Ubisoft Montreal, an industry leading developer of video games, located in the heart of Montreal’s Mile-End, offers a unique environment where creativity, teamwork and cutting-
edge technology bring to life critically acclaimed video games and iconic AAA franchises.
When you join Ubi Montreal, you enter a community of passionate, extraordinary people connected by their need to innovate, to be creative and to work with the latest technology.
You’ll discover a world where employees enjoy constant career advancement, a supportive learning environment, and competitive compensation packages.
The Risk Management Specialist (IAM) is a hands on leader of the assigned program, carries on stakeholder interaction and ensures program’s success in terms of expected results, quality, budget and time.
Concomitantly, he / she acts as a subject matter expert for IAM related inquiries. This person will act as a coach for corporate security analysts by leveraging their experience and technical expertise.
The main and routine tasks of this position are to :
Implement identity & access management at the global level and coordinate all local efforts toward a global unique strategy;
Oversee and organize the identity & access management strategies and activities;
Define the strategy in regard to information security governance; oversee the development of the policy framework, coordinate the creation, review and deployment of policies, standards, processes and guidelines;
Perform business impact analyses and lead security risk assessments / audits on a wide variety of computing technologies and architectures;
Assist project teams to clearly understand indentified risks and to develop effective remediation strategies that balance business needs with the level of risk identified;
Develop and maintain security reporting metrics, scorecards and dashboards to communicate project risks and remedation activity status to management in non-
technical business language;
Assist management to identify overall security strategies to better address common risk areas;
Create and implement proper methodologies and related controls to audit, follow-up and ensure the implementation of Ubisoft security strategy with a quality approach;
Act as a subject matter expert in regard to risk management;
Carry out all other related tasks.
Bachelor in Computer Science or equivalent combination of training and experience.
Masters’ degree is an asset.
CISSP, CRISC, CISA, CISM or related certifications.
Relevant experience :
6+ years in information security field or relevant experience.
3+ years hands-on experience in risk management.
2+ years in audit.
Ability to communicate effectively with all levels of management;
Have analytical and synthesis skills
Strong problem-solving and critical thinking skills;
Methodic and result-oriented;
Strong innovation skills;
Ability to write clear and concise documentation;
Proactive and autodidact;
Adapt quickly to change;
Written and verbal communication skills;
Interpersonal and negotiation skills.
English language is required (oral / written);
French language is an asset;
Security frameworks / standards (ISO 27002, PCI compliance, RCSA, NIST / DISA guides, etc.);
BCP / DRP methodologies - considered an asset;
Networking (TCP / IP, security protocols);
Privacy and industry standard;
Data security and encryption.