Senior IT Security Analyst
Norton Rose Fulbright
- Vancouver, BC
- $87,665-142,454 per year
- Permanent
- Full-time
- Act as a champion in Canada for information security best practice and policies both internally in the IT department and with staff (including lawyers);
- Maintain up-to-date knowledge of IT security best practices;
- Assist the firm IT department in maintaining a current security posture across all aspects of the IT environment;
- Work with the global IT security team to identify and mitigate risks and vulnerabilities in the Canada region;
- Assist the global IT security team with developing and maintaining the firm-wide security infrastructure configuration, policies and procedures, identifying improvements to procedures, and reporting on incidents;
- Assist product owners in ensuring the confidentiality, integrity and availability of the data in their systems;
- Contribute to investigations into problematic activity and provide on-going communication with senior management;
- Contribute to the design and execution of vulnerability assessments, penetration tests and security audits;
- Develop content and campaigns and perform regular security awareness training for all employees;
- Follow up with users who failed phishing simulations, and users who have not attended cyber training ensuring 100% compliance;
- Encourage cooperative working with all business functions. This includes writing process documents and conducting training;
- Coach and mentor internal IT staff on information security best practices, and contribute to solution designs to ensure a best-in-class organization;
- Work with Canada IT to identify gaps in asset management relating to security applications / controls missing from all endpoints;
- Work cooperatively with project teams to ensure that new project and changes adhere to information security policies and governance standards;
- Create and maintain the IT Business Continuity Plan and Disaster Recovery Plan;
- Audit patch deployment processes to resolve root cause of failed installations;
- Contribute to client IT security audits;
- Actively manage and monitor IT security systems such as BitSight to highlight priority vulnerabilities in region;
- Comply with the in-house information technology procedures and protocols to ensure a high level of service to all users;
- Document all security procedures and guidelines for IT and the user community to ensure adherence to national and global IT standards ;
- Be prepared to work after-hours.
- Education: College diploma or university degree in the field of computer science, 10 years' equivalent work experience including, preferably, 4 years as an IT Security Analyst
- Certifications: One or more of the following certifications: AZ-900 (mandatory), GIAC Security Essentials Certification, GIAC Security Leadership Certification, (ISC)2 SCCP, (ISC)2 CISSP, (ISC)2 ISSAP, AZ-500 (asset), Comptia Security Plus (asset), ITIL ( Achieved or pursuing)
- Multi-Location Experience: Experience with maintaining IT security across a multi-location, multi-DC environment
- Vulnerability Management: Experience with vulnerability management and scanning tools, including Qualys and BitSight, or similar toolsets
- Compliance: Experience implementing strategies and technology to maintain compliance with IT security best practice, including ISO27001 and the ASD Essential Eight
- Key skills : Effective communication with all levels of an organization, facilitation and coordination skills, able to cope with conflicting demands and high-pressure environment
- Language skills : Written and spoken English is required, French is an asset
- Vancouver Salary: $87,665 - $142,454. Salary will be discussed and negotiated during interview and will be based on experience.
- Hybrid work environment
- Retirement savings plan with employer contribution
- Benefit premiums paid by the firm
- Telemedicine services
- Wellness matters: Flexible health and wellness allowance that covers much more than gym memberships!
- Training and development programs based on your interests and needs