Cyber Security Specialist - Saint-Laurent, Canada - Weir Group

Weir Group

Verified Company

Saint-Laurent, Canada

3 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

Cyber Security Specialist

Weir Marine Engineering - NETE

LaSalle, QC or Halifax, NS

Hybrid

Certifications, Licenses, Registrations, Special Skills:

Eligible to obtain a Government of Canada security clearance, which requires Canadian citizenship and 10 years of residence in Canada (MANDATORY).

Why choose Weir:

Be part of a global organization dedicated to building a better future: At Weir, the growing world depends on us.

It depends on us constantly reinventing, quickly adapting and continually finding better, faster, more sustainable ways to access the resources it needs to thrive.

And it depends on each of us doing the best work of our lives. It's a big challenge - but it is exciting.

An opportunity to grow your own way: Everything moves fast in the dynamic world of Weir. This creates opportunities for us to take on new challenges, explore new areas, learn, progress and excel. Best of all, there is no set path that our people must take.

Instead, everyone is given the support and freedom to tailor-make their own career and do the best work of their lives.

Feel empowered to be yourself and belong: Weir is a welcoming, inclusive place, where each individual's contribution is recognized and all employees are encouraged to innovate, collaborate and be themselves.

We continually focus on people and their wellbeing. We believe in fairness and choose to be honest, transparent and authentic in everything we do.

Key Responsibilities:

Safety First: Demonstrate 100% commitment to our zero harm behaviors in support of our drive towards developing a world class safety culture.
Become highly knowledgeable about DND policies, procedures and methodologies related to information systems security, including the Cyber Security and Risk Management Process (CSRMP), and Security Assessment and Authorization (SA&A)
Develop customized processes, procedures and artefact templates for cyber security engineering based on top level DND policy instruments
Become highly knowledgeable in DND's Vulnerability Management Programme to develop and champion a vulnerability assessment and mitigation process to support system engineering efforts and operational systems
Support technology product hardening efforts by providing guidance based on DISA, CIS and other recognized security agencies
Produce conceptual illustrations, diagrams and technical artefact of security concepts and solution architectures
Review and/or evaluate security documentation / deliverables produced by others
Investigate and assess the security posture of existing or proposed systems, networks or communication systems, identifying potential gaps and vulnerabilities, and proposing more secure configurations or mitigation measures to address the identified gap areas and/or vulnerabilities
Lead security related meetings and discussions with peers and clients in the area of cyber security engineering, product hardening and vulnerability management
Prepare technical reports in English with the results of investigations and analysis
Provide technical expertise and assistance to other team members and clients

Job Knowledge/Education and Qualifications:

Experience working in a client environment to assist in promoting system security engineering processes to build security into systems
Experience in developing detailed security documentation for information systems in a commercial or government organization with detailed processes for managing and controlling information systems security risks
Experience in conducting vulnerability assessments, penetration testing, as part of security engineering validation in support of overall vulnerability management processes would be an asset-
Experience with DoD or DND security engineering processes for information systems would be an asset
Knowledge of, and experience in, implementing ITSG-33 Risk Management Framework and/or the NIST Special Publication 800 Series Risk Management processes
Knowledge of NIST 171, 172 and 53r5 would be an asset
System engineering skills and experience would be an asset
Recognized IT security certifications (e.g. CISSP, CISM and/or CISA) would be highly desirable

What we offer you:

Weir Marine Engineering (WME) has managed the Naval Engineering Test Establishment (NETE) on behalf of the Government of Canada since 1953.

Through this association, WME has developed a unique capability to provide multidisciplinary engineering, testing and consulting services to government and industry.

Benefits:

Flexible, compressed work schedules, work from home or office
Competitive compensation
Vacation, personal days, holidays, and parental leaves
Comprehensive Family Medical, Dental and Vision coverage as well as:
A Wellness Spending Account to aid in your wellness journey
Employee & Family Assistance Program (EFAP)
Medical Travel Insurance
A Registered Retirement Savings Plan that includes matching company contributions that also includes access to Financial Advisors pro