Job Duties / Accountabilities:

 The successful candidate will be accountable for the following:

• Provide expert level advice to functional teams on the prioritization and deployment of security controls to meet industry and corporate standards, and accommodate unique business challenges and risk levels
• Assists in project planning for multi-year roadmap strategies
• Work with, and provide security guidance to, delivery teams within Bell as they perform security activities including but not limited to; infrastructure, application and code scans to uncover vulnerabilities, proactive threat assessments
• Assess and evaluate security posture across complete platforms, identifying gaps and providing recommendations for security control deployment
• Evaluate perimeter defense security posture and recommend action plans and security controls prioritization
• Manage security-related technical queries, participate in their resolution and provide directional support in the development and deployment of security controls
• Measure effectiveness of security controls deployment through performance of formal security maturity assessments, identifying and prioritizing high-risk assets
• Maintain thorough, current and practical understanding of Bell’s security policies, process and tool and guide the functional teams towards resolution of security challenges not limited to
• Keep up-to-date with emerging security threats, trends and technologies, evolving and maintaining skills to meet changing needs
• Work closely with the security architecture and threat modelling teams to ensure all functional and business areas are consistently protected
• Assist in the resolution of security incidents, liaising with various security program teams as required
• Support and collaborate with various security programs within Bell, working closely with Bell Corporate Security and other business stakeholders

Critical Qualifications/Competencies:

• 5+ years of experience in IT and Networking
• 5+ years of progressive experience in cyber security
• Demonstrable understanding of the concepts of information security and principles of information handling and protection
• Knowledge of the main security standards: ISO 27000 family, NIST, PCI-DSS, etc.
• Working knowledge of the following solutions: UTM, SIEM, CASB, EDR technologies
• Familiarity with data loss prevention (DLP) technologies and methodologies
• Experience with networking and network services (DNS, SMTP)
• Knowledge of SDLC, IAM, EDR concepts, methodologies, and technologies
• Experience with Windows/Linux OS
• Experience resolving security incidents
• Extensive experience in managing security initiatives delivery involving multi-tiered systems integration
• Experience in working with WAF/Firewall technologies
• Strong organizational and prioritization skills
• Ability to assess and articulate customer needs/requirements and develop potential solutions
• Ability to influence at all levels
• Experience in agile methodologies (Scrum, Kanban) and tools (Confluence, Jira)
• Experience working in the telecommunications industry, with a focus on network security and operations

Education:

• Bachelor's Degree in Information Technology or related technical field.

Certifications:

• One or more of the following certifications: CISSP, CISA and/or CISM.
• One or more of the following certifications: CCNP, CCIE Data Centre and/or Security
• Good to have AWS/Azure/GCP Speciality Certification in Security Domain

Assets

• Relevant experience in the design and architecture of security solutions integrating cloud-computing components