IT Security Analyst III

Job Description

Who We Are

BGIS is a leading provider of customized facility management and real estate services. With our combined team of over 6,500 globally, we relentlessly focus on enabling innovation through the services we deliver, while actively looking for new opportunities that will enable innovation for our clients’ businesses. Globally, we manage over 320 million square feet of client portfolios across 30,000+ locations in North America, Europe, Middle East, Australia and Asia. Further information is available at www.bgis.com

Summary

The position of Information Security Specialist III will report directly to the IT Security Manager in support of the Information Security Program established at BGIS. The position will be responsible for various IT infrastructures, operational and implementation deliverables. Work on tasks to maintain, improve and promote Cyber / IT-Security within BGIS. A strong focus on best-practices consultation, compliance, governance, incident response, security project(s) delivery support and security operations. Strong knowledge and understanding of OT security best practices. The ideal candidate will be both a technical expert and a team leader with the ability to persuade colleagues to exercise best practices.

Key Duties & Responsibilities

Security Operations

• Monitors multiple computing environments to detect, validate and respond to malicious activity, security events, unauthorized access or use of Brookfield Global Integrated Solutions information assets; develop solutions to prevent future re-occurrences and find innovative ways to enforce security policies and procedures.
• Participate, when required, in regular client meetings providing security status reporting and make recommendations for improvements where required.
• Understanding OT security concepts and best practices.
• Participate with clients (as needed) and senior management to review, assess and provide security oversight.
• Serve as a Subject Matter Expert on information security internally and client facing.
• Proficient in monitoring various security administrative consoles as well as IT related administrative consoles in an effort to determine root causes for security events (Next-Gen FW, Remote Access VPN, Anti-Malware, Anti-spam, endpoint hardening).
• Creatively and independently provide resolution to security problems in a cost-effective manner.
• Assess and communicate any security risks associated with any purchases or practices performed by the company.
• Act as 3rd tier support for network infrastructure resolution issues, remaining a level of professionalism and customer service delivery.
• Liaise with Development, Infrastructure, DB admins and Network Administrators in implementing and enforcing security technical best practices.
• Be an active policy governance and compliance agent and liaison in order to expand culture of security awareness throughout BGIS.
• Keep informed on trends and issues in the security industry, including current and emerging technologies.
• Understanding and knowledge of Cloud (Azure, AWS, etc) / F-SSO security practices.
• Experience in dealing with 3rd party vendors and/or service providers.
  
  
  

Security Planning and Implementation

• Review, create, promote and deploy IT Security best practices addressing Governance and Compliance requirements.
• Participate in security initiatives and proof of concepts with vendors, utilizing critical analytical skills to advise management on best solution fit into BGIS environment.
• Participate, where required, in client meetings providing security status reporting and make recommendations for improvements.
• Experience or understanding on Security Architectural concepts and requirements.
• Participate with clients and senior management to review, assess and provide security oversight.
• Experienced in leading or participating teams.
• Applying security best practices and architectural recommendations as they align to written policies, guidelines or procedures.
• Provide continual updates to technical security policies to help enforce written documented security policies and guidelines.
• Liaise with business groups, Infrastructure teams, DB admins and Network Administrators in implementing and enforcing security technical best practices.
• Remain informed on trends and issues in the security industry, including current and emerging technologies.
• Experience with SDLC security practices and code reviews.
• Experience in addressing and mitigating Audit, Compliance (SOX, PCI, SSAE, etc) findings.
• Experienced with Incident Management practices and procedures.
  
  
  

Knowledge & Skills

• College Diploma in related field of expertise plus 3-5 years or having 5 – 10 years in IT Security with related studies.
• CISSP considered a strong asset, with other Security industry technical certifications (CISM, CCSP, GIAC, Security+, OSCP) also helpful.
• Evaluate, test and assist in the selection of manual and/or automated security control solutions that promotes the safeguarding of client assets, including monitoring compliance with approved processes.
• Knowledgeable and experienced with CAB process and requirements.
• Experienced with Cloud Security practices (Azure, Amazon, etc.)
• Knowledge or experience with Cloud / SaaS Applications and Services.
• knowledge and understanding of FSSO / SSO.
• Knowledge of SIEM / MDR / Mail managed services.
• Knowledge and experienced with network security services, including: IAM, DLP, AV, NAC.
• Knowledge or experience with software, especially software development.
• Knowledgeable with managing and dealing with internal/external clients and vendors.
• Able to work in a start-up role and willingness to be hands-on, lead and/or manage teams.
• Excellent communications skills, with the ability to explain technical concepts to a non-technical audience.
• Leadership and technical drive required across multi-functional teams and departments.
• Ability to work effectively in a team environment.
• Experienced in developing security presentations to Clients and Management.
• Knowledgeable working in LAN/WAN technologies, TCP/IP stack, OSI layer.
• Knowledge of security attack methodologies and understanding the anatomy of an attack.
• Proficient understanding of core Microsoft technologies such as Active Directory, MS Exchange, O365.
• Comfortable and adaptable to taking on various roles, both on a technical level and operational level.
• Demonstrated technical aptitude in compromise kill-chain cycles, innate ability to think like a malicious actor.
• Understanding Security Forensics practices and methodology.
• Strong analytical and problem-solving skills, excellent interpersonal skills.
• Self-motivated individual, with a willingness to learn and apply new information.
• Excellent understanding of project management principles.
• Excellent verbal and written communication skills.
• Strong team player.
  
  
  

Licenses and/or Professional Accreditation

• GIAC, CISSP, Security+ or other Information Security certificates.
  
  
  

At BGIS we believe that diversity and inclusion is a key business driver, such that we never lose sight of its importance as it is woven into the fabric of our organization. We are committed to maintaining a barrier-free recruitment process by providing equal employment opportunities through recruiting and retention of individuals of all backgrounds. We recognize that promoting diversity is an essential component of our continuing pursuit for organizational success!

BGIS is an equal opportunity employer and we welcome you to apply for a position with us! If you require accommodation during the recruitment process, please contact us at askHR . Upon request for accommodation, we will consult with the applicant in question and provide, or arrange for the provision of, a suitable accommodation in a manner that takes into account the applicant’s accessibility needs due to disability.