Senior Security Advisor enhancing security measures to align with corporate objectives at Desjardins. Leading development of strategic initiatives and overseeing best practices in security.
About the role
- Senior Principal Engineer leading information security initiatives for Cencora, safeguarding infrastructure and intellectual property. Advise leadership on risk management and compliance, driving security policies and standards.
Responsibilities
- Analyze trends, news, and changes in the threat and compliance landscape; advise leadership and execute plans for risk mitigation and compliance.
- Lead and coordinate responses to information system security incidents, including investigation, countermeasures, and recovery; engage with third-party responders.
- Recommend and oversee implementation of security controls throughout the acquisition, development, and change management lifecycle of information systems.
- Provide technical leadership on large-scale, complex, and highly analytical security projects.
- Plan and lead upgrades to security tools and measures to protect information systems and networks.
- Develop methodologies for monitoring and responding to security events; lead remediation efforts for cybersecurity incidents.
- Guide network and system administrators in maintaining infrastructure security, improving performance, and automating administration from a security perspective.
- Mentor and coach ISO Engineers, providing technical guidance and oversight.
- Ensure service-level agreements (SLAs) are maintained to uphold security controls.
- Lead the implementation of enterprise-wide security policies, procedures, and standards across diverse platforms and applications.
- Interface with business and IT leaders to communicate security issues and respond to requests for information and support.
- Refine and enforce security policies and standards to meet internal and external compliance requirements.
- Collaborate with senior technical executives and IT teams to design and implement security systems that protect both physical and intangible assets.
- Review technical and functional design documents; build, maintain, and implement cybersecurity, data security, and cloud security solutions.
- Advise business and technical teams on the potential impacts of changes to the security environment.
- Deliver security briefings to inform leadership of critical issues affecting the enterprise.
- Analyze and generate insights from security metrics and KPIs for executive-level reporting.
- Responds to security alerts and escalates critical incidents to correct support teams and participates in incident response exercises.
- Serves as a subject matter expert (SME) for product research and development teams, working closely with software engineers, product management and development, and divisional and corporate information systems.
Requirements
- Bachelor’s Degree in Computer Science, Information Technology or any other related discipline or equivalent related experience.
- Eight (8) or more years of directly-related or relevant experience, preferably in information security.
- Azure Security Engineer Certification
- Certified Cloud Security Professional (CCSP)
- Certification in Information Security Strategy Management (CISM)
- Certified Information Systems Security Professional (CISSP)
- CompTIA Security + Certification
- Systems Security Certified Practitioner (SSCP)
- Knowledge of Microsoft Office Suite
- Programming and Development Languages - JavaScript, HTML/CSS, Python, SQL
- Security Tools - SIEM, EDR, Email Security Gateway, SOAR, Firewall, Anti-virus, Firewalls, VPN IDS/IPS, AV, proxies, etc.
Benefits
- Health insurance
- Dental care
- Vision care
- Backup dependent care
- Adoption assistance
- Infertility coverage
- Family building support
- Behavioral health solutions
- Paid parental leave
- Paid caregiver leave
- Training programs
- Professional development resources
- Mentorship programs
- Employee resource groups
- Volunteer activities
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Controls Professional assessing internal control frameworks at Barclays, improving control effectiveness and managing risks to ensure compliance with regulations.
Senior Information Security Engineer at Wells Fargo investigating insider threats and strengthening cybersecurity measures. Conducting advanced investigations and collaborating with cyber teams to mitigate risks.
Staff Product Manager overseeing enterprise security product strategy for Tenable. Collaborating with various teams to deliver customer - focused solutions and product features.
Information Systems Security Officer managing operational security posture for information systems at GDIT. Collaborating closely with ISSM and ISO, handling security aspects, and ensuring compliance with security standards.
Program Security Representative providing multi - discipline security support for Special Access Programs. Ensuring compliance, developing policies, and conducting security assessments in a military context.
Senior Cyber Security Project Manager at Airbus Protect managing medium complexity projects in Cyber Security Consulting. Focusing on project leadership and team management in diverse client settings.
Security Architect responsible for designing cloud security architectures for leading brands. Ensuring compliance and guiding incident response strategies in AWS environments.
Senior Security Consultant for ISMS Management at Bundesdruckerei GmbH in Berlin. Responsible for security analysis, management, and advisory roles on cybersecurity issues.
IT - Systemadministrator managing Video Surveillance and Alarm Systems at Mühlbauer. Supporting technical solutions for multimedia and conference systems with project involvement and ticket handling.