Job Duties/ Accountabilities:

• Conduct or participate in various information security and compliance assessments based on established security frameworks including but not limited to IS027001, ITSG-33, NIST CSF, CCM and CIS
• Evaluate and rate clients’cybersecurity posture, including their cloud footprint, and provide recommendations for improving the posture
• Analyze and understand client security issues and recommend creative solutions adapted to the client.
• Provide advisory services to clients on various cybersecurity aspects with regards to Compliance, Risks, Privacy, and other Cybersecurity governance issues
• Be able to take the lead of conformity assessment exercises of internal services in order to meet contractual requirements
• Directly contribute to the improvement of clients' cybersecurity practice by drafting policies, guidelines and procedures as needed
• Cultivate relationships with clients to ensure client satisfaction and entail new business
• Employ a structured approach to project delivery to ensure client satisfaction and project profitability.
• Participate in pre-sales activities, proposal development, clients needs analysis, and solution design
• Contribute to the improvement of the practice
• Ability to work concurrently on different projects

Critical Qualifications/ Competencies:

• 8+ years in Cybersecurity
• University degree / diploma in Computer Science or a field related to IT, IT Security or Information Technology, or a solid combination of education and experience
• Experience with some of the following information security concepts and how to asses them:

• Privacy protection – Bill 64, C11 and GDPR
• Risk
• policies, processes, standards and procedures
• Security architecture
• Cloud security and cloud migration challenges
• Business continuity
• Incident response
• Possesses at least one valid certification amongst CISSP, CCSP, CISM, CISA, ISO 27001 Lead Implementer, or ISO 27001 Lead Auditor
• Be sufficiently comfortable with various technologies to be able to evaluate the effectiveness of controls, or suggest controls to be put in place
• Experience evaluating technology controls to ensure cybersecurity in complex customer environments including cloud environments
• Bilingual (French and English)

Preferred Qualifications/Competencies:

• Knowledge of PCI-DSS standard
• Minimum of three years in Security consulting with external clients
• Experience with Threat Modelling, or with conducting Threat and Risk, or Privacy Assessments
• Experience with third-parties risk management principles
• Experience with applying cybersecurity concepts in an IoT, ICS or OT context
• Highly proficient verbal and written communication skills in French and English
• Exceptional client satisfaction attitude
• Excellent communication and interpersonal skills
• Ability to work with others effectively in a team environment
• Ability to work alone and autonomously
• Strong technical skills
• Strong analytical skills
• Ability to write effectively
• High sense of integrity
• Ability to adapt quickly and work at a dynamic fast-paced environment
• Organization and time management skills
• Project management skills
• Ability to travel within Canada if required

Bilingualism is an asset (English and French); adequate knowledge of French is required for positions in Quebec