Security Consultant on TELUS's Cybersecurity Platforms Operations team. Providing hands - on support for critical security services and collaborating with industry - leading vendors.
About the role
- IT Internal Audit Assistant Manager leading independent reviews of IT projects and programs. Enhancing IT security and governance risk/control environment across North America with global team support.
Responsibilities
- Lead independent reviews of IT projects and programs and be responsible for supporting planning and execution of risk-based, process focused IT audit and advisory assignments.
- Improve the overall IT security and governance risk/control environment for key IT projects/programs developed.
- Operate primarily across North America with support to UK and European operations.
- Provide real-time guidance on cybersecurity, AI implementation, secure development practices, cloud infrastructure, and data governance.
- Identify gaps in Software Development Lifecycle practices across critical projects and collaborate with stakeholders to craft recommendations that align with both internal standards and industry best practices.
- Prepare concise, executive-ready memorandums that distill complex technical risks into clear business language.
Requirements
- Post Secondary education in Information Systems, Computer Science, Software Engineering, or a related field - is required.
- A minimum of 3 years in IT auditing - is required.
- Recognized professional audit or security related designation (CIA, CISA, AAIA, CCSK, CCSP, CISSP, CISM, etc.).
- Working experience in reviewing software engineering controls related to project governance, data governance, IT and Data Security, testing and change/release management areas.
- Knowledge of best practices and strong security controls over cloud environments (AWS, Azure, GCP, etc.) or Artificial Intelligence (AI)/Machine Learning (ML) technologies and their security implication.
- Proficient in reviewing security vulnerabilities identified from different platforms such as middleware/container/automated pipelines with experience to independent assess the end-risk and root cause for each of the vulnerabilities.
- Knowledge of cyber security risks, assessments, reports and frameworks such as those published by leading organizations (e.g. NIST, ISO 27001, SOC 2 Type II, etc.) is an asset.
- Strong analytical skills that lead to accurate conclusions.
- Strong project management skills and solutions driven.
- Excellent written and communication skills.
- Experience using data analytics tools is an asset.
- Prior Big 4 firm and insurance industry experience is an asset.
- For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country.
Benefits
- Flexible work arrangements and a hybrid work model
- Possibility to purchase up to 5 extra days off per year
- Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more
- Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Senior Cloud Cybersecurity Engineer responsible for cloud security engineering at Tanium. Collaborate to protect cloud infrastructure against threats in Azure, AWS, and Kubernetes.
Managing Consultant in Cybersecurity and NERC Compliance at Guidehouse. Leading client management and project workstreams within the electric utility sector in Canada.
Senior Analyst performing SOC 1 and SOC 2 examinations at Kraken. Leading compliance initiatives and enhancing IT controls in a remote environment.
Security Guard responsible for protecting people and property in Amherst, Nova Scotia. Conducting patrols and monitoring security systems to ensure safety.
Security Lead responsible for driving security function and strategy at Newton, a crypto trading platform. Ensuring CIRO and SOC 2 alignment while embedding security practices across all systems and applications.
Senior Cybersecurity Engineer at Vervent focused on security solution design and incident response. Join a growing team to implement and strengthen enterprise security operations.
IA
Conseiller juridique stratégique au sein des Services juridiques pour la protection des renseignements personnels au Canada. Fournissant des conseils stratégiques en matière de cybersécurité et réglementaire.
Manager, Information Security at Manulife will assess vendor IT risks and security controls. Conducting audits, guiding businesses in IT risk management under a hybrid working model.
Key role in operational security management of IT infrastructures at Xideral. Involves risk management, security architecture, and coordination with various stakeholders.