Responsibilities:

• Act as a spokesperson and subject matter expert in information security governance, risk management and compliance for the Network managed services teams and clients.
• Develop and implement security safeguards and metrics in collaboration with operational and business teams to support client security requirements. 
• Review and maintain IT system security controls to ensure compliance with industry standards, contract requirements and clauses.
• Review and analyze complex IT systems identifying risk and security exposures.
• Coordinate audits and IT inspections, managing remediation activities, documentation and reporting.
• Produce and maintain business risk reports and impact analysis, developing action plans to minimize risk to the business.
• Evaluate and monitor risk assessment and gap remediation processes and provide recommendations for process improvement
• Measure effectiveness of security processes and controls through development of metrics, dashboards, and reporting mechanisms
• Work closely with security and business leaders / stakeholders to drive security compliance and build a culture of security awareness

Qualifications:

• 5+ years of progressive experience in information security and demonstrable understanding of the concepts of information security and principles of information handling and protection
• 3+ years of experience in designing and developing procedures, and processes for Information Security best practices
• Experience  in facilitating and performing security audits
• Experience performing risk assessment and management, developing mitigation strategies
• Demonstrated knowledge of information technology security, trends, leading practices, regulatory and industry standard compliance issues (ISO 27001, SOC 2, PCI-DSS and others)
• Experience in executive level presentations and briefings
• Experience delivering services in a client-facing role
• Excellent communication skills. Bilingualism is essential.
• Experience in agile methodologies (Scrum, Kanban)
• Experience working in the telecommunications industry, with knowledge of network security and operations

Education:

• Bachelor’s degree in telecommunications or in computer science with a specialization in telecommunications, or the equivalent.

Certifications:

• One or more of the following certifications: CISSP, CISA and/or CISM.

Security Clearance

• Any Security Clearance will be considered as an asset: Site Access, Secret (Level II), Top Secret (III) or Enhanced Top Secret (III)

Bilingualism is an asset (English and French); adequate knowledge of French is required for positions in Quebec.