Job Description
Job Duties / Accountabilities:
The successful candidate will be accountable for the following:
- Provide expert level advice to functional teams on the prioritization and deployment of security controls to meet industry and corporate standards, and accommodate unique business challenges and risk levels
- Assists in project planning for multi-year roadmap strategies
- Work with, and provide security guidance to, delivery teams within Bell as they perform security activities including but not limited to; infrastructure, application and code scans to uncover vulnerabilities, proactive threat assessments
- Assess and evaluate security posture across complete platforms, identifying gaps and providing recommendations for security control deployment
- Evaluate perimeter defense security posture and recommend action plans and security controls prioritization
- Manage security-related technical queries, participate in their resolution and provide directional support in the development and deployment of security controls
- Measure effectiveness of security controls deployment through performance of formal security maturity assessments, identifying and prioritizing high-risk assets
- Maintain thorough, current and practical understanding of Bell’s security policies, process and tool and guide the functional teams towards resolution of security challenges not limited to
- Keep up-to-date with emerging security threats, trends and technologies, evolving and maintaining skills to meet changing needs
- Work closely with the security architecture and threat modelling teams to ensure all functional and business areas are consistently protected
- Assist in the resolution of security incidents, liaising with various security program teams as required
- Support and collaborate with various security programs within Bell, working closely with Bell Corporate Security and other business stakeholders
Critical Qualifications/Competencies:
- 5+ years of experience in IT and Networking
- 5+ years of progressive experience in cyber security
- Demonstrable understanding of the concepts of information security and principles of information handling and protection
- Knowledge of the main security standards: ISO 27000 family, NIST, PCI-DSS, etc.
- Working knowledge of the following solutions: UTM, SIEM, CASB, EDR technologies
- Familiarity with data loss prevention (DLP) technologies and methodologies
- Experience with networking and network services (DNS, SMTP)
- Knowledge of SDLC, IAM, EDR concepts, methodologies, and technologies
- Experience with Windows/Linux OS
- Experience resolving security incidents
- Extensive experience in managing security initiatives delivery involving multi-tiered systems integration
- Experience in working with WAF/Firewall technologies
- Strong organizational and prioritization skills
- Ability to assess and articulate customer needs/requirements and develop potential solutions
- Ability to influence at all levels
- Experience in agile methodologies (Scrum, Kanban) and tools (Confluence, Jira)
- Experience working in the telecommunications industry, with a focus on network security and operations
Education:
- Bachelor's Degree in Information Technology or related technical field.
Certifications:
- One or more of the following certifications: CISSP, CISA and/or CISM.
- One or more of the following certifications: CCNP, CCIE Data Centre and/or Security
- Good to have AWS/Azure/GCP Speciality Certification in Security Domain
Assets
- Relevant experience in the design and architecture of security solutions integrating cloud-computing components
Job ID: 127643