Cybersecurity Consultant - Toronto, Canada - OLG

OLG

Verified Company

Toronto, Canada

4 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

Range:
78, ,600.00 CAD

Job Description:

Cybersecurity Consultant

GAME ON - OLG needs you

We've said GAME ON, and we mean it - OLG is rapidly transforming its organization to better serve Ontarians by delivering great gaming experiences through our digital, retail lottery, and land-based casino channels.

Over the course of fiscal , OLG delivered approximately $2.5 billion in net profit to the Province of Ontario.

OLG is now expanding our horizons even further, with a new strategic direction, to become a world class gaming entertainment leader with a globally admired digital platform.

We are ready to take this game to the next level and need a passionate Cybersecurity Consultant to develop and deliver the enterprise information security and privacy strategy program to appropriately safeguard business operations and information assets.

Provide day to day analysis on security services (e.g. security delivery, project delivery, operator governance etc.) to identify potential threats and provide recommendations in how to mitigate these security gaps.

YOUR ROLE IN THE GAME
Reporting to the Director Technology Security, you will be empowered to:

Deliver, manage, monitor and operate the security strategy, framework, policies, procedures and standards across the entire security service lifecycle to ensure maximum safety for all OLG information assets.
Maintain and update security architecture, policies, procedures, and standards that enables the enterprise architecture roadmaps to exceed customer's security and privacy expectations
Act as the primary security service owner managing all aspects of service delivery, operationally, guidance for projects and OLG / Operator governance and oversight ensuring all implementations of new and changing technology adhere to security requirements, policies and standards and provides expert opinion regarding action to mitigate risk.
Lead risk-related security activities, including identifying, evaluating, planning, testing, delivery, reporting and governance prioritization to ensure appropriate remediation and mitigation measures are put in place.
Conduct vulnerability assessment activities to understand security posture deficiencies and ensure remedial action and mitigation measures are implemented.
Monitor information security technologies and associated processes and practices to ensure adequate threat mitigation and security measures are in place.
Provide tier 2 and tier 3 support and acts as the CSIRT lead during the investigation of security related incidents; escalates and communicates potential risks and mitigation strategies to all relevant stakeholders to ensure action is taken to address any potential risks.
Contribute expert opinion to the definition of major security compliance related incidents to ensure they are raised with the required stakeholders and a resolution is put in place
Research and monitor emerging security regulations and trends to ensure compliance with industry regulations and standards, including, regulations to keep up to date on market changes
Report on the levels of security compliance risk and control effectiveness and produces risk acceptance documents for dissemination to key stakeholders to ensure awareness of security deficiency.
Liaise with all lines of business by participating and representing OLG Information security services and solutions in projects and initiatives and providing leadership, mentoring and guidance to meet business needs and continuously build relations to achieve information security compliance.
Oversee the third-party service providers, vendors and operators' relationships for governance and oversight and provides expert opinion and recommendation regarding information security controls in order to mitigate any risks
Promote continuous improvement of the security services through regular self-assessment activities and feedback from OLG management to ensure services remain current and pertinent to OLG.
Translate complex security use cases, concepts and governance standards into scenarios and language that all OLG can relate to and understand
Develop program compliance metrics and a prioritization framework and guidelines to ensure OLG is following and aligned to standardized monitoring and reporting practices.
Promote continuous improvement of the program through regular self-assessment activities, development and enhancement of tools and processes and feedback gathered from OLG management, cross-functional teams and third parties to ensure security programs and initiatives remain current and pertinent to OLG.
Other duties as required to maintain a robust and responsive security program as directed.
Additional Job Details: Understanding of industry and government legislation and regulation (AGCO). Required to comply and to interpret regulations and policies and to ensure compliance. Understanding of FIPPA, industry standards and Internal Controls.