Senior Security Consultant
Telus
CA-ON-Ottawa
13d ago

Description

Make a difference in protecting the availability, integrity, and confidentiality of TELUS services, information, and other assets today.

Join our team

Our Mission : Enabling TELUS at an early stage of project lifecycle to build secure solutions through threat and risk identification as well as security control recommendation.

Secure by Design (SbD) is a process to enable team members, business units and partners to learn about, implement and meet TELUS Corporate Security Policy and Standards.

We provide resources to inform, verify and consult on engagement design, starting early in the process allowing security to be built-in from inception.

Here’s the impact you’ll make and what we’ll accomplish together

As part of the Secure by Design (SbD) team, you are a senior professional who thrives on analyzing network / system / application designs and implementations from a security perspective.

You will be a Subject Matter Expert (SME) in the field of information and network security, designing security into TELUS processes and technical systems and networks.

You will be a respected peer to IT architects, network engineers, and software developers deeply understanding the fundamentals of their work and goals.

This opportunity will allow you to make a difference in protecting the availability, integrity, and confidentiality of TELUS services, information, and other assets.

Here’s how

  • Perform security threat and risk analysis, threat modelling, network / system / application-level security reviews and when necessary hands on testing on a wide variety of TELUS services and product offerings
  • Provide leadership within information security working groups and industry partnerships
  • Help ensure that our systems and network infrastructure solutions are designed and implemented to the highest security standards, inclusive of your recommendations of security controls
  • Work closely with other peers at TELUS to enhance our network, system, and application security posture
  • Understand how to apply standards and best practice and rigor to solving advanced information and network security problems;
  • you have a very good understanding of all the primary security domains as found in various industry bodies of knowledge

  • Analyse network / system / application designs and implementations from a security perspective and will be recognized experts at discovering subtle security issues that appear under unexpected threat scenarios;
  • they will also be equally apt and designing / developing innovative solutions to the security problems that are identified

  • Plan, research and design information and network security systems with hands on application of technical methods / techniques, policies and procedures
  • Conduct security reviews, evaluations, and risk assessments
  • Design / implement risk driven information and network security solutions
  • Evaluate and design security and controls for new technologies to address such areas as infrastructure, security administration, user identification / authentication, data security, network / host intrusion prevention / detection / monitoring
  • Accountable for the development of information / system and network protection policies, procedures, strategies and architectures to define and support TELUS’ information and network security programs
  • Educate and coach peer groups of architects / engineers on how to better design security into their various projects
  • Qualifications

    You’re the missing piece of the puzzle

  • With your 8 -10+ years of enterprise or telecommunications security experience; background in law, IT audit, and technical project management (with a strong security component) will also be considered
  • Distinguished for your intimate knowledge of information / network security technology, audit and control measures, monitoring / investigation methodologies and privacy / regulatory / criminal legislation
  • Recognized for your advanced knowledge of information and network security technology and methods
  • Expert in understanding and application of major security standards, guidance, and frameworks based on NIST, ISO / IEC 27000, OWASP, PCI, CICA, etc to the realities of business and information security
  • Valued for your leadership skills : Ability to influence decisions of peers / teams with technical authority and trust based relationships Ability to technically direct / lead teams Ability to build consensus in team environments and manage conflict while striving for shared goals and objectives Ability to mentor junior team members and aid in their development Ability to make decisions with imperfect information Ability to admit mistakes and bring correction and course change in a timely manner
  • Skilled in project management and system deployment methodologies
  • Commended for your excellent interpersonal and communication skills
  • With a university degree preferably in a technology related field
  • Regarded for one or more security or other applicable certifications such as CISSP; CISA; CISM; CRISC; ISO27000 audit; ITIL
  • Great to haves

  • 3+ years of operational, system administration, or infrastructure build and deployment in a security-focused environment
  • Advanced knowledge of telecommunications industry and network technologies (5-10 years)
  • Knowledge and experience in areas of application security, network security, and cloud security
  • This role may be based in Vancouver, Edmonton, Toronto, Scarborough, Montreal or Quebec City. We have 2 positions available.

    Apply
    Add to favourites
    Remove from favorites
    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form