No more applications are being accepted for this job
- This role requires Canadian Enhanced Reliability Security clearance [a minimum of 5 years of consecutive residency in Canada].
- Performs information security risk assessments for projects and initiatives for assigned lines of business within the enterprise:Provide support to Sun Life Business Group initiatives/projects through conducting information security risk assessments, reviewing contracts to ensure inclusion of appropriate security requirements, performing supplier/third-party risk assessments, managing security waivers, and advising on security best practices.Identifies and documents any risks associated with initiatives involving Sun Life systems and external vendors in a risk report for distribution to management.Provide management team with an in-depth analysis of information security trends, status of identified risks, penetration testing and vulnerability scan results, security incidents, current work activities, and work completed by the department. Assess various Sun Life Business Group initiatives/projects to ensure implementation controls aligns with Sun Life Information Security policies and directives.
- Manages the security risks identified from information security risk assessments and bring them to closure:Escalate risks to VPs for acceptance or action plans.Tracks information security related risks and corresponding action plans with dues dates to ensure that the issues are resolved. Works with the respective business and/or technology owner if dates are not met. Provides reports to the management team outlining the status of information security risks within Sun Life.Meet with VPs quarterly to report on risks for supported lines of business.Escalate deviations and significant risks to the CISO for review and approval.
- Provides security consulting services to the rest of the organization which includes Sun Life business groups, and peers within Enterprise Services:Provides support to Sun Life business groups by suggesting ways to improve security by implementing controls to protect sensitive company information from disclosure, modification, and destruction. Consults broadly with business groups and Enterprise Services using technical expertise to guide and influence implementation of security in wide or high-impact technology decisions and initiatives.Supports a balanced approach for security controls and support of governance practices and approaches. Continuously promotes and advocates that adequate levels of control mechanisms are in place to safeguard Sun Life.Provide information security related input into technology vendor selection (RFP).Provides support to the Sun Life Legal team regarding information security with respect to agreements and contracts.
- Minimum 5 years in Information Security, preferably with experience in Information Security Risk Management.
- Sound knowledge of technologies related to Information Security: encryption, firewalls, intrusion detection/prevention, anti-virus, DDoS, behavioural analysis/advanced malware detection.
- Post-secondary education.
- Professional designation relating to Information Security (e.g. CISSP, CISM, CISA) preferred.
- Strong verbal communication - able to interface and negotiate with senior employees at an executive level.
- Advanced writing skills with emphasis on report writing.
- Strong understanding of existing and emerging Information Security technologies.
- Familiarity with contract wording and interpretation of security clauses.
- Strong consulting skills and ability to influence a win - win outcome.
- Self-starter, strategic thinker, negotiator, and consensus builder.
- Ability to understand Sun Life's diverse business units and ability to work with diverse groups.
- Must be able to work with the business and interpret technical context into common business language.
- This role requires Canadian Enhanced Reliability Security clearance [a minimum of 5 years of consecutive residency in Canada].
- Great Place to Work Certified in Canada and the US
- Great Place to Work award for Best Workplaces for #HybridWork
- 2022 Named "Best Places to Work" by Glassdoor
- Canada Award for Excellence for Mental Health at Work
- Flexible hybrid work model including in-country work-from-home if you prefer.
- Pension, stock and savings programs to help build and enhance your future financial security
Senior Information Security Advisor - Toronto, Canada - Sun Life
Description
Job Description
:This is a 13 month contract role for a Maternity leave coverage.
Role:
The successful candidate would meet with stakeholders for various initiatives, provided technical and architectural information, write professional opinions to support their case, collaborate with others to improve security controls.
What will you do?
What you need to succeed:
Preferred skills:
Unique Requirements
What's in it for you: