Manager, Security Architecture - Regina, Canada - ISM Canada

ISM Canada

Verified Company

Regina, Canada

2 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

Working in technology today takes skill, expertise, a strategic mind and creativity.

At ISM, we believe in life-long learning and we are a dynamic business in a state of constant evolution: we embrace innovation, we are authentic, we create an excellent customer experience every time, we are accountable for all that we do, and we are ONE Team.

Technology is changing the your career with ISM and get a front row seat

Close Date:
March 7, 2023

ISM is seeking a Manager (Security Architect) to develop solutions and services for ISM Canada's security practice. You will oversee and contribute to technical design of systems and have overall responsibility for developing solutions / services that ensure the protection of digital assets while meeting industry and corporate standards as well as industry best practices.
As a specialist in the Security domain, you will work with customers to help ensure the protection of their enterprise information system assets by determining security requirements; planning and implementing security programs, establishing governance and ensuring that systems are secure. You will prepare security standards, policies, and procedures; participate in code reviews; mentor team members. While bringing your own expertise including information systems security specialized certifications you will also help educate others on security and draw on technical specialists to secure information system assets.
The Manager (Security Architect) is also responsible for providing the rationale for security approaches and decisions; balancing the concerns of the various stakeholders, reducing technical risks, and ensuring that decisions are effectively communicated, validated, and followed. This role will work closely with customers (internal and external) to develop and implement secure solutions. The role will also contribute to Corporate Architecture standards, practices, and governance.

Responsibilities:

Develops and delivers solutions and services by engaging with technology experts, customers, and other stakeholders
Works with customers and provides recommendations to improve their overall security posture.
Works with stakeholders to enhance overall security posture by recommending and establishing governance and developing security policies designed to meet overall security program goals and requirements.
Enhances solution security by working with team to enhance security awareness and standards.
Determines security requirements by evaluating business strategies and requirements; researching information security standards and regulatory requirements (e.g. data sovereignty, data handling); conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates.
Ensures solutions are thoroughly tested for security weaknesses and contributing quality processes (e.g. code reviews, infrastructure hardening) technical standards and solution design artifacts to protect them.
Accountable for solution security and auditability requirements. Verifies security systems by developing and implementing test plans. Contributes to test strategy and leads the security testing.
Plans security systems by evaluating network and security technologies; developing requirements for Cloud, networking components including routers and firewalls, virtual private networks (VPNs), routers, security appliances; public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; access controls, encryption, and adhering to other industry standards.
Recommends and implements continuous security technology and remediation's and process improvements both within the solutions and at a corporate level and for customers.
Ensures security of solutioning by designing solutions to meet all security audit/regulatory requirements and/or security controls.
Assists team in identifying, containing, investigating, and remediating security breach events.
Provides technical and thought leadership to design and deliver solutions and to mentor other team members.
Responsible to make and defend security architecture tradeoff decisions; ensuring that risk is an element in all solution technical solution decisions.
Ensures rolesbased authorization systems are developed and tested.
Ensures appropriate confidentiality of corporate information both in transit and at rest.

Qualifications:

One or more Information Technology related security certifications such as Certified Information Systems Security Profession (CISSP), ISACA Certified Information Security Manager (CISM), ISACA Certified Information Systems Auditor (CISA), GIAC Security Essentials (GSEC), Systems Security Certified Practitioner (SSCP), CompTIA Security+, and/or certified EC-Council Certified Ethical Hacker (CEH) and Certified Security Analyst (ECSA).
One