Description
Role:
To be the trusted expert on IS Risk Assessment Consulting topics, providing support and interacting with Department heads, the company's IT staff and Business IT user community.
Tasks include:
Identify new IS Security Risks and develop appropriate mitigation activities
Support project-based activities by providing advice, consultancy and guidance
Perform analysis to identify security requirements for business initiatives
Evaluate the adequacy of security controls
Identify and provide recommendations to address security deficiencies
Perform Security Controls analysis, to assess Security Controls adequacy and effectiveness
Collaborate with the team performing asset threat assessments, vulnerabilities, associated risks and risk mitigation controls.
Requirements:
5+ years of experience in IT including 3 years of experience of IT Risk Assessment, IT audit or IT Security Process Controls
Profound IS Security Technology knowledge combined with a basic understanding of the overall context of business processes and the impact IS security technologies have on them
Full project life cycle experience from planning through to execution
Experience of identifying and resolving IS security technology related problems and issues
Professional attitude, analytical thinking, global perspectives, effective communication skills (written and oral), team player, self-organization.
Understanding of IS operational processes and best practices
Certificate(s) such as CISSP, CRISC, CISA, CISM, ITIL, CGEIT or comparable would be an asset
Fluent English, experience in leading a high performing team and good communication skills