At Bell, we do more than build world-class networks, develop innovative services and create original multiplatform media content – we advance how Canadians connect with each other and the world.

If you’re ready to bring game-changing ideas to life and join a community that values, professional growth and employee wellness, we want you on the Bell team. 

Bell is making unmatched investments in our world-leading broadband fibre and wireless networks because we know they’re the backbone of the products and services our customers love. If you’re excited about transforming the way people connect, our Network team is the right place for you.  
 Position Description:

The Senior Specialist Information Security, Governance, Risk and Compliance is tasked with the development, evolution and execution of security frameworks and processes to ensure the continuous improvement of Bell’s network security posture. The Senior Specialist will be tasked with a range of strategic projects and assessment programs with significant cross-functional collaboration across Network and Security domains.

Responsibilities:

• Develop and manage security governance systems, procedures, and policies to ensure robust risk management and compliance with industry and corporate security policies and best practices;
• Review and advise on information technology system security controls to ensure compliance with industry and corporate standards;
• Evaluate and monitor risk assessment and gap remediation processes and provide recommendations for process improvement
• Act as a spokesperson and subject matter expert in information security GRC, working in collaboration with Bell Corporate Security and other stakeholders.
• Review and analyis of complex enterprise level information technology systems, identifying risk and security exposures
• Contribute to audits and inspections, advising and providing oversight on remediation activities, documentation and reporting
• Measure effectiveness of security processes and controls through development of metrics, dashboards, and reporting mechanisms
• Work closely with security and business leaders / stakeholders to drive security compliance and build a culture of security awareness

 Qualifications:

• 5+ years of progressive experience in information security and understanding of the concepts of information security and principles of information handling and protection
• 3+ years of experience as a Security Governance, Risk Management, and Compliance (GRC) specialist
• 3+ years of experience in designing and developing procedures, and processes for Information Security best practices
• Experience facilitating security audits and/or remediation security audit findings
• Experience performing risk assessment and management, developing mitigation strategies
• Demonstrated knowledge of information technology security, trends, leading practices, regulatory and industry standard compliance issues (ISO 27001, SOC 2, PCI-DSS and others)
• Experience in executive level presentations and briefings
• Excellent communication skills. Bilingualism is an asset.
• Experience in agile methodologies (Scrum, Kanban)
• Experience working in the telecommunications industry, with knowledge of network security and operations

 Education:

• Bachelor's Degree in Information Technology or related technical field.

 Certifications:

• One or more of the following certifications: CISSP, CISA and/or CISM