDFS, FIECC, Federal Reserve, Treasury, CFTC, etc.)
• Experience with vulnerability management tools such as Tripwire or Tenable
• Ability to read and interpret vulnerability, host audit/configuration and code scanning (DAST/SAST) reports and

Soft Skills:
• Excellent grammar and communications skills to coordinate with senior leadership (Director, VP level and up), as well as C-Suite of some of the third party vendors
• Comfortable putting together and presenting risk assessments to a wide range of individuals
• Candidate must have a natural curiosity and the ability to assess each situation separately
• Fast, adaptable learner who can hit the ground running
• Strong organizational skills
• Ability to manage assigned tasks and expectations without direct instruction or oversight
• Ability to work well under pressure while demonstrating strong professionalism
• Must be able to collaborate closely with teams and independently
• Must be accountable to meet individual deadlines without hand holding

Education :
Bachelors/ Masters degree in cyber security, computer science, or related IT field

Interview Process:
• 1-step process – Panel Video Interview with Sr. Manager (hiring manager) and 3 other team members
• Interviews to take place ASAP

Additional Notes:
• Candidate may be required to provide other IT Security support as needed
• Do NOT submit resources with IT Risk background unless they have strong cyber experience or educational background
• Do NOT submit project managers

Job Details

12024

Contract

7 Months

Toronto

#J-18808-Ljbffr

  • Toronto, Canada Atlantis IT group Full time

    **JD**: **Role - Network Security Analyst** **Location-** **CALGARY, AB (Hybrid)** **Duration - Contract** Establishes and maintains security architecture frameworks and practices across the enterprise, and communicates the strategy and roadmaps with a broad range of stakeholders including senior leadership and executives. Provides leadership in the...

  • IT Security Analyst

    1 week ago


    Old Toronto, Canada Security Bank & Trust Co. Full time

    Must Have Skills/Requirements: 1)   10+ years of Experience as an IT Security Analyst 2)   A strong understanding of multi-tier Web Applications, web API, and related vulnerabilities and potentials threats. Staying abreast of information provided by recognized organizations such as OWASP (Open Web Application Security Project) and CVE (Common...

  • IT Security Analyst

    1 week ago


    Old Toronto, Canada Security Bank & Trust Co. Full time

    Must Have Skills/Requirements: 1)   10+ years of Experience as an IT Security Analyst 2)   A strong understanding of multi-tier Web Applications, web API, and related vulnerabilities and potentials threats. Staying abreast of information provided by recognized organizations such as OWASP (Open Web Application Security Project) and CVE (Common...

  • Cyber Security

    2 months ago


    Toronto, Canada Atlantis IT group Full time

    **Role - Cyber Security Analyst** **Location - Toronto, ON - Canada** **Duration - Long Term** This role will support all testing and validation activities for projects under Information Security portfolio and work closely with the PMs and BAs to complete all deliverables. To read all the documents and understand what needs to be tested Inform the PMs...

  • IT Security Analyst

    3 weeks ago


    Toronto, ON, Canada Nexus Systems Group Inc. Full time

    IT Security Analyst Typical Day in Role: • Review Firewall port requests on a daily basis, this will include Cloud security (GCP, Azure)• Provide approvals and complete risk memos incase risk is identified • Directly reporting to the Senior Manager, Information Security Advisor • Contractor will be working closely with the Network team, Security...


  • Toronto, ON, Canada Procom Full time

    Security Business Analyst On behalf of our client in the Public Sector, PROCOM is looking for a Security Business Analyst Security Business Analyst - Job Description 1) Strategy & Planning Collaborate with project sponsors to determine project scope and vision Takes lead in coordinating and following up with Sponsors, Principal Architect, Stakeholders,...


  • Toronto, ON, Canada Procom Full time

    Security Business Analyst On behalf of our client in the Public Sector, PROCOM is looking for a Security Business Analyst Security Business Analyst - Job Description 1) Strategy & Planning Collaborate with project sponsors to determine project scope and vision Takes lead in documenting RFx Participate in Advisory, Managed Services vendor selection process...

  • Security Analyst

    2 months ago


    Toronto, ON, Canada Nexus Systems Group Inc. Full time

    Security Analyst Typical Day in Role: • Focused individual on driving remediation of End Of Life (EOL)/Vulnerability within all Bank assets and assist with active engagements around Active Directory Clean up. • Security Risk Index – Chasing Global Technology (GTEP) for plans regarding EOL and Vulnerability remediation for network devices and GTEP...


  • Toronto, ON, Canada Cyderes Full time

    Cyderes (Cyber Defense and Response) is a pure-play, full life-cycle cybersecurity services provider with award-winning managed security services, identity and access management, and professional services designed to manage the cybersecurity risks of enterprise clients. We specialize in multi-technology, complex environments with the in speed and agility...


  • Toronto, ON, Canada Hamilton Barnes Associates Limited Full time

    A rapidly growing Managed Security Service Provider is seeking a new SOC Analyst to monitor for] and respond to security incidents for their Canadian clients. Work with leading cyber security technologies! Responsibilities: Monitor and respond to security incidents Investigate security incidents by reviewing SIEM and EDR logs Scan client...

  • IT Security Analyst

    1 month ago


    Toronto, ON, Canada Nexus Systems Group Inc. Full time

    IT Security Analyst Typical Day in Role: • Champions a customer focused culture to deepen client relationships and leverage broader Bank relationships, systems and knowledge. • Responsible for the successful implementation and maintenance of complete technology solution for projects supporting highly complex Physical and Cloud based platforms and...

  • Security Analyst

    4 weeks ago


    Toronto, Canada CB Canada Full time

    Security Analyst On behalf of our client in the Banking Sector, PROCOM is looking for a Security Analyst. Security Analyst – Job Description User access provisioning, granting access to banking applications and systems to employees and customers Provisioning access to Employees and Contractors using various applications and platforms ID and Mailbox...

  • Security Analyst

    2 weeks ago


    Toronto, Canada CB Canada Full time

    Security Analyst On behalf of our client in the Banking Sector, PROCOM is looking for a Security Analyst. Security Analyst – Job Description User access provisioning, granting access to banking applications and systems to employees and customers Provisioning access to Employees and Contractors using various applications and platforms ID and Mailbox...


  • Old Toronto, Canada Security Bank & Trust Co. Full time

    Our client, a major post-secondary institution, is looking to bolster their security program with the addition of two Senior Security Analysts. The main focus of the role will be to work alongside leadership in managing the program as a whole. Your input will be instrumental in the further development of their program.Experience1. Minimum 5 years of...


  • Old Toronto, Canada Security Bank & Trust Co. Full time

    Our client, a major post-secondary institution, is looking to bolster their security program with the addition of two Senior Security Analysts. The main focus of the role will be to work alongside leadership in managing the program as a whole. Your input will be instrumental in the further development of their program.Experience1. Minimum 5 years of...


  • Toronto, ON, Canada Resonaite Full time

    Our client is looking for a senior MS Defender consultant with expertise Defender endpoint, cloud, server, identity. ResponsibilitiesReview client's current Defender implementation, assess gaps and help remediate acrossMS Defender Endpoint Management MS Defender for Cloud:MS Defender for Servers:RequirementsMinimum of 10 years of experience in IT security,...


  • Toronto, ON, Canada Resonaite Full time

    Our client is looking for a senior MS Defender consultant with expertise Defender endpoint, cloud, server, identity. ResponsibilitiesReview client's current Defender implementation, assess gaps and help remediate acrossMS Defender Endpoint Management MS Defender for Cloud:MS Defender for Servers:RequirementsMinimum of 10 years of experience in IT security,...


  • Toronto, ON, Canada Toronto, ON, Canada Full time

    Security Operations Analyst, Information Security Thursday, May 9, 2024 Working together to be our best! We are hiring a Security Operations Analyst, Information Security! Reporting To: Manager, Information Security/ Security Operations Full-Time/Part- Time: Full-time Posting Date: May 9, 2024 Closing Date: May 31, 2024 Hours of Work: 8:30...


  • Toronto, ON, Canada First National Financial LP Full time

    Security Operations Analyst, Information Security Toronto, ON, Canada Job Description Posted Thursday, May 9, 2024 at 4:00 AM | Expires Saturday, June 1, 2024 at 3:59 AM Working together to be our best! We are hiring a Security Operations Analyst, Information Security! Reporting To: Manager, Information Security/ Security Operations ...


  • Toronto, ON, Canada Canadian Investment Regulatory Organization Full time

    40 Temperance Street Suite 2600 Toronto, ON M5H0B4, CAN Description Position Title: Information Security Analyst Department:Information Technology Location:Toronto Status: Permanent Full-time (Hybrid) The Information Security Analyst will implement the information security program initiatives, administer information security systems, and assist...