Message Image  

Jobs

Information Security Manager - NTT Data

Date: Aug 22, 2019
Location: Vancouver, BC, CA
Company: NTT DATA Services
Req ID: 57688 
Click here to apply 

At NTT DATA Services, we know that with the right people on board, anything is possible. The quality, integrity, and commitment of our employees are key factors in our company’s growth, market presence and our ability to help our clients stay a step ahead of the competition. By hiring the best people and helping them grow both professionally and personally, we ensure a bright future for NTT DATA Services and for the people who work here. 

NTT DATA Services currently seeks an Information Security Manager to join our team in Vancouver, British Columbia (CA-BC), Canada (CA).
Ensure the delivery of information security services to the customer is in compliance with the contract and any applicable standards and regulatory requirements (e.g., ISO 27001, PCI, SOX, FIPPA)
Collaborate with the client in the definition and implementation of information security policies, strategies, procedures and configurations. 
Participate with the customer in the strategic design process to translate security and business requirements into processes and systems
Evaluate new / emerging security products and technologies and make recommendations to customer leadership.
Identify, review and recommend information security improvements as they relate to the achievement of the customer’s business goals and objectives
Participate in internal and external audits for the customer (e.g., PCI, SOX, FIPPA) and coordinate information security services activities 
Manage and drive remediation efforts related to information security; remediation may be from incidents, penetration tests, vulnerability scans, internal/external audits and Critical Practice assessments
Identify information security weaknesses and/or gaps in the customer’s current operations and work with the customer to bring information security operations up to standards
Participate and represent IT Security in Delivery/Operational meetings.
Conduct an ongoing security awareness program for NTT DATA personnel supporting the customer.
Cultivate trusted partner relationships with account and customer; keep consistent and open dialogue to uncover issues, challenges, risks
Maintain an information security strategy (forward looking roadmap), for your customer, aligning services / portfolio components to the strategy
•8+ years of relevant experience 
•Risk Management skills including ISO 27001 competence, knowledge and experience
•Experience with information security internal & external audits, contract compliance, and quality initiatives 
•Significant experience in identifying and utilizing a global risk based management model.
•Knowledge and experience with Canadian data protection regulations (e.g. FIPPA)
Preferences:
•At least one of the following certifications: CISSP, CISM, SSCP, CEH, or CSSLP
•Undergraduate or graduate degree
•Breach/Incident Response and investigation experience
•Security/Consulting industry experience working in a customer facing role with customer relationship management experience at the senior level
•Familiarity with information security technologies and issues on multiple platforms
•Significant experience in application and integration of globally accepted security standards
•Advanced knowledge of server and desktop configurations to protect from unauthorized access and software invasion
•Strong understanding of networking technologies
•Advanced knowledge of network security- communications, computer system environments and related infrastructures
•Ability to work for a client and meet demands from client and Senior delivery staff
•Ability to manage multiple complex tasks
•Lead & Manages personnel related to security, compliance and operational functions for NTTDS and customer specific services. 
•Responsible for hiring, performance reviews, goal setting and overall functional direction of staff resources

This position is only available to those interested in direct staff employment opportunities with NTT DATA, Inc. or its subsidiaries.  Please note, 1099 or corp-2-corp contractors or the equivalent will NOT be considered. We offer a full comprehensive benefits package that starts from your first day of employment.                                                                                

About NTT DATA Services

NTT DATA Services partners with clients to navigate and simplify the modern complexities of business and technology, delivering the insights, solutions and outcomes that matter most. We deliver tangible business results by combining deep industry expertise with applied innovations in digital, cloud and automation across a comprehensive portfolio of consulting, applications, infrastructure and business process services.

NTT DATA Services, headquartered in Plano, Texas, is a division of NTT DATA Corporation, a top 10 global business and IT services provider with 118,000+ professionals in more than 50 countries, and NTT Group, a partner to 88 percent of the Fortune 100. Visit nttdataservices.com to learn more.

NTT DATA, Inc. (the “Company”) is an equal opportunity employer and makes employment decisions on the basis of merit and business needs.  The Company will consider all qualified applicants for employment without regard to race, color, religious creed, citizenship, national origin, ancestry, age, sex, sexual orientation, gender identity, genetic information, physical or mental disability, veteran or marital status, or any other class protected by law.  To comply with applicable laws ensuring equal employment opportunities to qualified individuals with a disability, the Company will make reasonable accommodations for the known physical or mental limitations of an otherwise qualified individual with a disability who is an applicant or an employee unless undue hardship to the Company would result.

 
Job Segment: Information Security, Information Technology, IT Manager, Consulting, Manager, Technology, Management

Senior Cyber Security Advisor - Decision Point Cyber Security Advisors

Decision Point Cyber Security Advisors Inc. is focused on helping our clients deal with today's complex and ever-changing Cyber Security challenges. With the rapid growth we are experiencing, we are looking for the right individual who is looking to work with a progressive and vibrant advisory services firm.
For more details and to apply for this role, click on the following link - https://www.dpadvisors.ca/careers

Senior Systems Auditor - Wawanesa Insurance

Wawanesa Mutual Insurance is one of the largest property and casualty insurers in Canada with $3 billion in annual revenues and assets of more than $9 billion.

We are currently looking for dedicated, driven, and enthusiastic individuals who thrive in an environment that welcomes change and are looking for an opportunity for diverse experience, advancement on a growing team.

Job Overview
Our Internal Audit Department is continuously working towards enhancing audit services in support of new strategic initiatives. These initiatives have led to rapid company growth and the creation of new roles within the Internal Audit Department at our Executive Office. We are seeking candidates that are interested in joining a team of motivated and skilled audit professionals. If you want to be challenged and offered opportunities to grow, consider this the next exciting and challenging step in your career.

 For more details and for applying click on the following link: https://jobs.wawanesa.com/job/Winnipeg-Sr-Systems-Auditor-MB-R3C-3P1/534509417/

Senior Manager, Data-Driven GRC - wegalvanize.com

The Galvanize Impact

We get to make cool software, work with the best people, tackle strategic business challenges and build awesome careers. But, most importantly, we get to see our work strengthen organizations to do heroic work and change the world for the better - all while having a lot of fun in the process.

Galvanize was founded in 1987 in Vancouver, Canada, and has since grown to include seven global offices. We build award-winning, cloud-based security, risk management, compliance, and audit software used by some of the world’s largest organizations. But we don’t just make software. We get to spend our days working with the best customers and coworkers, tackling strategic business challenges and building awesome careers. We help our customers change the world for the better, an idea that drives our company culture. And that means helping to create value and impact for more than 7,000 active customer organizations in 140 countries—so they too can create the future they want to see.

The Challenge Ahead

As Senior Manager, Data-Driven GRC, you are a professional services leader, passionate about technology, creatively and commercially driven, and are fully committed to a beautiful customer experience. You have a background in data analytics in the realm of audit, business assurance and operational efficiencies and a knowledge of governance, risk & compliance. You can inspire a team with your commercial and technical passion and love working with C-Level executives at big companies to advise and guide them in how to establish an effective, Data Analytics Program using Galvanize technology.

You'll have a starring role within Galvanize’s Consulting Practice (which forms a part of Galvanize’s Customer Success Organization).  You will be expected to drive customer adoption of Galvanize’s solutions:

  • Manage a portfolio of customers and engagements
  • Play a leading role in evolving the Consulting team’s go-to-market strategy and collateral
  • Be a key player in developing and nurturing the careers of the other professionals within the team
  • Act as a Trusted Advisor, able to provide insight and guidance around data analytics to clients in in senior positions.
  • Identify and/or contribute to the identification and closing of opportunities to expand at existing and new customers.
  • Assist in sales and pre-sales activities, to develop the overall solution, provide effort estimates, pricing and contracting.
  • Project management for key projects and provide timely update of budget and progress both externally and internally
  • Guide on-time and quality delivery of adoption milestones
  • Identify potential risks with current portfolio and mitigate along with other resources within the company
  • Client visits for delivery and/or with sales team for key accounts as needed
  • Assist with resource management and mobilize the proper team resources to move the project and backlog along for delivery. Provide oversight for project delivery to prevent overrun of the project budget and timeline.
  • Act as a key representative of ACL with customers to ensure we maintain a continuous level of engagement with our customers
  • Coach and train other team members, actively participate in recruitment and foster an innovative & inclusive team-oriented/learning work environment and culture.
  • Spearhead the development of Analytics and business solutions that leverages the full suite of ACL’s products to increase efficiency of delivery of our projects.
  • Act and be seen as a leader in the market in your subject matter.
  • Maintain quality service by enforcing quality and customer service standards, analyzing and resolving quality and customer service problems and identify trends; recommending system improvements.

Qualifications, Experience, and Abilities;

  • Minimum 10 years’ experience working in the Data Analytics field for a professional services firm or within industry; ideally you have dealt with developing a data analytics program in an Audit (Assurance) or Compliance context
  • Strong business development skills with an ability to understand and articulate the business value of your proposed solutions and/or a track record of exceptional client management resulting in follow-on work through your role as a “Trusted Advisor”
  • Experience of successfully leading team or department-level process change
  • Proven skills as a project manager on multiple full life cycle implementations.
  • Adept at leading teams to implementing technology-enabled business solutions for clients as part of a high-talent team. 
  • The ability to work with other teams at Galvanize to deliver value to your customers and to help Galvanize develop, innovate and sell our solutions and services.
  • Experience with internal controls, risk assessments, business process and internal IT control testing or operational auditing desired. 
  • Experience with governance, risk and compliance (GRC) methodologies, tools and enablers desired.
  • Degree in business, accounting, finance, computer science or a related discipline
  • CPA/CA, CIA, CISA, CMA, RICS APC, PMP or other relevant certification desired

Are you ready to join?

At Galvanize we are consistently disrupting the category, holding customers core to everything we do and communicating with each other from the heart! If you are looking for real purpose in your life and want to play your part in making the world a better place, then this might be the home for you!

Please note that due to the high volume of applications received, only short-listed candidates will be contacted. We thank you for your interest and invite you to continue to check us out on wegalvanize.com as we are always on the hunt for great talent! Follow us on Twitter, LinkedIn, or Instagram to see what we’re up to

 

Galvanize welcomes applications from all candidates who meet our job requirements. Galvanize does not discriminate based on race, national or ethnic origin, colour, religion, age, sex, sexual orientation, gender identity or expression, marital status, family status, disability, genetic characteristics or a conviction for which a pardon has been granted or a record suspended.

Senior Security Engineer

 Vancouver, BC

Description

We are looking for a Senior Security Engineer that is passionate about security along with a desire to champion best practices. As a Senior Security Engineer at Absolute, you’ll be a part of an amazing team that’s intensely focused on securing our product, improving our security processes, and building the future of security at Absolute.

The Senior Security Engineer is responsible for leading technical aspects of the security operations and oversight of key security defenses. The Senior Security Engineer is also responsible for leading the technical security assessments and assurances of Absolute’s IT and production environment as well as security monitoring, and acts as the technical lead in the components required to analyze and contain a security incident.

Accountabilities Will Include:

  • Implements and configures IDS and related enterprise security systems to help the organization better identify intrusions, attacks, vulnerabilities and recommends appropriate course of action.
  • Maintains an expert-level knowledge of the daily security landscape and serves as a security advisor to Absolute as a whole.
  • Responsible for independent and team-based security audits of all security policies, procedures, and protocols with an emphasis on consistent improvement of controls.
  • Maintains, establishes, and improves vulnerability management, risk assessment, and incident management processes.
  • Interacts with IT, Hosting Operations, Product Development teams to identify areas of risk and solutions for improvement including development, infrastructure, and systems management.
  • Serves as an escalation point for all security incidents reported by users and/or security tools and drives resolution efforts.
  • Lead in the identification of potential vulnerabilities within systems, networks, DBs, applications and recommend suitable controls and countermeasures to mitigate such vulnerabilities.
  • Regularly tests and audits systems within the corporate IT and production environment for vulnerabilities and misconfigurations.
  • Advises IT, Hosting Operations and Development teams on secure configuration, installation, maintenance, and upgrades of infrastructure and applications as well as evaluation of new products as it relates to security.
  • Creates, provides, and improves upon documentation and training to internal departments to facilitate secure day-to-day operations.
  • Plays key role in establishing and maintaining compliance programs as needed (e.g., SOC 2, GDPR, FedRAMP).
  • Architects, designs, implements, maintains and operates information system security controls and countermeasures.
  • Conducts internal penetration testing assessments (e.g., network, web applications, wireless networks).
  • Perform as the CSIRT Technical Lead in order to properly analyze, contain, eradicate, and recover a security incident.

 

What You’ll Need:

  • University and/or Master’s degree in Computer Science or related technical field.
  • Preferred certifications: CISSP, CISM, SANS GIAC.
  • Minimum 5+ years of experience in the field of security in the following areas: security engineering, incident response, system, application and network security, vulnerability management, threat modelling, penetration testing, intrusion detection, firewalls and encryption technologies.
  • Minimum 5+ years of experience in the information security field with exposure to audit, risk management, data privacy, and regulatory and compliance practices.
  • Knowledge and experience of cloud infrastructure security; Azure, AWS, Google Cloud.
  • Knowledge and experience working with various security frameworks (e.g., ISO/IEC 2700x, NIST CSF, COBIT, OWASP) and audit frameworks (SOC 2).
  • Knowledge of Security Information and Event Management (SIEM) tools, network and operating system security features (e.g., Windows, Linux, Ubuntu) and network security technologies (e.g. firewalls, filtering routers, authentication mechanisms, IPSEC VPN, server hardening).
  • Knowledge and experience with microservices and containerization technologies (e.g. Docker, Kubernetes, Rancher).
  • Scripting languages such as Python, Ruby, Perl, Bash and/or PowerShell
  • Have hands-on experience with tools and technologies used throughout secure SDLC (e.g., Veracode, Blackduck).
  • Hands on experience with managing security awareness and training such as online training modules, lunch and learns, periodic security communication, and simulated phishing campaigns.
  • Familiarity with attack vectors and its customer impact.
  • Ability to work in both a collaborative team environment as well as independently when required.
  • Security knowledge on current threats, trends and mitigations.
  • Strong time management and prioritization skills and ability to multi-task across various projects in a high-paced work environment to meet deadlines and manage stakeholder expectations.

Why Work For Us:

Absolute empowers more than 12,000 customers worldwide to protect devices, data, applications and users against theft or attack—both on and off the corporate network. With the industry’s only tamper-proof endpoint visibility and control solution, Absolute allows IT to enforce asset management, security hygiene, and data compliance for today’s remote digital workforces. Patented Absolute Persistence™ is embedded in the firmware of Dell, HP, Lenovo, and 22 other manufacturers’ devices for vendor-agnostic coverage, tamper-proof resilience, and ease of deployment. 

Headquartered in Vancouver, Canada with international offices in Austin, Texas, Reading, UK and Ho Chi Minh City, Vietnam, we are a collaborative and innovative place to make your mark in the world of security.   Our agile, high energy culture rewards top performance and the contributions of those passionate about our collective growth and success. We celebrate our wins in our large common areas where we hold engineering hackathons, end of quarter celebrations, and monthly socials. We believe in a good work / life balance which is reflected in our annual employee retreat where it’s all about friends and family. To learn more about Absolute, visit our website at www.absolute.com or visit our YouTube channel.

Absolute is an equal opportunity employer.