Our client is a leader in the energy sector. They are looking for two specialists focused on threat hunting and security information and event management (SIEM) tools.

 

The position is based out of Mississauga and is hybrid (2 days in office)

 

The Specialist, Information Security coordinates, plans and/or organizes the development and delivery of Information Security services internally and externally. Not only will the Specialist play a key role in maintaining the integrity of vital computer applications and information systems, they will also support executives and managers in fulfilling their due diligence responsibilities regarding Information Technology Security.

• Investigate all identified security breaches, or concentrated attempts at breaching security.
• Report the results of Technical Information Security assessments with conclusions, recommendations for improvement, planned management actions, follow-up status to internal and external stakeholders.
• Keep abreast of developments in the areas of geopolitics; cyber threats; legal, regulatory, corporate requirements; technological developments; and best practices in the Information Technology and Corporate Security field.
• As required, will lead projects, assign work, resolve problems and assess performance.
• Will have access/handle confidentiality issues, requiring high level of trust and integrity.

• Oversee/monitor access logs and privileges.
• Deliver or conduct the delivery of Information Security and contingency planning and disaster recovery programs for business units/departments across the companies system.
• Review and assess all requests for Exception and/or Exemption to policy.
• Contribute to the development of Information Security standards and procedures for business units consistent with corporate security objectives and generally accepted and leading-edge Information Security practices and professional security standards and in coordination with IT Process Development Leaders and the Information Security Manager.
• Deliver the Information Security programs, including Information Security framework for applications, tools, anti-virus, encryption, and fire walls, implementation support, identification of system vulnerabilities, system assessments, Information Security advice and consultation, business resumption planning and disaster recovery planning.
• Provide input to supervision on all areas of Information Security.
• Contribute to the development/delivery of awareness training and general Information Security education.
• Report the results of Technical Information Security assessments with conclusions, recommendations for improvement, planned management actions, follow-up status to Supervisor/Management Team.
• Review new and updated systems/applications to ensure that security is configured properly.
• Work with business units to determine data classification and ownership/custodianship.
• Ensure there are adequate security tools available for performing system reviews.
• Perform other duties/tasks/projects as required or assigned.