Candidate's must be working presently in Ontario. Compensation will reflect the individuals skills. KEY SKILLS: Information Security consulting; vulnerability assessment; policies and procedures; network and application architecture; audit; Firewalls; J2EE; CISSP DESCRIPTION: Security Analyst / Advisor This person will conduct Information Technology assessment to identify issues, threats, vulnerability's and risks for new high-risk projects within a major financial institutions group of companies and its partners. The assessments will include Business Requirements, Design, Product, Process, Implementation, Vulnerability assessments and penetration tests. The individual will bring to our internal clients in depth knowledge on security practices, IT threats and vulnerability's and senior level competency's around operating systems (UNIX and NT), Development Languages, Databases, Network Architecture and Security Infrastructure. Aside from providing real world practical solutions this position will also include awareness activities, research projects and serious investments in learning and exploration. Roles & Responsibilities - review project plans for security impact - advise development staff on appropriate architecture, practices and procedures and assist them in implementation (ie. proper lock-down of internet servers) - coordinate enterprise-wide security activities with the Bank - advise management on new security vulnerabilities and actions to mitigate them - develop and report security readiness metrics - develop and conduct security awareness programs - evaluate and implement new information security technology and infrastructure (hardware and software) - support corporate information systems audits and regulatory reviews Qualifications - Bachelors Degree in Science or Engineering, preferably with a Major relating to Computer Systems - an MBA would be preferable - 8+ years of IT experience (network systems design, operating systems, business continuity planning, internet vulnerability assessment and cryptography) - 4+ years as a Security Analyst in a large organization (financial institution preferred) - CISSP in preferable - excellent verbal and written communication skills
