Req Id : 289852
At Bell, we do more than build world-class networks, develop innovative services and create original multiplatform media content we advance how Canadians connect with each other and the world.
If you’re ready to bring game-changing ideas to life and join a community that values, professional growth and employee wellness, we want you on the Bell team.
The Finance Team manages the performance and risk profile of Bell, ensuring the needs of customers, investors and employees are balanced with long-term business success.
We work closely with internal and external stakeholders to develop and execute plans that help the company achieve its strategic objectives and ensure financial sustainability.
Position Description :
Bell Internal Audit is an stand-alone appraisal function within Bell. Its purpose is to provide the Audit Committee of the Board of Directors and executive management with impartial evaluations of the control environment in managing risks facing the organization including Technology and Cybersecurity risks.
As a core team member of the Internal Audit team that is tasked with Cybersecurity, Network and IT and Regulatory Compliance risks, the Senior Manager, Information Systems and Security Audit, will work alongside a team of accomplished Cybersecurity and Technology professionals and auditors in evaluating ongoing technology and security risks and as well as risks arising from the adaptation of emerging technology.
Job Duties / Accountabilities :
Lead or partner with other team members to plan and execute audit assignments with a particular focus on Cybersecurity, Network, Information Technology as well as Regulatory Compliance
Design and perform audit procedures to assess the adequacy and effectiveness of Cybersecurity and technology controls through walkthroughs and review of technology design, implementation, configuration and ongoing operation.
Design and perform technical tests (such as vulnerability assessments, code reviews, penetration tests) to identify vulnerabilities associated with network, infrastructure, software (O / S, applications, web applications, mobile applications, firmware, etc.) and hardware
Document findings in a structured audit reports to brief findings to executive management
Advise senior management on ongoing and emerging Cybersecurity, Regulatory and Technology risks
Critical qualifications / Competencies :
Minimum 10 Years of experience in Cybersecurity
Hands-on knowledge of networking, coding, web development, penetration testing and / or code review
Broad and deep knowledge of the general security threat landscape and regulatory requirements
Fast learner with a curious and exploratory mindset and a strong desire to the continuous pursuit of broad and deep technical and business knowledge
Creative, innovative, analytical and ability to question the status quo in a constructive manner.
Strong verbal and written communication skill, facilitation and negotiation skills
Ability to maintain information in confidence and exercise good judgment
Preferred Qualifications / Competencies :
University Degrees in Engineering, Computer Science, Mathematics or Statistics
Security certifications and designations such as CISSP, CISM, CompTIA Security, CEH, GSEC, OSCP, OSCE, GWAPT, GMOB, GXPN, etc.
Knowledge of OWASP, ISO, NIST, ISF, SANS or other security-related frameworks
Experience in conducting vulnerability identification, bug bounty hunting, or security incident response.
Knowledge in data analytics
Bilingualism is an asset (English and French); adequate knowledge of French is required for positions in Quebec.
Additional Information :
Position Type : Management
Job Status : Regular - Full Time
Job Location : Canada : Ontario : Mississauga
Application Deadline : 06 / 27 / 2021