Senior Security Advisor (Senior Advisor)

at  Trillium Health Partners

Job Description:
Position: Senior Security Advisor

WORK EXPERIENCE REQUIREMENTS

• 3+ years of Information Security experience with expertise in either client/server, network or application security engineering.
• Direct working experience performing IT security and risk assessments and audits:
• Working knowledge of information security frameworks such as the National Institute of Standards and Technology (NIST) Cyber Security Framework (CSF), and ISO 2700 standards.
• Working knowledge of auditing frameworks such as COBIT or PCI.
• Certified Information Systems Security Professional (CISSP) certification is an asset.
• Health care experience an asset.
• Experience interpreting industry and regulatory requirements and authoring supporting controls.
• Strong business and technical acumen.
• Excellent written and verbal communication skills.

DESIRED SKILLS AND KNOWLEDGE

• Identity and access management (I&AM) experience with Active Directory, NTFS permissions, LDAP, and Single Sign On (SSO) solutions.
• Experience developing and maturing information security governance frameworks, such as NIST CSF
• Experience performing Application penetration testing
• Application and database security experience including code reviews.
• Network and security engineering experience including log and network traffic capture analysis.
• Strong understanding of network protocols (e.g. IP, TCP/IP) and other network administration protocols.
• Familiarity with Windows, Linux, and UNIX based operating systems.
• Familiarity and knowledge of application development processes and typical application architectures.
• Familiarity and understanding of encryption concepts.
• Experience with system hardening procedures for Windows, Linux and UNIX platforms.
• Security operations experience with firewalls, IDS/IPS, SEIM and end-point protection platforms.
• Familiarity with Web application development experience using .NET framework as well client side applications for all mobile platforms.
• Familiarity with database technology including Oracle and MS SQL.
• Experience in with Business Continuity Plans and Disaster Recovery Plans.
• Familiarity with Information Technology Infrastructure Library (ITIL) concepts.Familiarity with architecture frameworks such as The Open Group Architecture Framework (TOGAF).
• Demonstrated ability to understand the business side of information risk.
• Strong analytical, research, writing, and communication skills.
• Must have the ability to communicate with internal/external customers, vendors, management etc. in both formal and informal situations.
• Ability to work with teams to achieve goals and meet deadlines in a fast-paced environment.
• Works well under pressure and time constraints and can prioritize competing priorities appropriately.
• Can work independently with minimal supervision and direction.

EDUCATION

• Undergraduate degree in Information Management, Computer Science, Engineering, or emphasis in technology or related field
• Masters degree or postgraduate diploma in information/computer science or a technology-related field preferred.

Additional Knowledge and Skills are as an asset:

• Certified Information Systems Security Professional (CISSP)
• Certified for Pentest
• Certified for Proofpoint Email Security, Insider Threat
• Microsoft Security Operation Analyst is an asset.
• SIEM analysis
• Wireshark, Malware analysis & Triage
• Next Generation Firewall

Internal Candidates who believe they possess the necessary qualifications and experience for this position and who have been in their current position for at least six (6) months are encouraged to apply.
To pursue this career opportunity, please visit our website: www.trilliumhealthpartners.ca
Trillium Health Partners is an equal opportunity employer committed to fostering a healthy, safe and respectful environment for healing, based on our values compassion, excellence and courage. To be Better Together, we commit to fostering a respectful workplace culture that promotes a safe and supportive environment for everyone who provides care, supports caregiving, receives care or visits the hospital.
In accordance with the Accessibility for Ontarians with Disabilities Act, 2005 and the Ontario Human Rights Code Trillium Health Partners will provide accommodations throughout the recruitment and selection process to applicants with disabilities. If selected to participate in the recruitment and selection process, please inform Human Resources of the nature of any accommodation(s) that you may require in respect of any materials or processes used to ensure your equal participation.
All personal information is collected under the authority of the Freedom of Information and Protection of Privacy Act.
Trillium Health Partners is identified under the French Language Services Act.
We thank all those who apply but only those selected for further consideration will be contacted.

This is not an exhaustive list and the details are bound to change over time.