Description
Bilingualism: Desirable, French requiredHourly rate is open and flexibleRemote work: Until further notice. Candidate must be able to report to the office as needed by the team.The mandate:
Ensure that risk considerations are addressed in each phase of the system development and deployment lifecycle;Assess the risk posture of one or more business units;Produce, maintain and communicate indicators (progress, performance, risk, etc);Proactively propose solutions to reduce the risk of future breaches;Recommend security measures in applications and infrastructure components by exercising judgment within the framework of existing policies and industry best practices.Here's how you can make an impact on our customer's organization:
Inspire a positive work environment and assist as a champion and innovator in teamwork and team support;Have a good understanding of security architecture and design to identify and recommend improvements in methodologies and processes used within the business units and technical teams you support;Be able to provide tactical and strategic direction and guidance to help technical teams achieve acceptable security risk postures;Build trusted relationships with technology teams and be able to provide them with application and infrastructure security information to ensure secure delivery cycles;Facilitate risk assessments, support teams in remediation of vulnerabilities, and provide security exception review;Have a detailed understanding of the technology components maintained by the teams you support and their security posture;Participate in complex projects and be able to present complex security reports, analyses and assessments to both technical and non-technical professionals.Required Skills:
Completed Bachelor's degree, related to the industry, and seven (7) to ten (10) years of relevant experience;Minimum of three (3) to five (5) years of experience in information security (authentication, authorization, access control, audit, cryptography, etc.);Experience in risk assessment with recognized tools;Good knowledge of processes for integrating security assessments into the lifecycle process of enterprise services (Servers, desktops, applications, network components, etc);Practical understanding of application architecture and related technologies;Team player, interpersonal skills, good communication skills and customer service orientation;Ability to popularize risk and make presentations to different audiences (technical, business...);Bilingual (spoken/written) French and English