Cybersecurity Governance Specialist Jobs

Individually we are people, but together we are Aviva. Individually these are just words, but together they are our Values – Care, Commitment, Community, and Confidence.
We have an outstanding opportunity to onboard a Security Governance Specialist to be part of and join our Cyber Security team. In this role, the successful candidate is encouraged to lead activities related to governance and compliance of Aviva Canada’s Cyber Security programs efficiently.
You are inquisitive, forward-thinking and are passionate about new technologies as well as being resourceful.
Does this sound like you?!
What You’ll Do
KRI’s, KPI’s & Security Dashboards:

• Support the development and maintenance of Key Risk Indicators (KRI’s) of the cybersecurity dashboard for the Cybersecurity Governance program and initiatives.

Phishing Program

• Follow through and coordinate on phishing incidents within Aviva Canada’s environment for any required remediation and resolution.
• Review results from monthly phishing exercises & creation of statistics;
• Lead the delivery of the monthly phishing program;

Education & Awareness Program

• Coordinate & lead Cybersecurity Awareness Month campaign.
• Development, review & localize yearly Security Essentials training program;
• Build, review & localize monthly cybersecurity education/awareness content and campaigns;

Managing And Leading Cybersecurity Governance Functions

• Coordination of results with Vulnerability Management team from third-party testing service;
• Leading project management efforts for Cybersecurity Governance Team initiated projects;
• Perform policy reviews to assess gaps and currency;
• Assess roadmap and incorporate NIST Framework into cybersecurity Governance program, while aligning with the ISF standard;
• Collaborate and coordinate with Risk Management on annual risk control assessments to recommend enhancements and maintain oversight on cybersecurity governance, risk and compliance processes;
• Provide collaborative support for other security teams and related operational tasks;
• Participate in Security reviews to raise awareness & ensure cybersecurity risks are addressed and resolved;

What You’ll Bring

• Data Loss Prevention;
• 5+ years of related Cybersecurity Governance experience;
• Vulnerability Management;
• Cybersecurity education & awareness;
• Security Governance frameworks (OSFI);
• SANS Security certifications;
• A good understanding of the Insurance or Banking industries;
• 3rd Party Security risks;
• CompTIA Security+
• CISA/CISM/CRISC;
• Cyber Risk Management, and related professional experience within Cybersecurity Governance
• Previous experience with cybersecurity-related programs and processes;
• Professional Cybersecurity & Cyber Risk Management certifications, including:
• CISSP;
• Security Dashboards;
• General knowledge of data privacy practices and laws (i.e. PIPEDA, GDPR);
• Outstanding knowledge of areas in technology and cybersecurity concepts;
• Practical experience in applying standards and frameworks (i.e. NIST, ISF);
• Phishing;
• University degree in Computer Science, Computer Engineering or Information Security

What You’ll Get

• We’ll support your professional development education.
• Competitive rewards package including base compensation, eligibility for annual bonus, retirement savings, share plan, health benefits, personal wellness, and volunteer opportunities.
• Exceptional Career Development opportunities.

Additional Information: Aviva Canada has an accommodation process in place to provide accommodations for employees with disabilities. If upon commencement of employment you require a specific accommodation because of a disability, please contact your Talent Acquisition Partner so that an appropriate accommodation can be arranged. This process applies throughout your career with Aviva Canada.