|Job Ref:||06848a083||Employer:||Direct Solutions - Canada||Country:||Canada||County/State:||Ontario||City:||Markham||Address:||Post Date:||15/10/2016 23:24|
SUMMARYThe position of Information Security Specialist will report to the Manager, IT Security in support of the Information Security Program. The position will be responsible for various operational and implementation type of tasks in maintaining and improving the IT-Security posture with a particular focus on Application Security. KEY DUTIES & RESPONSIBILITIESThis role as the Information Security Specialist - Application Security will require intermediate level experience in Application NA areas: Application Security - 60%, Network/Infrastructure Security - 40%.Conduct maturity assessments and technology gap analysis for NA and develop technical requirements, security solutions, and implementation planning for application NA implementation programs for improved application security, including secure application design, secure development life cycle, vulnerability assessment, and stress NA working relationships with Development teams, to work in partnership in approving overall security posture of application NA to design end-to-end application security solutions across large enterprise IT NA understanding of SDLC and Agile modelling design and NA and perform internal vulnerability assessments and penetration tests to validate security posture of web NA IT-Security Manager in aligning Corporate Information Security Program priorities and provide input in shaping multi-year NA and interact with IT-Security team members to provide consistent approach in consulting, problem solving and policy enforcement as part of the Information Security NA in security initiatives and proof of concepts with vendors, utilizing critical analytical skills to advise management on best solution fit into NA security best practices and architectural recommendations as they align to written policies, guidelines or NA continual updates to technical security policies to help enforce written documented security policies and NA with Development, Infrastructure, DB admins and Network Administrators in implementing and enforcing security technical best NA informed on trends and issues in the security industry, including current and emerging technologies. EDUCATION, JOB RELATED YEARS OF EXPERIENCE & QUALIFICATIONHigh School Community college diploma or equivalent training (e.g. RPA, CET)University graduation or professional certification (e.g. P. Eng, CMA, CGA or equivalent courses)More than five years up to ten years KNOWLEDGE & SKILLSUniversity Degree or College Diploma equivalent in a technology NA in designing and implementing application security solutions such as SAST and DASTDemonstrated knowledge in the OWASP framework, and other application security best practice NA considered a strong asset, with other Security industry technical certifications (CEH, GIAC, Security+, OSCP) also helpful.5-10 years' experience in IT-Security specific NA level understanding of LAN/WAN technologies, TCP/IP stack, OSI layer (IPSec, NAT, DNS, DHCP)Knowledge of security attack methodologies and understanding of the anatomy of an NA understanding of core Microsoft technologies such as Active Directory, MS NA and adaptable to taking on various roles, both on a technical level and operational NA technical aptitude in compromise kill-chain cycles, innate ability to think like a malicious NA ability to apply IT in solving security NA ability to articulate technical security risks in a direct and concise manner for upper management visibility and NA analytical and problem solving skills, excellent interpersonal NA individual, with a willingness to learn and apply new NA understanding of project management NA verbal and written communication skills. Licenses and/or Professional AccreditationCISSP
IQ Hunt is a trusted provider of top-tier IT Staff, on a permanent, contract or project basis. We provide top talent, sourced professionally by senior recruiters all backed by our industry leading guarantees. Our quality of hire is second to none.