Current jobs related to Information Security Specialist - Toronto, Ontario - Canadian Institute for Health Information (CIHI)


  • Toronto, Ontario, Canada BMO Full time

    About the RoleThe Information Security Testing Specialist reports to the Lead of DevSecOps and assists with the security testing activities for BMO-based applications. The role will be responsible for the execution and coordination of Static and Dynamic Application Security Testing (SAST/DAST), providing information security consulting services (SAST/DAST...


  • Toronto, Ontario, Canada The Toronto-Dominion Bank (Canada) Full time

    About This RoleWe are seeking a highly skilled Information Security Specialist to join our team at The Toronto-Dominion Bank (Canada). As a key member of our security team, you will be responsible for developing and implementing technology controls and information security-related policies, programs, and tools.Key Responsibilities:Develop and maintain...


  • Old Toronto, Ontario, Canada Arthur Grand Technologies Inc Full time

    Job Title: Security Specialist – SeniorArthur Grand Technologies Inc is seeking a highly skilled Security Specialist – Senior to join our team.Job Summary:We are looking for a seasoned security professional to lead our security risk management initiatives and provide expertise in various security domains, including third-party risk management, IT audits,...


  • Old Toronto, Ontario, Canada Arthur Grand Technologies Inc Full time

    Job Title: Security Specialist – SeniorArthur Grand Technologies Inc is seeking a highly skilled Security Specialist – Senior to join our team.Job Summary:We are looking for a seasoned security professional to lead our security risk management initiatives and provide expertise in various security domains, including third-party risk management, IT audits,...


  • Toronto, Ontario, Canada Bank of Montreal Full time

    Senior CIEM Specialist, Information Security & IAMJob Summary:We are seeking a highly experienced Senior CIEM Specialist to join our Information Security team. The successful candidate will be responsible for ensuring that our information security processes and procedures are aligned with industry best practices and regulatory requirements.Key...


  • Toronto, Ontario, Canada The Toronto-Dominion Bank (Canada) Full time

    Job Title: Information Security SpecialistAbout the Role:We are seeking a highly skilled Information Security Specialist to join our team at The Toronto-Dominion Bank (Canada). As an Information Security Specialist, you will play a critical role in ensuring the security and integrity of our systems and data.Key Responsibilities:Conduct Penetration Tests:...


  • Toronto, Ontario, Canada The Toronto-Dominion Bank (Canada) Full time

    Job Title: Information Security SpecialistAbout the Role:We are seeking a highly skilled Information Security Specialist to join our team at The Toronto-Dominion Bank (Canada). As an Information Security Specialist, you will play a critical role in ensuring the security and integrity of our systems and data.Key Responsibilities:Conduct Penetration Tests:...


  • Toronto, Ontario, Canada The Toronto-Dominion Bank (Canada) Full time

    Job Title: Information Security SpecialistAbout the Role:We are seeking a highly skilled Information Security Specialist to join our team at The Toronto-Dominion Bank (Canada). As an Information Security Specialist, you will play a critical role in ensuring the security and integrity of our systems and data.Key Responsibilities:Conduct Penetration Tests:...


  • Toronto, Ontario, Canada The Toronto-Dominion Bank (Canada) Full time

    Job Title: Information Security SpecialistAbout the Role:We are seeking a highly skilled Information Security Specialist to join our team at The Toronto-Dominion Bank (Canada). As an Information Security Specialist, you will play a critical role in ensuring the security and integrity of our systems and data.Key Responsibilities:Conduct Penetration Tests:...


  • Toronto, Ontario, Canada Norton Rose Fulbright Full time

    Information Security Governance & Compliance SpecialistThe information security team at Norton Rose Fulbright reports to the global chief information security officer (CISO). The team works with unified principles and processes around the world while maintaining regional stakeholder relationships.Key Responsibilities:Develop and implement information...

  • Security Specialist

    1 week ago


    Toronto, Ontario, Canada Paladin Security Full time

    At Paladin Security, we are seeking a highly skilled and dedicated Security Specialist to join our team.The ideal candidate will possess excellent customer service skills, with the ability to effectively communicate with clients and colleagues alike.The Security Specialist will be responsible for maintaining a safe and welcoming environment, enforcing...


  • Toronto, Ontario, Canada The Toronto-Dominion Bank (Canada) Full time

    Job SummaryThe Information Security Specialist plays a critical role in defining, developing, and implementing technology controls and information security policies, programs, and tools. This position requires specialized expertise and guidance on assessing risks, identifying potential gaps, and providing security solutions to mitigate risks and protect the...


  • Toronto, Ontario, Canada Bank of Montreal Full time

    Senior CIEM Specialist, Information Security & IAMJob Summary:We are seeking a highly experienced Senior CIEM Specialist to join our Information Security team at Bank of Montreal. As a key member of our team, you will be responsible for ensuring that our information security processes and procedures are aligned with industry best practices and regulatory...


  • Toronto, Ontario, Canada Bank of Montreal Full time

    Senior CIEM Specialist, Information Security & IAMJob Summary:We are seeking a highly experienced Senior CIEM Specialist to join our Information Security team at Bank of Montreal. As a key member of our team, you will be responsible for ensuring that our information security processes and procedures are aligned with industry best practices and regulatory...


  • Toronto, Ontario, Canada The Toronto-Dominion Bank (Canada) Full time

    Job SummaryWe are seeking an experienced Information Security Specialist to join our team at The Toronto-Dominion Bank (Canada). As a key member of our security team, you will be responsible for defining, developing, and implementing technology controls and information security policies, programs, and tools.Key ResponsibilitiesProvide consultation and advice...


  • Toronto, Ontario, Canada The Toronto-Dominion Bank (Canada) Full time

    Job SummaryWe are seeking a highly skilled Information Security Specialist to join our team at The Toronto-Dominion Bank (Canada). As a key member of our security team, you will be responsible for defining, developing, and implementing technology controls and information security policies to protect our bank's assets and ensure the confidentiality,...


  • Toronto, Ontario, Canada The Toronto-Dominion Bank (Canada) Full time

    Job SummaryWe are seeking an experienced Information Security Specialist to join our team at The Toronto-Dominion Bank (Canada). As a key member of our security team, you will be responsible for defining, developing, and implementing technology controls and information security policies, programs, and tools.Key ResponsibilitiesProvide consultation and advice...


  • Toronto, Ontario, Canada Norton Rose Fulbright Full time

    Information Security Governance & Compliance SpecialistThe information security team at Norton Rose Fulbright reports to the global chief information security officer (CISO). Our team works with unified principles and processes around the world while maintaining regional stakeholder relationships.Key Responsibilities:Develop and implement information...


  • Toronto, Ontario, Canada Norton Rose Fulbright Full time

    Information Security Governance & Compliance SpecialistThe information security team at Norton Rose Fulbright reports to the global chief information security officer (CISO). Our team works with unified principles and processes around the world while maintaining regional stakeholder relationships.Key Responsibilities:Develop and implement information...


  • Toronto, Ontario, Canada TD Bank, N.A. Full time

    Job SummaryWe are seeking an experienced Information Security Specialist to join our team at TD Bank, N.A. As a key member of our security team, you will be responsible for providing consultation and advice to partners on technology controls and information security programs, policies, and standards.Key ResponsibilitiesProvide consultation and advice to...

Information Security Specialist

2 months ago


Toronto, Ontario, Canada Canadian Institute for Health Information (CIHI) Full time
Job Summary

As a key member of the Canadian Institute for Health Information (CIHI) team, the Information Security Consultant plays a critical role in ensuring the effective design, configuration, management, monitoring, and protection of CIHI's security infrastructure. This includes cloud environments, firewalls, security information and event management solutions (SIEM), and other security systems.

Key Responsibilities
  • Lead the planning, design, and implementation of CIHI's security environment, ensuring compliance with industry, regulatory, and contractual requirements.
  • Oversee the secure deployment of cloud services provided by AWS, Azure, and other vendors, incorporating comprehensive security controls and monitoring solutions.
  • Design, configure, and manage security controls and policies in AWS and Microsoft Azure, ensuring robust protection for cloud-based infrastructure and applications.
  • Upgrade, configure, and maintain current security systems and their corresponding software, including firewalls, IDS/IPS, SIEM, web gateways, VPN solutions, cryptography systems, and endpoint security software.
  • Plan and lead IT security projects for deployment, integration, and configuration of new security solutions and/or enhancements to existing solutions in accordance with CIHI processes and industry standards and best practices.
  • Participate and respond to security incidents as per CIHI's security incident protocols and lead the creation of incident playbooks and incident response tabletop exercises.
  • Monitor and assess risk, resolve security incidents (breaches, vulnerabilities, malware), and provide recommendations for improvements to existing configuration/enhancements or new security solutions for cloud and on-premises architecture to improve overall enterprise security.
  • Remain current on evolving security threats and proactively implement mitigation solutions.
  • Lead periodic vulnerability assessments, penetration testing, and internal audits to ensure staff preparedness and infrastructure compliance with various regulatory requirements.
  • Provide consulting, advice, and support on CIHI's Security systems and architecture and industry best practices.
  • Define evaluation benchmarks to appraise, test, and select new security software and hardware technologies.
  • Assist with the development, implementation, and maintenance of CIHI's IT security policies and procedures.
  • Lead the development of training material to facilitate information security awareness within the organization.
  • Liaise with members of the Privacy and Legal team and program areas as appropriate.
  • Provide guidance and instruction to junior team members.
  • Provide on-call support on a rotational basis.
Requirements
  • Graduate of a recognized university/college computer science program or equivalent.
  • Minimum of 5-7 years' experience as a security administrator with at least 2 years as a cloud security administrator.
  • AWS Certified Security Specialist/Palo Alto PCNSE certification or equivalent security certification.
  • Expertise in the design of networks, IP addressing, and IP protocols such as TCP/IP, DNS, DHCP, HTTP, TLS, SSH, 802.1X, and IPsec.
  • Proficient in designing and managing enterprise security solutions such as firewall HA clusters, intrusion prevention systems, SIEM solutions, web gateways, web application firewalls, cloud security posture management solutions, multi-factor VPN authentication, and application sandboxing.
  • Experience in security for various cloud service models like IaaS, PaaS, SaaS, for cloud providers like AWS and Microsoft Azure, including the implementation of security best practices and compliance.
  • Proven ability to design, configure, and manage security controls and policies in AWS and MS Azure.
  • Experience in creating alerts, reports, and dashboards using SIEM solutions.
  • Demonstrated knowledge of forensic tools (Wireshark), techniques, and methodology.
  • Expert understanding of security in the following OS platforms and technologies: MS Windows, Linux, virtualization, containerization, mobile devices, and cloud services.
  • Proficient understanding of tiered web applications and their working in a Windows/Linux environment using Apache/IIS web servers and MS SQL/Oracle/MySQL databases.
  • Knowledge of NIST Cybersecurity framework and ISO 27001:2022.
  • Ability to conduct research into security issues and products, as required.
  • Strong interpersonal and both oral and written communication skills.
  • Excellent organizational skills and attention to detail.
  • Ability to effectively prioritize and execute tasks with minimal supervision.
  • Experience working in a team-oriented, collaborative environment.
  • Lifting of moderately heavy objects, such as servers and network appliances.
  • Flexibility to work outside standard hours to maintain systems and participate in an on-call rotation schedule.
  • Fluency in English is required, bilingualism in both official languages is an asset.