IT Security Consultant - Ottawa, Canada - Convergence Networks

Convergence Networks

Verified Company

Ottawa, Canada

1 week ago

Posted by:

Sophia Lee

beBee Recruiter

Description

IT Security Consultant

SECURITY CONSULTING AND ASSESSMENT
OTTAWA- Hybrid, on site and client visit

Convergence Networks is one of North America's leading managed service and managed security providers.

We are a service company focused on helping clients leverage technology as a strategic tool and proactively protecting their business.

We are fueled by providing outstanding service and sharing our passion for innovative technology as part of our integrated solutions.

IT Security Consultant's (referred to as vCISO within Convergence) are seen as the information security expert by our clients and have the opportunity to help design and lead their overall security posture into the future.

vCISOs work with a myriad of different businesses that operate in varying industries, each of which ultimately rely on having a secure network as the foundation of their operations.

vCISOs are responsible for assisting new and existing clients with establishing and maintaining their information security management programs to help ensure the confidentiality, integrity, and availability of their information technology systems, networks, and data.

Through established Convergence Networks consulting processes and procedures, the vCISO assists with the direction and management of a client's strategic, operational, and budgeting efforts.

With the purpose of protecting their organization's information assets, you will gain an understanding of the client's business, the industry they operate in, and leverage that understanding to provide consulting and guidance to business leaders.

WHAT WILL YOU DO AS A VCISO?

Establish strong relationships with clients as a foundation of trust and mutual respect between their organization and Convergence Networks.
Visit client sites, establishing a regular onsite meeting rhythm with your client base.
Provide confident consultation and solution proposals based upon a deep understanding of the customer's business needs, existing IT system posture, adversity to risk, perceived painpoints, cultural influences, and financial/regulatory constraints.
Assist customers with integration of information security into their business strategy, processes, and culture.
Collaborate with clients to identify opportunities to improve risk posture, developing solutions for remediating or mitigating risks based upon the business objectives, financial constraints, regulatory requirements, and adversity to risk.
Create, maintain, and grow strong professional relationships with the key stakeholders and decision makers within your customer base, allowing you to have otherwise difficult financial conversations regarding invoices, recurring contracts, conflicts with support staff, etc.
Stay abreast of trends, advances, and solutions within the broader IT and IT security industries.
Ongoing education and research on how new governmental legislation and compliance regulations affect client security policies, practices, and procedures.
Provide recommendations on IT best practices and security awareness training for clients.
Serve as a liaison to auditors, assessors and examiners.
Strive to continuously increase the value proposition of our recurring monthly service agreements with existing customers.

WHAT SKILLS DO I NEED TO BE A SUCCESSFUL VCISO?

Excellent communications skills both verbally written.
IT management and support history, including a mix of strategic consultation and network administration.
Working knowledge of networking technologies such as firewalls, routers, switches, firewall access controls, VPNs, perimeter security, network access controls, network monitoring software, endpoint protection, data loss prevention, security information and event management.
Strong working knowledge of security threats, vulnerabilities, and exploits, as well as safeguards to address them.
IT project management experience.
Outstanding knowledge and understanding of the three fundamental safeguard types technical, administrative, and physical.
Experience in cyber risk management and incident response planning.
Knowledge of risk assessment procedures, rolebased authorization methodologies, authentication technologies and security attack pathologies.
Experience developing and authoring information security policies, standards, processes, procedures, and guidelines.
Sound knowledge of identity & access management, vulnerability assessment tools (Nessus etc.), and data encryption technologies.
Strategic leader who can drive a vision for cybersecurity while simultaneously striving for tactical results.
Experience communicating security related concepts to a broad range of technical and nontechnical audiences.
Experience relating business requirements and risks to technology proposals for securityrelated issues.
Proponent of continuous improvement processes and the ability to challenge the status quo.
High level of personal integrity, the ability to professionally