Detailed Job Listing |
|
| Title: | SECURITY CONSULTANT |
| Type: | CONTRACT |
| Max Rate: | Open/hr |
| Rate notes: | It is dependent on Experience |
| Max Salary: | Open |
| Salary notes: | It is dependent on Experience |
| Duration: | 6+ months |
| Description: | looking for a security professional (expert knowledge in at least one of: Windows, Active Directory, Network, Unix, Databases (my preference is Unix and network to fill a gap). IT Security Assessment Services is considered the Bank's core competency group for information security controls. In support of the Information Security & Control (IS&C) global mandate as it pertains to the Scotiabank Group, subsidiaries, affiliates and strategic alliance partners as well as to ensure the protection and integrity of Bank information and assets, the incumbent will: + Define and conduct detailed, risk-based evaluations of the design and operating effectiveness of Information Technology (IT), security, application and pervasive control systems. + Provide expert opinion on the above-mentioned entities' compliance with information security standards, regulatory requirements and 3rd party agreements. + Report to senior management on the status of the system of internal controls with recommendations for remediation of risks. |
| Experience: | + Assess, test and document information technology, security, application and pervasive controls to conclude on compliancy to bank standards, industry best practices, contract deliverables and regulatory requirements (e.g. Interac, Visa, Office of the Superintendent of Financial Institutions Canada (OSFI), SOX). + Subject matter expert on information security controls, identifying and evaluating risks and providing expert opinion on risk remediation. + Investigate, escalate and track information security control deficiencies, security review findings and security breaches through to remediation and closure. + Create and administer management reporting. Examples include: executive summaries, condition status reporting, statistics and action item tracking. + Provide expert counsel on IT security controls to clients within IS&C, IT&S. + Continually improve SAS processes including but not limited to: Overseeing the development and implementation of system and process enhancements. + Managing and maintaining department software and support tools. + Creating and documenting new programs and internal + Expertise in information technology and security key controls and risk assessment concepts + CISA accreditation or equivalent |
| Location: | SCARBOROUGH |
| Country: | CANADA |
| Consultant: | KETAN PATEL |
| Date Opened: | 15/10/2009 |
| Job No: | 1095 |
Submit a resume for this job |
|
| Search Again Back | |