Information Systems Security Analyst - Nete

Information Systems Security Analyst
Weir Marine Engineering
Gatineau, Quebec
Hybrid
Purpose of Role: The Information Systems Security Analyst will be a member of the IT Security Group within the Information and Communication Systems (ICS) Section, and will report to the IT Security Group Leader.
Candidate must have a Canadian Citizenship and living in Canada a minimum of 10 years in order to obtain a government security clearance required for the position.
Why choose Weir:
Be part of a global organization dedicated to building a better future: At Weir, the growing world depends on us. It depends on us constantly reinventing, quickly adapting and continually finding better, faster, more sustainable ways to access the resources it needs to thrive. And it depends on each of us doing the best work of our lives. It’s a big challenge – but it is exciting.
An opportunity to grow your own way: Everything moves fast in the dynamic world of Weir. This creates opportunities for us to take on new challenges, explore new areas, learn, progress and excel. Best of all, there is no set path that our people must take. Instead, everyone is given the support and freedom to tailor-make their own career and do the best work of their lives.
Feel empowered to be yourself and belong: Weir is a welcoming, inclusive place, where each individual’s contribution is recognized and all employees are encouraged to innovate, collaborate and be themselves. We continually focus on people and their wellbeing. We believe in fairness and choose to be honest, transparent and authentic in everything we do.
Key Responsibilities:

• Developing, reviewing and/or evaluating security documentation for shipboard Platform Technology (PT) systems;
• Becoming highly knowledgeable about DND policies, procedures and methodologies related to Information Systems Security, Cybersecurity and Risk Management Processes, Cyber Material Assurance, and Security Assessment and Authorization (SA&A), so as to be able to apply this knowledge to projects and share it with colleagues and clients;
• Investigating and assessing the security posture of existing or proposed systems, networks or communication systems, identifying potential gaps and vulnerabilities, and proposing more secure configurations or mitigation measures to address the identified gap areas and/or vulnerabilities;
• Preparing technical reports in English with the results of investigations and analysis;
• Becoming highly knowledgeable with the NIST RMF (and associated references) in order to be able to apply the DND Cyber Security Risk Management Process (CS RMP);
• Safety First: Demonstrate 100% commitment to our zero harm behaviors in support of our drive towards developing a world class safety culture.

Job Knowledge/Education and Qualifications:

• Theoretical and technical understanding of computer security, application level security, systems security and network security;
• Experience with DND, RCMP and/or other government department Security Assessment and Authorization (SA&A) processes for information systems would be an asset;
• Experience in developing and evaluating security documentation such as Threat and Risk Assessment (TRA), Security Architecture, Security Concept of Operations (ConOps), Security Test and Evaluation (ST&E) plans, etc.;
• Recognized IT Security certifications (e.g. CISSP, CISM and/or CISA) would be highly desirable.
• Experience with the Harmonized Threat and Risk Assessment (HTRA) methodology would be an asset;
• Knowledge of, and experience in, implementing ITSG-33 Risk Management Framework and/or the NIST Special Publication 800 Series Risk Management processes;
• Experience with system and software engineering, and system lifecycle processes would be an asset;
• Experience in developing and evaluating security documentation for information systems, and industrial control systems, in a commercial or government organization with detailed processes for managing and controlling information systems security risks;
• Experience with DND systems and networks, and/or with the Navy or marine environment, would be an asset; and
• Experience with the application of IT security to mechanical / electrical / control systems with IP-based components or with interfaces to IP networks would be an asset;

What we offer you:
Weir Marine Engineering (WME) has managed the Naval Engineering Test Establishment (NETE) on behalf of the Government of Canada since 1953. Through this association, WME has developed a unique capability to provide multidisciplinary engineering, testing and consulting services to government and industry.
Benefits

• Employee & Family Assistance Program (EFAP)
• Self-directed Mentoring
• Reimbursement for a professional membership
• A Wellness Spending Account to aid in your wellness journey
• Comprehensive Family Medical, Dental and Vision coverage as well as:
• Flexible, compressed work schedules, work from home or office
• Competitive compensation
• Education Assistance Program
• Access to development resources to enhance your skills and/or advance your career including:
• Vacation, personal days, holidays, and parental leaves
• Medical Travel Insurance
• A Registered Retirement Savings Plan that includes matching company contributions that also includes access to Financial Advisors providing investment advice and comprehensive financial planning

Under the Policy on COVID-19 Vaccination, new employees are required to be fully vaccinated as a condition of employment, unless accommodated due to certified medical contraindications, religion, or other prohibited grounds under the Canadian Human Rights Act.
Founded in 1871, Weir is a world leading engineering business with a purpose to make mining operations smarter, more efficient and sustainable. Thanks to Weir’s technology, our customers can produce essential metals and minerals using less energy, water and waste at lower cost. With the increasing need for metals and minerals for climate change solutions, Weir colleagues are playing their part in powering a low carbon future. We are a global family of 11,000 uniquely talented people in over 60 counties, inspiring each other to do the best work of our lives.
For additional information about what it is like to work at Weir, please visit our Career Page and LinkedIn Life Page.
Weir is committed to an inclusive and diverse workplace. We are an equal opportunity employer and do not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, veteran status, disability, age, or any other legally protected status.
#weirmarineengineering
REFERENCE: 06-619