Jobs
>
Edmonton

    Data Security Analyst - Edmonton, Canada - CWB Financial Group

    CWB Financial Group
    CWB Financial Group Edmonton, Canada

    2 weeks ago

    Default job background
    Full time
    Description

    At , we strive to build value for the people who choose us every day: our people, our clients and our investors. We do this by:

  • Putting people first and building relationships with intention
  • Seeking out and embracing new ideas
  • Believing that how we do things is as important as what we do

    • Data Security Analyst

    Role Specifications

    Everyday flexibility. Hybrid work environments. Collaborative connection.

    CWB Corporate

    Put a new on your banking career

    We're different from the big banks in we engage our employees - caring, responsive, and armed with an obsession for growing talent. Our reputation is powered by a people first culture that ensures our employees be and feel heard, promotes inclusivity and diverse viewpoints, and inspires collaboration and innovation.

    The opportunity

    CWB data is an important asset. Taking into consideration the rise of global cyber security incidents and its direct impact to branding and reputation, CWB Financial Group is committed to developing and implementing policies, processes, and technologies to manage data security proactively and effectively for our business, our clients, and our employees.

    The Data Security analyst is a member of the Data Protection team, within CWB's Information Security Office (ISO) and will be responsible for the implementation and day-to-day operations of modern-day, industry-leading data security and data loss prevention technologies.

    Specific Accountabilities

    Accountability #1 – Data Protection

  • Apply risk management and treatment methodologies to balance the needs of CWB Financial Group while ensuring that data usage behaviours are changed to mitigate identified risks.
  • Assist with day-to-day activities of the Data Protection team, as they relate to ongoing data discovery, Cloud Access Security, Information Rights Management, and Enterprise' storage strategies.
  • Maintain solutions to secure and control email, documents, and sensitive data by applying the principal of least privilege.
  • Support Business Units by ensuring business-to-security alignment.
  • Identify opportunities from the perspectives of people, processes, and technology while ensuring the highest level of confidentiality, integrity, and availability of information assets.
  • Participate in educating the company and its employees about data protection and privacy best practices.
  • Execute procedures, perform detailed data analysis, root cause analysis, document results, suggest improvements for operational efficiencies, identify opportunities to reduce risk and document remediation options regarding acceptance or mitigation of risk scenarios relevant to data protection.
  • Contribute to the development and execution of Incident Response (IR) plans and playbooks, as needed.

    • Accountability #2 – Data Loss Prevention

  • Assist in the enhancement and development of operational procedures to leverage cloud-based technologies for the purpose of ongoing monitoring and continuous protection of data.
  • Recommend and facilitate the implementation of technical controls to support and enforce defined security policies.
  • Aid with Security Incidents and Investigations.
  • Collaborate closely with the Identity & Access Management team to ensure access to data is provisioned to our centralized identities, on a need-to-know basis.
  • Assist in implementing data retention schedules based on classification and ensuring the use of automatically applying retention label policies.

    • Skills and competencies that will take you further

    Education

  • Post secondary diploma in the field of Computing Science, Information Systems Security, or equivalent experience
  • Required: CompTIA Security+, (ISC)2 Entry-Level Cybersecurity Certification, System Security Certified Practitioner (SSCP) or commitment to obtain within the first two years of employment

    • Professional Experience

  • Information Technology Experience: A minimum of 5 years of experience in Information Technology with at least two (2) of those years in an Information Security domain.
  • Data Protection and Governance: At least 2 years of experience in administering data protection controls, data governance, regulatory requirements, PII and privacy protection, data risk assessment and data loss prevention policies.
  • Data Asset Management: Actively contribution to defining data asset, including discovery and inventory, data flows, data lineage, infrastructure mapping, data stewardship and classification.
  • Microsoft 365 Experience: Prior experience in Microsoft 365's Purview Information Protection would be beneficial.
  • Data Lifecycle Management: Participation in end-to-end Data lifecycle management.
  • Encryption and Anonymization: Solid understanding of encryption and anonymization, masking methods, hashing, tokenization, and key management (DKE, PGP, PKI, CKM, BYOK etc.).
  • Prior experience working with Data Governance Platforms or Data Trust products for discovering, managing, and protecting structured data would be beneficial.
  • Applicable understanding of data encryption capabilities (i.e., field level encryption, file level encryption).
  • Scripting and automation skills: Proficiency in scripting and automation.
  • IT Infrastructure Knowledge : Strong knowledge of technical infrastructure, public cloud, network, databases, and systems. Experience with cloud computing, enterprise Microsoft 365, Windows and/or Linux technology infrastructure, access security, data protection security, and information systems auditing.
  • Data Classification: Understanding of data classification strategies to ensure sensitive data is appropriately protected.
  • Information Security Frameworks: Strong familiarity with information security frameworks and standards including OSFI B-13 Technology and Cyber Risk Management, the NIST Cyber Security Framework, ISO 27000 series, NIST SP Security and Privacy Controls for Information Systems and Organizations (Rev. 4 or 5).
  • Experience in implementing security measures to protect data while it's being transferred between systems using secure protocols (like HTTPS, SFTP), encryption technologies, and secure network architectures.
  • Experience in identifying, preventing, and mitigating threats originating from within the organization using user behavior analytics, access controls, and incident response strategies.
  • Centralized Certificate and Key Management: Experience in centralizing the management of all cryptographic keys and certificates within the organization - managing the lifecycle of keys and certificates and ensuring compliance with relevant standards and regulations.
  • Experience in implementing and managing DLP solutions at the endpoint level to prevent data leaks - involve setting up DLP policies, monitoring data transfers, and responding to potential data leak incidents.
  • Familiarity with the Information Technology Infrastructure Library (ITIL) IT service management framework
  • Desirable: Experience with the financial services industry is an asset.
  • Experience in defining metrics, KPIs, implementing cybersecurity dashboards.

    • Personal Competencies

  • Exceptional written, verbal, listening, and interpersonal skills.
  • Ability to use critical judgement to make decisions and solve problems involving various levels of complexity, ambiguity, and risk.
  • Good analytical skills and strong attention to detail, identify potential threats and develop strategies to address them.
  • High level of precision to ensure the integrity of data and to detect subtle anomalies.
  • High ethical standards to handle sensitive information responsibly.
  • Firm commitment to staying informed and abreast of emerging issues, industry trends etc.
  • Sound to advanced knowledge of business, technology controls, IT security, IT risks and best practices in data security.
  • Proficient in identifying and evaluating potential risks to data security.
  • Demonstrated ability to participate in projects of moderate to high complexity.
  • Skilled at staying abreast of evolving technologies and security threats.
  • Committed to serving as an expert in business-specific, cross-functional, and enterprise initiatives.
  • Able to work effectively within collaborative team environments.
  • Capable of working independently and autonomously.
  • Skilled at managing multiple projects simultaneously and consistently meeting deadlines.
  • Proficient in conveying intricate technical concepts using both technical terminology and user-friendly language. Able to bridge the gap between technical details and non-technical stakeholders by emphasizing relevance and impact.
  • Skilled at creating and customizing concise reports for senior managers and various business units

    • Why work with us?

    Your success is our obsession And our award-winning culture & benefits back it up.

    Proudly recognized by Great Place to Work in 2023 as one of Canada's top 50 Best Workplaces & recipient of Waterston Human Capital's Most Admired Corporate Culture 2023.

    . We offer an award-winning benefits package that includes:

  • Hybrid work environments
  • Everyday flexibility
  • Generous company-funded health coverage
  • Health care spending account
  • A flexible wellness program
  • generous time-away options to unplug, rest & recover

    • We commit to our employees' development and help them reach their professional goals with:

  • Organization wide coaching services
  • Mentorship
  • Education support & training programs

    • Inclusion is a journey requiring practice & experience to result in a powerful outcome. Your perspective matters & voice will be heard. Find community within the CWB family in our employee represented groups.

    #LI-EH1

    IND-EH

    As an equitable employer, CWB Financial Group is committed to providing a safe and where a diverse workforce thrives. You are welcomed and encouraged to bring your whole self to work. Dignity, respect and equality are non-negotiables. If you require during any part of the recruitment or selection process, please reach out.

    Closing Date:

    Position closes at 12:01am on the close date identified below.

    05/20/2024
  • Alberta Teacher's Retirement Fund

    Security Analyst

    1 week ago

    Alberta Teacher's Retirement Fund Edmonton, Canada

    **Security Analyst - Job Ad** · **Alberta Teachers' Retirement Fund** · Are you an IT professional specializing in information security who is looking for an opportunity to help protect the information of the hard-working teachers of Alberta from cyber security threats and intrus ...

  • Concordia University of Edmonton

    IT Security Analyst

    2 weeks ago

    Concordia University of Edmonton Edmonton, Canada

    Concordia University of Edmonton (CUE) is a community of learning grounded in scholarship and academic freedom, preparing students to be independent thinkers, ethical leaders, and citizens for the common good. · CUE campus is situated on the banks of the North Saskatchewan River ...

  • CWB Financial Group

    Security Analyst

    3 weeks ago

    CWB Financial Group Edmonton, Canada

    At · CWB · , we strive to build value for the people who choose us every day: our people, our clients and our investors. We do this by: · - Putting people first and building relationships with intention- Seeking out and embracing new ideas- Believing that how we do things is as i ...

  • Government of Alberta

    Security Analyst

    3 weeks ago

    Government of Alberta Edmonton, Canada

    **Job Information** · Job Requisition ID: 48175 · Ministry: Health · Location: Edmonton · Full or Part-Time: Full Time · Hours of Work: 36.25 hours per week · Permanent/Temporary: Ongoing · Scope: Open Competition · Classification: System Analyst Level 2 · **Salary**: $2,718.86 t ...

  • Vantix Systems Inc

    Security Analyst

    2 weeks ago

    Vantix Systems Inc Edmonton, Canada

    **Description** · Work must be done from within Canada during standard business hours, due to network and data security issues. · **Skills** · - DevSecOps, DevOps, SANS, CERT, ISF, CISSP, CISM · **Type** · - Contract · **Experience Required/Mandatory Skills** · - Experience in se ...

  • NORQUEST COLLEGE

    IT Security Analyst

    2 days ago

    NORQUEST COLLEGE Edmonton, Canada

    **Job Description**: · **IT SECURITY ANALYST** · **BUSINESS TECHNOLOGY SERVICES** · NorQuesters are difference makers and we're searching for someone who can find ways forward and be dependable as a Casual IT Security Analyst. This is a short-term opportunity for full-time hours ...

  • WCB Alberta

    IT Security Analyst Iii

    1 week ago

    WCB Alberta Edmonton, Canada

    Careers - WCB Alberta · Job Title: · IT Security Analyst III · **Job Type**: · Permanent / Full time · Job Category: · Information Systems Security · Job Location: · Edmonton, Alberta · The WCB Alberta is currently on a multiyear journey to modernize and optimize our technology e ...

  • Workers' Compensation Board- Alberta

    IT Security Analyst Iii

    3 weeks ago

    Workers' Compensation Board- Alberta Edmonton, Canada

    **Job Title**: · IT Security Analyst III · **Job Type**: · Permanent / Full time · **Job Category**: · Information Systems Security · **Job Location**: · Edmonton, Alberta · The WCB Alberta is currently on a multiyear journey to modernize and optimize our technology ecosystem tha ...

  • WCB Alberta

    IT Security Analyst Iv

    3 weeks ago

    WCB Alberta Edmonton, Canada

    As an equal opportunity employer, we are looking to build a diverse workforce that reflects the diversity of our clients and the customers we serve. Learn more about working for WCB at · Careers - WCB Alberta · Job Title: · IT Security Analyst IV · **Job Type**: · Permanent / Ful ...

  • Alberta Innovates

    Information Security Analyst

    2 weeks ago

    Alberta Innovates Edmonton, Canada

    Alberta Innovates is seeking an Information Security Analyst to support the organization's technical environments as they relate to the five functions of the National Institute of Standards and Technology (NIST) Cybersecurity framework: Identify, Protect, Detect, Respond, and Rec ...

  • CWB Financial Group

    Data Security Analyst

    2 weeks ago

    CWB Financial Group Edmonton, Canada

    At · CWB · , we strive to build value for the people who choose us every day: our people, our clients and our investors. We do this by: · - Putting people first and building relationships with intention- Seeking out and embracing new ideas- Believing that how we do things is as i ...

  • WCB Alberta

    IT Security Analyst Iv

    1 week ago

    WCB Alberta Edmonton, Canada

    Careers - WCB Alberta · Job Title: · IT Security Analyst IV · **Job Type**: · Permanent / Full time · Job Location: · Edmonton, Alberta · The WCB Alberta is currently on a multiyear journey to modernize and optimize our technology ecosystem that will achieve our strategic objecti ...

  • University of Alberta

    Information Security Analyst

    3 weeks ago

    University of Alberta Edmonton, Canada

    **IST Executive Director**: · - Competition No. · **S ** · - Posting Date · **Mar 11, 2024** · - Closing Date · **Mar 15, 2024** · - Position Type · **Full Time - Operating Funded** · - Salary Range · **$64,618 to $90,053 per year** · - Grade · **11** · - Hours · **35** · This po ...

  • AutoCanada Inc.

    Cyber Security Analyst

    1 week ago

    AutoCanada Inc. Edmonton, Canada

    **Cyber Security Analyst** · As a member of the Cybersecurity and Compliance team, the Cybersecurity Analyst will oversee the monitoring and analysis of AutoCanada's Information and Computing Technology (ICT) and data from a cybersecurity and data security perspective. They will ...

  • Ledcor

    Cyber Security Risk Analyst

    2 weeks ago

    Ledcor Edmonton, Canada

    **Description** · **Job Summary**: · We are looking for a Cyber Security Risk Analyst to join our growing Cyber Security team on a full-time permanent basis. In your new role you will be required to perform all activities in the Ledcor risk assessment process which includes busin ...

  • AIMCo (Alberta Investment Management Corporation)

    Analyst, Securities Modeling

    2 days ago

    AIMCo (Alberta Investment Management Corporation) Edmonton, Canada

    **Opportunity** · **Responsibilities** · - Performing research and model development/validation based on a deep understanding of valuation theories, financial markets and instruments, derivatives modeling as well as statistical models · - Contributing to the maintenance of docume ...

  • City of Edmonton

    Application & Infrastructure Analyst I - Security

    2 weeks ago

    City of Edmonton Edmonton, Canada

    **Application & Infrastructure Analyst I - Security Systems Administrator** · **Job Number***: · **46249** · The Edmonton Police Service is seeking a highly motivated, energetic, and passionate Security Systems Administrator to manage the day-to-day administration and operations ...

  • City of Edmonton

    Application & Infrastructure Analyst I - Security

    2 weeks ago

    City of Edmonton Edmonton, Canada

    **Application & Infrastructure Analyst I - Security Systems Administrator** · **Job Number***: · **46534** · The Edmonton Police Service is seeking a highly motivated, energetic, and passionate Security Systems Administrator to manage the day-to-day administration and operations ...

  • Energy Safety Canada

    IT Security Analyst

    2 weeks ago

    Energy Safety Canada Nisku, Canada

    **Be a part of building a stronger, safer workforce** · As the national safety association for the oil and gas industry we advocate for worker health and safety**.** · Everything we do is guided by our values: trusted, responsive, collaborative, disciplined and proactive. When yo ...

  • City of Leduc

    Security Analyst

    3 weeks ago

    City of Leduc Leduc, Canada

    Department: · Enterprise Technology Services · Hours Per Week: · 35 · Compensation Range: · $85, $106,434.00 · Closing Date: · June 30, 2023 · Note: Posting comes off at 12:00 AM on Closing Date, with competition closing at 11:59 pm day prior. · At the City of Leduc, our mission ...