Information Security Risk Management Specialist
2 months ago
Barclay Simpson is seeking an experienced Information Security Risk Management Specialist to join our team. As a key member of our security team, you will be responsible for conducting agile risk assessments on various projects, providing expert guidance, and coordinating with key stakeholders and internal teams.
Key Responsibilities- Review and Analyze Security Requirements: Review submissions of the Information Security Criticality Assessment (ISCA) questionnaire and analyze security requirements and project criticality based on standard project activities and data classification from DP pre-screening.
- Collaborate with Architects: Collaborate with assigned architects to ensure that security requirements are integrated into the High-Level Design (HLD), and coordinate reviews with Enterprise Architecture, Solutions Architecture, Cyber Security, and Cyber Assurance teams.
- Evaluate Security Requirements: Evaluate security requirements and review evidence provided by the scrum master to ensure all criteria are met, including:
- Providing Feedback: Provide feedback on the ISCA questionnaire and HLD.
- Presenting at Reviews: Present at ISCA Project Technical Reviews.
- Securing Sign-offs: Attend and secure HLD sign-off from Technical Design Authority and Solutions Design Authority (SDA).
- Acquiring Compliance Reports: Acquire Business Partner Risk Evaluation Platform (BPREP) scorecards for third-party SaaS solutions from the Security Contracts team.
- Obtaining IAM Assessments: Obtain Identity & Access Management (IAM) assessment approvals from the IAM Team.
- Securing Compliance Reports: Secure compliance reports on Minimum Technical Security Baseline from QualysGuard.
- Obtaining Cloud Permits: Obtain Cloud Permit approvals from Enterprise Architecture.
- Conducting Code Reviews: Conduct code reviews and analysis for in-house solutions.
- Generating Compliance Reports: Generate self-service vulnerability assessment compliance reports for assets in scope.
- Coordinating with Cyber Assurance: Coordinate with Cyber Assurance on solution penetration testing and securing necessary sign-offs.
- Registering External-Facing Solutions: Register external-facing solutions with the Digital Hub from Cyber Assurance.
- Preparing Security Assessment Closure Reports: Prepare the ASRM Security Assessment closure report.
- Final Review and Approval: Conduct a final review of all open security requirements and their statuses before providing stage gate approval (Production Go/No-go decision), ensuring adherence to firm ASRM processes.
- Documentation and Project Register: Store all documentation in the IS project's shared area and update the project register daily to maintain project status and revise the ASRM Security Assessment template to record activities.
- Managing Project RAG Status: Manage project RAG (Red, Amber, Green) status to ensure that amber and red trends are promptly communicated to management and the scrum master.
- Collaborating with Scrum Master: Collaborate with the scrum master to support the development of risk acceptance strategies, as needed.
- Attending Meetings: Attend various meetings, including those with the scrum master, delivery squads, stakeholders, ISCA technical review, architectural design authorities, and pen testing reviews.
- Industry-Recognized Certification: Possess an industry-recognized certification such as CISSP, CISM, or CRISC.
- Extensive Experience: Have extensive experience in Agile project-based Information Security.
- Proven Track Record: Possess a proven track record of successful delivery in a similar role.
- Financial Services Experience: Experience in the financial services sector is highly advantageous.
-
Information Security Risk Management Specialist
4 weeks ago
Montreal, Quebec, Canada Barclay Simpson Full timeJob Title: Information Security Specialist with Security ClearanceBarclay Simpson is seeking an experienced Information Security Specialist with Security Clearance to join our team. As a key member of our security team, you will be responsible for conducting agile risk assessments on various projects, providing expert guidance, and coordinating with key...
-
Information Security Risk Management Specialist
4 weeks ago
Montreal, Quebec, Canada Barclay Simpson Full timeJob Title: Information Security Specialist with Security ClearanceBarclay Simpson is seeking an experienced Information Security Specialist with Security Clearance to join our team. As a key member of our security team, you will be responsible for conducting agile risk assessments on various projects, providing expert guidance, and coordinating with key...
-
IT Security Risk Management Specialist
2 weeks ago
Montreal, Quebec, Canada WSP Full timeJob SummaryWe are seeking a highly skilled IT Security Risk Management Specialist to join our team at WSP. As a key member of our IT risk management process, you will work closely with IT teams to identify, evaluate, and mitigate potential IT risks.Key Responsibilities:Support the implementation of a comprehensive IT risk management practice across the WSP...
-
Cyber Security Risk Management Specialist
1 week ago
Montreal, Quebec, Canada National Bank Full timeJoin the National Bank Team as a Cyber Security Risk Management SpecialistAs a Cyber Security Risk Management Specialist at the National Bank, you will play a key role in protecting our organization's digital assets and ensuring the confidentiality, integrity, and availability of our information systems. This exciting opportunity allows you to leverage your...
-
Security Risk Specialist
1 month ago
Montreal, Quebec, Canada 360 IT Professionals Full timeJob Title: Security Risk SpecialistBell is seeking an experienced Security Risk Specialist to support compliance and risk management activities during a 6-month engagement. The ideal candidate will assess Bell's suppliers, working closely with business units and security teams to identify, communicate, and develop remediation for supplier security risks.Key...
-
Security Risk Specialist
1 month ago
Montreal, Quebec, Canada 360 IT Professionals Full timeJob Title: Security Risk SpecialistBell is seeking an experienced Security Risk Specialist to support compliance and risk management activities during a 6-month engagement. The ideal candidate will assess Bell's suppliers, working closely with business units and security teams to identify, communicate, and develop remediation for supplier security risks.Key...
-
Security Risk Specialist
3 weeks ago
Montreal, Quebec, Canada 360 IT Professionals Inc. Full timeJob Title: Security Risk Specialist360 IT Professionals Inc. is seeking a highly skilled Security Risk Specialist to support compliance and risk management activities during a 6-month engagement. The ideal candidate will assess Bell's suppliers, working closely with business units and security teams to identify, communicate, and develop remediation for...
-
Security Risk Specialist
3 weeks ago
Montreal, Quebec, Canada 360 IT Professionals Inc. Full timeJob Title: Security Risk Specialist360 IT Professionals Inc. is seeking a highly skilled Security Risk Specialist to support compliance and risk management activities during a 6-month engagement. The ideal candidate will assess Bell's suppliers, working closely with business units and security teams to identify, communicate, and develop remediation for...
-
Information Security Specialist
2 weeks ago
Montreal, Quebec, Canada 360 IT Professionals Inc. Full time360 IT Professionals Inc. is seeking a skilled Information Security Specialist to support compliance and risk management activities during a 6-month engagement. The ideal candidate will assess Bell's suppliers, working closely with business units and security teams to identify, communicate, and develop remediation for supplier security risks.Key...
-
Information Security Governance Specialist
1 month ago
Montreal, Quebec, Canada Barclay Simpson Full timeJob Title: Information Security Governance SpecialistWe are seeking an experienced Information Security Governance Specialist to join our team at Barclay Simpson. The successful candidate will be responsible for developing and implementing our IT GRC Framework, ensuring the effective management of IT risks and compliance with regulatory requirements.Key...
-
Information Security Governance Specialist
1 month ago
Montreal, Quebec, Canada Barclay Simpson Full timeJob Title: Information Security Governance SpecialistWe are seeking an experienced Information Security Governance Specialist to join our team at Barclay Simpson. The successful candidate will be responsible for developing and implementing our IT GRC Framework, ensuring the effective management of IT risks and compliance with regulatory requirements.Key...
-
Security Risk Management Specialist
2 months ago
Montreal, Quebec, Canada 360 IT Professionals Full timeAt 360 IT Professionals, we are seeking a highly skilled Security Risk Management Specialist to support our compliance and risk management activities during a 6-month engagement. The ideal candidate will assess our suppliers, working closely with our business units and security teams to identify, communicate, and develop remediation for supplier security...
-
Security Risk Management Specialist
2 months ago
Montreal, Quebec, Canada 360 IT Professionals Full timeAt 360 IT Professionals, we are seeking a highly skilled Security Risk Management Specialist to support our compliance and risk management activities during a 6-month engagement. The ideal candidate will assess our suppliers, working closely with our business units and security teams to identify, communicate, and develop remediation for supplier security...
-
Risk Control Specialist
2 months ago
Montreal, Quebec, Canada Davies Risk Services Full timeAbout the RoleDavies Risk Services is seeking a highly skilled Risk Control Specialist to join our team as an independent contractor. As a Risk Control Specialist, you will work with our clients to identify and mitigate potential risks, ensuring their businesses operate safely and efficiently.Key ResponsibilitiesConduct on-site risk assessments and...
-
Risk Control Specialist
2 months ago
Montreal, Quebec, Canada Davies Risk Services Full timeAbout the RoleDavies Risk Services is seeking a highly skilled Risk Control Specialist to join our team as an independent contractor. As a Risk Control Specialist, you will work with our clients to identify and mitigate potential risks, ensuring their businesses operate safely and efficiently.Key ResponsibilitiesConduct on-site risk assessments and...
-
Information Security Specialist
3 weeks ago
Montreal, Quebec, Canada NTT DATA, Inc. Full timeJob Title: Information System Security SpecialistNTT DATA Services is seeking a highly skilled Information System Security Specialist to join our team. As a key member of our security team, you will be responsible for conducting security assessments, identifying vulnerabilities, and developing comprehensive security architecture assessment reports.Key...
-
Information Security Specialist
3 weeks ago
Montreal, Quebec, Canada NTT DATA, Inc. Full timeJob Title: Information System Security SpecialistNTT DATA Services is seeking a highly skilled Information System Security Specialist to join our team. As a key member of our security team, you will be responsible for conducting security assessments, identifying vulnerabilities, and developing comprehensive security architecture assessment reports.Key...
-
Information Security Specialist
1 month ago
Montreal, Quebec, Canada NTT DATA Services Full timeJob Title: Information System Security SpecialistWe are seeking a highly skilled Information System Security Specialist to join our team at NTT DATA Services. As a key member of our security team, you will be responsible for ensuring the confidentiality, integrity, and availability of our clients' data.Key Responsibilities:Implement and maintain robust...
-
Information Security Specialist
1 month ago
Montreal, Quebec, Canada NTT DATA Services Full timeJob Title: Information System Security SpecialistWe are seeking a highly skilled Information System Security Specialist to join our team at NTT DATA Services. As a key member of our security team, you will be responsible for ensuring the confidentiality, integrity, and availability of our clients' data.Key Responsibilities:Implement and maintain robust...
-
Information Security Specialist
3 weeks ago
Montreal, Quebec, Canada NTT DATA Services Full timeJob Title: Information System Security SpecialistWe are seeking a highly skilled Information System Security Specialist to join our team at NTT DATA Services. As a key member of our security team, you will be responsible for ensuring the confidentiality, integrity, and availability of our clients' data.Key Responsibilities:Implement and maintain robust...
