Business Information Security Officer - Winnipeg, Canada - People Corporation

People Corporation

Verified Company

Winnipeg, Canada

2 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

We are seeking a Business Information Security Officer to join our team in Winnipeg or Toronto.

As a Business Information Security Officer (BISO), you will play a pivotal role in safeguarding organization's information assets and ensuring compliance with industry regulations.

As a BISO, you would need the combination of technical and business knowledge to help improve information security and IT Risk in all aspects of the business.

The Business Information Security Officer will:

Provide professional expertise to business, I.S. management and technology leaders in conducting security risk assessments and identifying security solutions to ensure transparent risk awareness in support of critical decision making.
Work collaboratively with the ISO members to develop information security policy and standards and ensure the ongoing currency of same for all participating companies. This involves taking into consideration a wide range of complex technical environments, different business strategies and objectives, diverse cultures, and organization structures.
Recommend security compliance and remediation initiatives for technology, processes, and services (a.) to ensure ongoing effectiveness of the information security program, (b.) to protect the business from security threats and (c.) to ensure compliance with regulatory, key business partner and client requirements.
Work with ISO members and the Chief Information Security Officer (CISO) to develop and implement an ongoing and evolving enterprise security awareness and training program that fosters a culture of awareness, accountability, and proactive behavior.
Maintain awareness of the security/privacy industry to keep abreast of best practices, trends, technologies, and regulatory requirements in information security ensuring due care and competitive positioning on security solutions. Research best practices and define and recommend improvements to corporate security infrastructure in support of the security program.
Manage major security incidents for specific locations/companies by actively monitoring and assessing vulnerabilities and exploits (to ensure preventative measures are taken to protect the business) and take appropriate actions in a decisive and timely manner, including critical decisions, recommendations, and communications up to senior I.S. levels.
Develop and implement security strategy, plans and budgets, under the direction of the CISO, for specific locations/companies.
Participate in security benchmarking and cost effectiveness studies to ensure business value.
Complete business cases for security solutions with a keen focus on risk assessment practices. Perform staff management functions (recruiting, coaching, reviews, etc.) for direct reports, as assigned.
Developing and maintaining an indepth understanding of the business unit, technologies, customers, partners, alliances, systems, processes, data, and customers.
Act as main contact or adviser for local security as part of Information Security leadership role and the IT business partners, as well as finance, HR, legal, and other staff as needed.
Provides leadership, executive support, and strategic and tactical guidance for the cybersecurity program supporting enterprise security initiatives.
Active engagement with Partner firms to help a company toward objective achievements through representation of the security program and helping in the case of a security incident as a main contact for communication.

To be successful
as a Business Information Security Officer
with People Corporation, you will need:

Strong written and verbal communication skills across all levels of the organization.
Capable of working with diverse teams and promoting an enterprisewide positive security culture.
High level of integrity, trustworthiness, and confidence, and able to represent the company and security leadership with the highest level of professionalism.
Adept at understanding business focus and processes and ability to inject cybersecurity into the business through teamwork and influence.
Strong project management, multitasking, and organizational skills.
Applicable knowledge of national and global cybersecurity policies, regulations, and security frameworks.
Selfstarter requiring mínimal supervision.
Possesses general business administration competencies.
Excellence in communicating privacy, business risk and remediation requirements from assessments.
Highly organized and efficient.
Demonstrated strategic and tactical thinking, along with decisionmaking skills and business acumen.

**- At least 10+ years' cybersecurity experience (or information technology coupled with cybersecurity), with at least 5+ years in an operationally focused security practitioner role.

At least 3 years' experience working with business leadership and enterprise projects.
3+ years of cybersecurity or information technology project management.
Bac