Description
Bell is looking for an Information security specialist to support compliance and risk management activities during a 6-month engagement. Assessing Bell’s suppliers, the candidate will work closely with the business units and security teams to identify, communicate, and develop remediation for supplier security risks. The candidate will also develop progress and risk reports to be presented to involved stake holders.
The chosen candidate will have the following experience:
Conducting Security Assessments for the determination of information security risks and required mitigation activities;Participation in the negotiation of contracts with suppliers to ensure the inclusion of specific security requirements.Experience communicating and working with both technical and non-technical contacts;An understanding of ISO 27001/27002, or other similar security frameworks such as ITIL, ISO, CoBiT, NIST, TOGAF.Success in the role will be defined by the candidate’s ability to:
Ability to prioritize and work under pressure; strong analytical / problem-solving skills with attention to detail, and good business judgement.Develop and track project plans, and identify and address potential roadblocks or other project risksUnderstand risk modeling and be able to convert that into a risk assessment processCommunicate effectively both verbally and in written reports, to all levels of the organizationMotivate business users and technical teams to take action on security issuesUnderstand and be able to communicate the potential impact of specific vulnerabilities on specific systems based on the system architecture, compensating controls, and purpose of the systemBilingualism is a significant asset (English and French)Certifications related to security (CISSP, GSLC, etc) are an assetPMP or equivalent is an asset Note:
The successful candidate must successfully go through extensive background verifications including but not limited to criminal record and reputational checksAll Security personnel are required to sign a letter of non-disclosure which prevents them from divulging sensitive information that they may be exposed to during their assignment. This policy is strictly enforced.