Location : National Capital Region
Security Clearance : Secret Security Clearance
Core Responsibilities :
The responsibilities for the Information Technology Security Methodology, Policy and Procedures Analyst Level 3 include, but are not limited to the following tasks :
Review, analyze, and / or apply Federal, Provincial or Territorial Government IT Security methodologies, programs, policies, procedures, standards, guidelines, and IT Security Risk Management methodologies;
Develop IT Security standards, procedures and guidelines pursuant to the requirements of The National Security Policy, Policy on Government Security, supporting operational standards (e.
g., MITS), departmental / agency security policy, and other relevant standards, procedures and guidelines;
Develop IT Security policy in the areas of IT security and assurance, standard Certification & Accreditation frameworks for IT systems, information infrastructure protection, product evaluation, privacy, Business Continuity Planning, contingency planning and Disaster Response Planning, Research & Development;
Develop IT Security risk assessment methodologies for application to Government of Canada institutions; and
Develop and deliver training material relevant to the resource category.
Knowledge, Skills and Abilities Required :
A minimum of five years cumulative experience in the last eight years related to the development of IT Security methodologies, policies, procedures, standards and / or guidelines.
This includes review and / or analysis resulting in recommendations for changes / amendments / updates.
Possess one current professional certification from the following : CIISP from (ISC)2;CISSP / ISSEP from (ISC)2;CISSP / ISSAP from (ISC)2;
CISSP / ISSMP from (ISC)2;CISM from ISACA; CBCP from DRI;CPP from ASIS; andCISA from ISACA .