Information Security Analyst Advisory Jobs in Nova Scotia

Working knowledge of industry reports, certifications (ISO, SOC, etc.), and ability to interpret standards, policies, and supporting materials.

Job Location: We have requirements in Toronto, ON / London, ON / Winnipeg, MB; locations.

Remote-Work Options: Fully remote – unless attending in-office meetings.

Experience in third-party risk assessments and methodologies.

Experience with security and privacy risk assessments and audit processes.

Excellent knowledge of security technologies and tools.

Understanding of lifecycle data management (collection, use, transmission, disclosure, and retention of personal and/or confidential business information)

Knowledge of e-learning applications and methodologies, student information systems and corporate applications (finance, payroll, etc…) while not required, is highly desirable.

CISSP, or related security or IT certifications and/or courses are an asset

Highly developed written and verbal communication skills, as well as analytical and problem-solving skills

Actively ensure appropriate administrative, physical and technical safeguards are in place to protect member’s information assets from internal threats

Provide training to School Board IT staff on data and information security

Experience interpreting and consulting around meeting the requirements of the Information Security Policies and Standards for a large organization

Bachelor’s degree from an accredited college or university or equivalent experience

Holds at least one information security certification or actively working towards at least one security certification (e.g. CISSP, CISM, CASP+))

Strong working knowledge of threat risk assessment methodologies NIST, ISO, IRAM2, etc.

Excellent communicator including demonstrated presentation and negotiation skills

Experience with security solutions for multi-tier cloud-based applications (Microsoft Azure, GCP, AWS, etc.)

5+ years experience in Information Security or related field Experience with the ISO 27001certification process and management of ISMS

Familiarity with cloud-hosted media management systems, preferably on AWS

Ability to work fully remote

Knowledge of security frameworks and standards, such as NIST and CIS

Strong analytical and problem-solving skills Excellent communication and interpersonal skills

Bachelor’s degree in Computer Science, Information Technology, or related field

Provide training and advise key stakeholders on requirements, processes, standards, and best practices around application security and information risk management.

IT risk management experience in the areas such as vendor risk management, project risk management, IT audit, or IT controls assessment.

Strong communication, presentation, time management, and facilitation skills to all levels and audiences.

Develop and enhance security requirements for traditional and DevOps environments.

Experience in application security including secure software assessment tools like SAST, DAST, SCA, IAST, RASP, etc.

Experience in developing and/or securing CI/CD pipelines using tools like GitHub Actions, Azure DevOps, Jenkins or similar tools.