Information Security Business Partner - Mississauga, Canada - Alectra Utilities

Alectra Utilities
Alectra Utilities
Verified Company
Mississauga, Canada

2 weeks ago

Sophia Lee

Posted by:

Sophia Lee

beBee Recruiter
Description
The Opportunity


Job Posting Number:



Position:

Information Security Business Partner _*Full-time Permanent*_


Location:


TBD (Hybrid:
Remote/In-office)

Reports to:

Manager, IT Security & Risk

Business Unit:
***Information Technology

Division:

Digital and Innovation

Hours per Week:

35

Rate of Pay:

Number of Openings:

1

Union:

No

Open:

May 15, 2023

Close:

June 2, 2023

  • Alectra is committed to putting our people first in providing a positive employee experience and a safe work environment. Our Hybrid Workplace policy allows for an effective balance for employees with the opportunity to work in a hybrid environment; a combination of Remote / Inoffice work based on operational requirements._

Position Purpose:


Reporting to the Manager, IT Security and Risk, the Business Information Security Consultant will serve as the primary liaison and point of contact between the security and risk functions of the Security team and the business partners and stakeholders for all business units.

The Business Information Security consultant is responsible for maintaining the strategic relationship with business units to ensure that all aspects of cyber security are incorporated into the hygiene and culture of the organization at the enterprise level.

The role works closely with business leads to convert business intent into design principles and standards that result in highly available, scalable, and cost-effective network solutions through the lens of security architecture, standards, and policy.

***
Key Responsibilities/Accountabilities:
  • Liaise with Information Technology teams to allocate resources, specifically within the Security team, to achieve business outcomes.
  • Follow all risk remediation protocols to ensure business issues are mitigated, risks identified, and exceptions tracked in accordance with frameworks, policies, and architecture standards set by the team and organization.
  • Work with business units and Information Technology team to align funding requirements with strategic initiatives and sustainability requirements.
  • Participate in cybersecurity and businessrelated working groups as necessary to align security requirements with business needs.
  • Educate stakeholders on cyber security related matters in support of the cyber awareness program to increase awareness and improve security culture.
  • Develop a strong understanding of business goals and plans.
  • Reframe risk and security discussions to meet business terms and understanding.
  • Actively engage business stakeholders regarding all aspects of cybersecurity
  • Establish risk and security accountability for business verticals.
  • Inform and educate business stakeholders of the security and risk implications of critical decisions utilizing practical analysis with sound judgement to assess business decisions.
  • Knowledge of DRP and BCP requirements for the IT business vertical.
  • Continually challenge business vertical assumptions regarding security requirements to meet business deliverables.
  • Manages all vendors and service providers, coordinating purchasing of all service products, contract management, and metric reporting for security components.
  • Performs other duties, as assigned.
***
Qualifications, Knowledge, Skills and Competencies:***
Education

  • University Degree or College Diploma in Computer Science, engineering or a related discipline or recognized equivalent in an Information Technology or IT security discipline.
  • Holds one or more of the following certifications: ISACA Certified Information Security Manager (CISM), ISACA Certified Information Security Auditor (CISA), ISACA Certified Information Security Manager, ISACA Systems Security Certified Professional (SCCP), ISACA Certified Information Systems Security Professional (CISSP), ISACA Information Systems Security Architecture Professional (ISSAP). GIAC Security Essentials Certification, GIAC Security Leadership Certification

Experience

  • 5 to 8 years experience working in a risk management, governance, and regulatory environment related to cybersecurity with specific focus on business outcomes, target operating model, and service delivery
  • Strong security infrastructure, architecture, and technology experience across multiple vendor platforms
  • Business Relationship Management framework and methodology
***
Skills/Abilities/Competencies

  • Industry awareness of security technology across all areas of IT/OT and business capability models.
  • Strong aptitude for understanding internal organization environments and their relationship to business environments and solutions.
  • Ability to develop a comprehensive understanding of business vertical operations and capability models.
  • Understanding of business unit vertical initiatives regarding value creation and risk for department and organization.
  • Ability to effectively analyze security and risk within the context of business solut
More jobs from Alectra Utilities
See all jobs of Alectra Utilities