IT Security and Compliance Specialist

IT Security and Compliance Specialist

LTR4849

LeverageTek is actively seeking a IT Security and Compliance Specialist for a 12 month contract for our Gatineau based client.

Qualifications:

  • Bachelor’s degree in Computer Science, Engineering or related discipline or equivalent experience
  • 5+ years of progressive experience in IT and 3+ years of experience in security and compliance roles
  • Strong knowledge Microsoft Active Directory
  • A strong understanding of Microsoft operating system internal controls and network protocols (Workstation, Servers)
  • Strong knowledge of Networking (TCP/IP, dynamic routing, VLAN’s)
  • Strong analytical skills to analyze security requirements and relate them to appropriate security controls
  • Strong capacity in root-cause analysis and recommendations
  • An understanding of the security stack concept (IPS, IDS, firewalls, SIEM, AV)
  • Understanding of IT Security risk and mitigations (malware, IAM, data access, elevated permission management)

Responsibilities:

  • Interface with other internal support groups to be the entry point for requests and escalations in relation to IT Security
  • Participate in the production of the North American Platform’s security policies, process, procedures, standards and guidelines
  • Review and recommend changes to system settings and operational manual procedures
  • Conduct day to day security and compliance activities
  • Act as a point of contact to coordinate activities coming from the Security Operation Center (SOC)
  • Participate in the Change Advisory Board (CAB) and provide technical security reviews
  • Participate in information security incident response and work with the Infrastructure, Operations, Application, SaaS and Network teams for resolution
  • Provide security recommendations as a SME on IT projects
  • Assess, analyze and report on security incidents
  • Assist with the yearly audit plans and timelines
  • Assist and ensure chain of custody for legal hold matters
  • Follow-up on corrective actions for gaps identified by audits from different sources
  • Provide recommendations related to compliance requirements
  • Monitor, track, document and report on employee offboarding activities while ensuring these are processed within the defined threshold

Assets:

  • Certified Information System Security Professional (CISSP), Certified Information Systems Auditor (CISA)

Security Clearance: N/A

Duration: 12 months

Language: English (French is an asset)