SENIOR INFORMATION SECURITY ANALYST

at  City of Coquitlam

Regular Full-Time Exempt
About Us
One of BC’s Top Employers, the City of Coquitlam offers meaningful career opportunities to make a difference within the local community. As the sixth largest city in BC, we are home to more than 150,000 residents. Our diverse municipality is a great place to work as it continues to grow through innovative urban design, inspiring arts, culture and recreation programs, and state-of-the-art transportation systems. Our brand is built on managing our resources in a responsible and sustainable manner, while supporting a vibrant, growing regional urban centre. We envision a bright future in Coquitlam that we hope includes you!
About You / What We Are Looking For
The Senior Information Security Analyst is a new, specialized senior role for the City of Coquitlam and we are looking for a passionate expert in this field to join our team!

In this exempt role you will act as a special advisor to the Chief Information Officer as well as other peers including both managers and unionized team members. Your focus will be protecting the integrity of our data, information systems, and networks, including secure implementation and delivery of technology services across the City’s various departments. In this role you can look forward to:

• Planning, leading and executing risk assessments to determine the security posture of the City’s data and infrastructure from existing systems and those being considered for the future.
• Planning, implementing, administering, maintaining and monitoring IT security controls for digital assets.
• Facilitating the development of security policies, procedures, exercises, response plans, and maintaining documentation.
• Leading the design of the City’s security architecture.
• Responding to cyber security events, incidents, and participates in security investigations.
• Designing a vulnerability program and coordinating vulnerability scanning and city-wide penetration tests and assessments.
• Coordinating the mitigation of assessment findings.
• Developing and maintaining the cyber security risk register, playbooks and test cases.
• Developing and delivering educational security awareness training for City staff.
• Keeping abreast of the latest security and technology developments.

Please note, this is a reposted position. Candidates who previously applied do not need to apply again.

Minimum Qualifications

• Bachelor’s degree in Computer Science, Information Technology, or an equivalent.
• Minimum 5 years IT experience, including 3 years of progressively responsible experience in cybersecurity, or information security.
• CISSP, CCSP, CISM or equivalent.

Preferred Qualifications

• Strong knowledge of and experience with security threat and risk assessments (STRAs) and cyber incident management.
• Strong knowledge of and experience with security infrastructure, and cloud security.
• Excellent project management skills and effectiveness in planning, coordinating, organizing, facilitating and problem-solving.
• Excellent research and analytical skills.
• Experienced in stakeholder engagement within an Information and Communications Technology team, and with other departments.
• Ability to handle confidential and sensitive information with a high degree of discretion and political acumen.
• Demonstrated oral, written, and presentation skills, with the ability to communicate at technical and non-technical levels to deliver presentations and training sessions on cyber security.
• Familiarity with the National Institute of Standards and Technology (NIST) framework.
• Familiarity with Payment Card Industry Data Security Standard compliance (PCI DSS).

What We Offer:
This excluded position has an annual salary range of $122,343 - $137,618. The rate of pay is based on a variety of factors including qualifications, knowledge, experience and skills.
You will have the chance to join a rapidly growing and diverse team dedicated to supporting the local community, and be able to engage in variety of learning and development opportunities. Additionally, there is an opportunity to participate in an earned day off/flex day program. This position is based in Coquitlam with some flexible, hybrid work options available. The City offers an attractive vacation and extended benefits package, including the ability to contribute to the Municipal Pension Plan.
Accessibility / Equal Opportunity Employer
The City of Coquitlam is proud to be an Equal Opportunity Employer working towards enhancing equitable practices in our recruitment and retention processes. As an organization we are committed to creating an inclusive work environment to support our growing and diverse work force. To learn more about what equity, diversity, and inclusion means, and the City’s efforts in support of these principles, please visit coquitlam.ca/edi for more information.
If at any time during the application or recruitment process you require additional assistance or an accommodation, please contact our team for confidential support. Staff can also provide in-person support if required.
Applicants under consideration may be required to undergo a police information check (with no adverse reports).
Good people make Coquitlam great, sign up for career alerts through our recruitment portal to stay up to date about opportunities within our team, or follow us on LinkedIn to learn more about how #YouCouldWorkHere too!
Please apply online at www.coquitlam.ca/careers by 11:55 pm on September 29, 2024.
We thank all applicants for their interest; however, only those selected for an interview will be contacted

• Planning, leading and executing risk assessments to determine the security posture of the City’s data and infrastructure from existing systems and those being considered for the future.
• Planning, implementing, administering, maintaining and monitoring IT security controls for digital assets.
• Facilitating the development of security policies, procedures, exercises, response plans, and maintaining documentation.
• Leading the design of the City’s security architecture.
• Responding to cyber security events, incidents, and participates in security investigations.
• Designing a vulnerability program and coordinating vulnerability scanning and city-wide penetration tests and assessments.
• Coordinating the mitigation of assessment findings.
• Developing and maintaining the cyber security risk register, playbooks and test cases.
• Developing and delivering educational security awareness training for City staff.
• Keeping abreast of the latest security and technology developments