Hybrid jobs in Canada

Job Title: IT - Info Security Analyst - Senior
Request ID: 87158-1
Start/End Dates: 4/17/2025 - 10/31/2025
Work Location: 81 Bay 19th Floor - Hybrid
Duration: End date is Oct 31st
Rate: $85.00 PH

Line of Business: Risk Shared Services

What does the LOB do?: Build the processes that other LOBs use for risk analysis.

Reason the role is open: Temporary backfill

Potential for this contract to be extended or converted to FTE: Potential for extension. FTE options would need to be explored later in the contract.

Remote/Hybrid: Hybrid - Tuesdays every week and second Friday of each month. Could expand into more onsite days as required.

Work Schedule: 37.5 Hours/week, 9-5 Monday to Friday

Interview Process: 1 round of interviews. Either in person or Microsoft video calls.

Timelines: Interviews to start April 11th or 12th.

Who Will the Candidate Be Working with on a Daily Basis: HR & finance technology team

How many years of experience: 5 - 10 +

As a Senior Information Security Risk Advisor you will be responsible for providing guidance and support on potential risks as well as current trends to help our technology and business stakeholders meet security goals and objectives. Utilizing your relationship building skills, you will partner with line of business and technology teams and help them proactively identify potential risks and present recommendations that are practical and achievable.

1. 5+ years working in banking and Financial services domain
2. Experience in Information Security Risk Management
3. Experience in Threat-Risk Assessments
4. Experience in Vulnerability & Penetration Testing
5. Experience in Application Security Development Projects
6. Exposure to Agile environments
7. Familiar with Archer or other IRM platforms

1. Familiarity with Emerging Technologies
2. Knowledge of Cloud Computing Technologies
3. Security Certifications: CISSP, CCSP, CISM, CRISC

The main function of an Info Security Analyst is to plan, coordinate, and implement security measures for information systems to regulate access to computer data files and prevent unauthorized modification, destruction or disclosure of information. A typical Info Security Analyst is responsible for planning, coordinating and implementing security measures to safeguard the computer database.

1. Architect, design, implement, support, and evaluate security-focused tools and services including project leadership roles
2. Develop and deliver training materials and perform general security awareness and specific security technology training
3. Develop and interpret security policies and procedures
4. Direct, motivate and develop key staff, maximizing their individual contribution, their professional growth and their ability to function effectively with their colleagues as a team.
5. Evaluate and recommend new and emerging security products and technologies
6. Identify security issues and risks, and develop mitigation plans
7. Offer guidance to Information Security Consultants to prepare lower profile Threat Risk Assessments and Security reviews of planned initiatives across the organization. Prepare high level security profiles for a LOB which they can use to measure their security posture across multiple initiatives.
8. Participate in security compliance efforts
9. Prepare management reporting of all security engagements and manage workload and priorities to ensure that effort is expended where risk is most prevalent. Design and implement security assessment processes across the organization.
10. Weigh business needs against security concerns and recommend necessary changes to enhance information systems security. Act as a focal point to the business units for all matters of security. Conduct security assessment on high profile initiatives.

1. Bachelor's degree in a technical field such as computer science, computer engineering or related field required
2. Consistent implementation of security solutions
3. Experience in infrastructure or application-level vulnerability testing and auditing
4. Knowledge of approaches, tools, and techniques for gaining the cooperation and support of others.
5. Ability to express oneself and communicate with others verbally, recognizing that verbal communication is more than just language - it includes tone, style and structure.
6. Ability to establish and build healthy working relations and partnerships with clients, vendors and peers.
7. Ability to address training and career development needs of individuals, teams or organization
8. Strong experience and detailed technical knowledge in security engineering, system and network security, authentication and security protocols, cryptography, and application security
9. Ability to form, build and manage effective teams.
10. Ability to produce a variety of business documents that demonstrate command of language, clarity of thought and orderliness of presentation.
11. Knowledge of approaches, tools, techniques and roles and responsibilities in providing technical or business guidance to clients within and outside own area.
12. Knowledge of processes, tools, techniques and practices for assuring adherence to standards associated with accessing, altering and protecting organizational data.
13. 5-7 years’ experience required