LeverageTek is actively seeking an Information Security Risk Analyst for a 3-month contract with its Ottawa-based customer.
Work Location
Hybrid (1 to 2 days per week onsite)
Key Tasks
- Participates in the management of security risks related to third-party services and/or vendors
- Participates in risk management activities for new and existing systems, applications, infrastructure, customer requests, and programs to identify security exposures and associated requirements
- Develops and maintains an understanding of the technical environment, as well as the functional requirements to better understand how security safeguards and technologies can be risk assessed
- Contributes to the communication and enforcement of security policies and procedures across the organization
- Contributes to the development and delivery of security awareness training programs for all employees, Council, and third-party contractors
- Supports the implementation of phishing awareness training as well as testing programs to enhance organizational vigilance against cyber threats
- Supports the audit program, verifying compliance and identifying opportunities for improvement
- Assists in the management of a vulnerability plan, tracks new risks, or the impact on existing risks, and ensures those risks are communicated to stakeholders
- Supports business partners in conducting impact assessments and developing business continuity plans
- Provides constructive verbal and written feedback in response to a wide variety of security requests and questions
- Participates in information security projects as required
- Experience with experience with creating Cyber Phishing campaigns
Key Qualifications
- Minimum 5 years of experience conducting security risk assessments, outlining Risk and Recommendations
- Strong SDLC understanding and experience collaborating with Application Development and Infrastructure teams along with other stakeholders to evaluate and mitigate risks in systems and applications
- Experience supporting the Lead in conducting thorough security risk assessments and maintaining the security risk register
Qualifications
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field of study and infrastructure professionals within a technical environment
- Experience in utilizing cybersecurity risk assessment methodology, in system, application, network assets, including cloud services and /or vendors
- Knowledge of information security frameworks (e.g., NIST, ISO, COBIT)
- Demonstrated experience working in an agile environment
- Knowledge of Cloud technologies
- Strong experience with using on-line collaboration tools
- Experience with project coordination and usage of relevant project coordination tools an asset
Assets
- Knowledge and/or experience in business continuity methodology is an asset
- Cybersecurity certifications such as CISSP, CRISC, ITIL, SANS considered an asset
About LeverageTek Staffing Solutions
Thank you for taking the time to apply! Since our company’s inception in March 2003, LeverageTek IT Solutions has worked resolutely to become one of the industry’s most recognized and trusted suppliers of technology staffing and business consulting services. With hundreds of successful engagements to our credit with many of Canada’s leading public and private sector organizations, we are the experts in identifying, deploying, and supporting IT and business talent on a contract, contract-to-hire, and permanent basis. We work with customers across all sectors including academia, aerospace, aviation, finance, government, health care, high tech, military, not-for-profit, and more.
Our responsive service and ability to deliver the right fit, on time and within budget, typically leads to repeat engagements and a long-standing relationship.
Accessibility accommodations are available upon request.