Please share your resume at Vinith.thota@amyantek.com if you are interested in this 1 year contract with Bell with a possibility of extension. If you are not interested, please feel free to pass it in your network for anyone looking for work.
Position title: CREQ002485 - Security Analyst
Working Status: Hybrid - 3 days presence in the office
Location: Ottawa (preferred), Toronto, Atlantic
Top 3 skills sets: Security knowledge, ability to communicate at all levels, continuous learner – keeps skills current
Day to day in this role: Meeting with business teams to assess the security posture of their applications, responding to queries on how/which security controls apply in specific use cases, meeting with security control owners validate controls, stay current with changes, etc., collaborating with team members to build and refine processes related to security assessment, validation and exception.
Interview process:1-2 interviews, virtual (depending on location)
Specific projects will be worked on: Security control onboarding
Any potential for extension or to hire full time: There may be potential for either, depending on the individual
Description
· Participate in the design, development and implementation of security initiatives to ensure the best possible measures are in place to maintain a secure operation.
· Monitor, evaluate, and maintain systems and procedures to safeguard internal information systems and databases.
· Develop, implement, and enforce security strategies, policies and procedures.
· Analyze, recommend and implement security technologies such as firewalls, IDS (network and server), certificates and PKI.
· Provide expert level advice to functional teams on the prioritization and deployment of security controls to meet industry and corporate standards, and accommodate unique business challenges and risk levels
· Assess and evaluate security posture across complete platforms, identifying gaps and providing recommendations for security control deployment.
· Evaluate perimeter defense security posture and recommend action plans and security controls prioritization.
· Manage security-related technical queries, participate in their resolution and provide directional support in the development and deployment of security controls.
· Measure effectiveness of security controls deployment through performance of formal security maturity assessments, identifying and prioritizing high-risk assets.
Qualifications include:
· Knowledge of information security technologies, networks, and operating systems;
· Knowledge of risk management frameworks, industry best practices, security policy creation;
· Expert understanding of routing and network protocols;
· Undergraduate degree.
· 4+ years of experience in IT and Networking
· 4+ years of progressive experience in cyber security
· Demonstrated understanding of the concepts of information security and principles of information handling and protection
· Knowledge of the main security standards: ISO 27000 family, NIST, PCI-DSS, etc.
· Working knowledge of the following solutions: UTM, SIEM, CASB, EDR technologies
· Familiarity with data loss prevention (DLP) technologies and methodologies