Security Specialist

Quebec (QC)  ‐ Onsite
This project has been archived and is not accepting more applications.
Browse open projects on our job board.

Description

Security Specialist - Financial Services, Technical and GRC
Montreal, Canada
6 months
£500 (neg) per day plus expenses covered

My managed service provider client require a security specialist for a 6 month contract working onsite with their Financial Services Client.

Key Purpose of the Role:

" To support the in-house security technologies to ensure that the platforms are active and delivering the most efficient protection and value.
" Monitor, maintain and manage each the Security Platforms on a daily basis working with 3rd Party Vendors to address Hardware/Software Issues.
" Working with and analysing security related output from in-house Security Technologies.
" Assisting in Security Incident Response activities, working with IT analysts to record and report incidents. Work incidents from inception to remediation.
" Management of Vulnerability and Application Scanning.
" Cyber Threat analysis, reporting and remediation advice.
" Recognise potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information.
" Documenting and communicating alerts to IT groups regarding intrusions and compromises to their network infrastructure, applications and operating systems.
" Assist with implementation of counter-measures or mitigating controls.
" Provide information to assist in creating and maintaining work instructions and other similar documentation.
" Role works closely with Enterprise Security function covering multiple Security disciplines with opportunities both within this group and later other groups of the Security team to grow, diversify and develop

Key Responsibilities:

" Contribute to the development; implementation and operation of a Security focused Service Model as the basis of operational activities.
" Implement world class security services.
" Ensure that any strategy set within this Security function, adheres to the Corporate Security Policy as well as Compliance standards such as PCI DSS, FSA, ISO/IEC 27001 and SOX.
" Implementation and operation of a change and configuration model which ensures risks are mitigated and appropriate approvals are in place before proceeding.
" Ensure all operational processes implemented, follow industry best practices such as ITIL, Cobit and ISO/IEC 27001.
" Implementation and operation of Threat and Vulnerability program, ensuring that emerging weaknesses and risks are analysed and mitigated in a timely manner
" Event Management, including monitoring and log analysis strategy and operation.
" Documentation of Policies and Procedures that make up the Security model.
" Ensuring the Security Technologies are operating efficiently and effectively and are capable of delivering the service and levels of protection expected.

Demonstrable skills/capabilities:

" Valid industry standard qualification eg CISSP Certification
" Have abilities in the following compliance areas eg ISO27001, CoBIT, PCI-DCSS, SOX.
" Working within Security Operations or similar department.
" GRC knowledge and advisory skills
" Experience providing governance and validating compliance of internal and external teams providing Security services.
" Effective reporting with metrics demonstrating an increase in maturity and reduction in risk.
" Security Specialist will possess good oral and written communication skills; they should also be a capable of effectively monitoring and collecting information on security incidents from large organisations.
" Excellent knowledge of Windows, Unix, Networks, Firewalls and IDS monitoring and security practices
" Experience working with teams responsible for Security device management, Network security and zoning, Security monitoring, Host protection, Messaging security, Database security, Virtualisation security, Cloud security, Data loss prevention, Mobile security, Web & Internet security and Messaging security.
" Experience working with security monitoring and correlation of events.
" Experience in the Payment Processing Industry, card processing and security of financial networks.
" Operational experience with following security areas:
" Anti Malware
" DDoS
" IDS/IPS
" SIEM
" Vulnerability Scanning
" DLP

Advanced Resource Managers IT Limited operates & advertises as an Employment Agency for permanent positions and as an Employment Business for contract/temporary positions.

Start date
ASAP
Duration
6 months
From
ARM Cyber Security
Published at
31.01.2016
Project ID:
1061268
Contract type
Freelance
To apply to this project you must log in.
Register