Information Security Operations Specialist Jobs

Excellent verbal and written communication skills; interpersonal skills; time management and organizational skills.

Define security requirements by evaluating business strategies; researching information security standards; reviewing architecture/platform; identifying integration issues.

5 - 10 years of experience in the cyber security field that encompasses the following:

Bachelor’s degree in an Information Technology related field of study or equivalent experience.

Certifications in cloud computing for Amazon Web Services and Azure is considered an asset such as AWS Solutions Architect Associate

Certifications in one or more of the following are required: CISSP, CCSP, ISSAP, SANS, GICSP, OSCP, ISACA, SABSA, AWS, Azure Security

Knowledge and experience developing and working with security architecture, and IT management frameworks such as SABSA, and CoBIT

Implement tools and processes to manage workflow and materials related to the information security risk management

Strong understanding and ability to interpret and communicate risk management concepts

Attractive comprehensive compensation packages and benefits

Membership in a world class defined benefit pension plan

Deep knowledge of the methodologies, frameworks, and processes in Information Security domain

Develops and implements changes to existing procedures for secure management of data and information systems access controls.

Employee & Family Assistance Program

Extended health & dental coverage

Reviews and assesses operational processes both current and planned to ensure alignment with IHA security policy and industry best practice.

Conducts periodic compliance reviews, risk analysis, electronic audits and ongoing investigations.

Performs other related duties as assigned.

• Knowledge of security industry standards and certification frameworks such as ISO27001, PCI, HIPPA etc.

• In dept knowledge of SMTP, SSL/TSL

Senior Information Security Specialist (Cloud and application security)

• BS Degree in Information Security, Cyber Security, Computer Science or equivalent

Meet all PCI and Audit requirements concerning Vulnerability Management.

Work experience in Vulnerability Management and Penetration Testing planning.

Knowledge of Risk-Based Vulnerability Management (RBVM) software and methodologies.

Experience in developing and maintaining standard operating procedures for vulnerability management.

Experience with multiple cloud providers (Azure, Google, Amazon) and knowledge of how to identify and improve vulnerabilities on these platforms.

Become an important player to the Moneris Vulnerability Management strategy and Cyber Security vision.

- Experience working within risk management and audit

- 3-5+ years of experience working within a technical security background

- Strong communication skills and has the ability to work cross-functionally

- Knowledge of security cloud-based environments such as AWS and Microsoft Azure

- Has worked within compliance previously and understands the foundations of security

- Completed documentation regarding security compliance and protocols

Group benefits, RRSPs, Employee Assistance Program, Employee Fitness Program

The following Certifications would be considered an assets

Secret Clearance or eligibility for one

Certified Information Systems Security Professional (CISSP)

Certified Information Systems Auditor (CISA)

ISO 27001 Implementer or Auditor

Familiarity with information security documentation requirements, certification and accreditation processes, and general reporting requirements for ISO 27001 industry security standard

Support in the development of Avidbots Information security policies, procedures, and standards to meet compliance responsibilities.

Provide information security subject matter expertise as required in support of product development requirements.

Working knowledge of system and network security engineering best practices

Professional certification in Information Security (CISSP, SSCP, CCSP)

Strong analytical skills with the ability to problem solve complex information security issues

Manage, measure, and audit the Managed Security Services vendor to established contractual and compliance requirements for security monitoring

Collect, generate, monitor and analyze IT operations security metrics to measure the effectiveness of the IT security management processes

Serve as internal technical point of contact with external managed security monitoring service in incident handling response for information security incidents

Manage, conduct and optimize vulnerability scans on IT infrastructure and systems

Strong leadership and organizational skills, proven by on-time, on-budget delivery of complex, multidisciplinary projects

Knowledge of security, privacy and IT governance frameworks and legislation, such as NIST 800-53, ISO27001, PCI-DSS, privacy legislation.

SIEM (security incident event management) experience (splunk, arcsight, q-radar, sentinel one)

Play a role in day-to-day security operations functions such as threat intelligence and management of SIEM, WAF and EDR tools.

Experience in security incident response for mission-critical systems in a 24/7 environment.

Success depends more on attitude and experience than years on the job.

Knowledge of the current threat landscape and awareness of those threats that may affect the platform.

WAF (web application firewall) / internet security capabilities