Information Security Analyst Jobs

Hiring Information Security Analyst (CISSP / CISM / CIPP and COBIT, ISO 27001, GDPR, CCPA, HIPAA, SOC, etc.). Professionals suitable for the below opportunity may send their up-to-date resumes to [email protected].

Requirement Summary

• Job Duration: Initial contract of 6 months, with good possibilities of further extension.
• Remote-Work Options: Fully remote – unless attending in-office meetings.
• Job Role/Title: Information Security Analyst
• Job Location: We have requirements in Toronto, ON / London, ON / Winnipeg, MB; locations.

NOTE: The successful candidate (Information Security Analyst) will be required to undergo the Enhanced Reliability Security Clearance process to access Protected-B information.

Ideal Resource for this Role

• Working knowledge of IT Audit processes, including design of control test procedures
• One or more of the following certifications is required: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Privacy Professional (CIPP), or equivalent.
• Excellent communication and interpersonal skills, with the ability to communicate complex technical issues to non-technical stakeholders.
• Meticulous attention to detail in assessing risks, investigating gaps, and developing policies and procedures.
• Strong analytical and problem-solving skills.
• Bachelor’s degree from an accredited college or university or equivalent experience.
• Experience in third-party risk assessments and methodologies.
• Proficiency in security frameworks such as NIST Cybersecurity Framework, COBIT, and ISO 27001.
• Demonstrated ability to foster relationships and build trust.
• Experience with security and privacy risk assessments and audit processes.
• Strong problem-solving and analytical skills.
• Strong understanding of data protection regulations, privacy principles, and industry standards.
• Excellent knowledge of security technologies and tools.
• High ethical standards and a commitment to maintaining the confidentiality and integrity of sensitive information.
• Ability to work independently and deliver on commitments.
• Minimum 5+ years of experience as an information technology professional with at least three of those in information security and privacy, demonstrating the accountabilities as listed above.
• Ability to work collaboratively with cross-functional teams and lead security and privacy initiatives.

***

Role/Job Summary: The Information Security and Privacy Senior Analyst is part of the first line of defense, working with both internal and external partners to help them understand and manage information security and privacy risks that could harm our organization. The successful candidate will play a crucial role in our third-party risk assessments, ensuring the confidentiality, integrity, and availability of information assets while maintaining compliance with relevant privacy regulations.

The role will be supporting mainly the initiative to assess and maintain the organization’s requirements to continuously assess and monitor its third parties with a focus on evaluating and mitigating their security and privacy risks.

This is a senior security role that reports to the Director of Security Assurance within the Information Security Canada group.

In addition to the general accountabilities below, we are particularly interested in hearing from candidates with the following specialties:

• Strive for continuous learning.
• Assess and manage security and privacy risks associated with third-party vendors and partners. Monitor and ensure third-party’s compliance with relevant data protection regulations (e.g., GDPR, CCPA, HIPAA) and industry-specific standards.
• Conduct privacy and security risk assessments to identify and mitigate data security and privacy risks.
• Influence stakeholders and drive results.
• Be customer-focused and delivery-oriented to drive change in ambiguous situations. Work proactively with internal clients to understand their needs and deliver creative solutions.
• Demonstrate a strong desire to work collaboratively in an unconventional and Non/linear way to problem-solve unique solutions.
• Develop, review, and update information security and privacy policies, standards, and procedures to align with best practices and regulatory requirements.
• Working knowledge of industry reports, certifications (ISO, SOC, etc.), and ability to interpret standards, policies, and supporting materials.

*** How to Apply: Please email me your up-to-date Resume/CV at [email protected]. We appreciate all the applicants for their interest in working with us, however, only those candidates shortlisted for the next steps in the hiring process will be contacted. Thank you, and have a wonderful day!! :)