Job Description:Type: ContractTerm: 3 months with possibility of extensionsLocation: Virtual / Edmonton, ABHours: 35 hr/weekStart: early MarchThis contract position is responsible for the scoping, design and implementation of technical aspects of cybersecurity projects.The Analyst is expected to have knowledge and competencies in the implementation of the Center for Internet Security (CIS) Critical Security Controls (CSC) for Effective Cyber Defense. At outset of engagement, the Analyst will review current status of the technology security architecture and then generate a detailed report that identifies gaps and roadmap for improvement opportunities utilizing the CIS CSC controls. Successful COA will then proceed to develop plan to execute recommendations (implementation will include activation of CIS CSC controls for both premises and cloud-based assets).Success will be defined by the effective implementation, transfer, and operationalization of these controls in a manner as to enable enhanced security incident detection, prevention and reporting capabilities. Improvements will be captured via quantifiable progress in the Digital Security Roadmaps derived timelines. At the very least, contractor COA is expected to have knowledge of, and experience in, the CIS CSC V 6.x (current version is 7.1). The COA will work with other digital security and operations team members to deliver digital security strategy, tactical and operational activities to mature digital security program.Duties and Responsibilities:To be successful, the contractor COA will:Develop an implementation roadmap for the Basic and Foundation CIS CSC by selecting the specific controls (and sub-controls) to be implemented during each phase; scheduling the phases based on digital security risk driven prioritizations;Implement phases of the control by identifying existing tools that can be repurposed or more fully utilized, new tools to acquire, processes to be enhanced, and skills to be developed through training;Integrate CIS CSC controls with regular operations by focusing on continuous monitoring and mitigation opportunities;Report and manage progress against the Implementation roadmap developed in Step 1;Repeat Steps 2-4 for the next control detailed in next phase of roadmap until all requisite controls are in place;As scheduled with the Chief Information Security Officer (CISO), conduct briefings and deliver presentations to the client IT leadership team, detailing progress and providing recommendations for immediate improvements;Provide the CISO with weekly status updates; andSubmit final report of implementation, including as built and standard operating procedure documentations for use by client security and operations teams. Qualifications:Minimum 5 years progressive experience managing technology related projects, with an emphasis on cybersecurity and information security technology implementation projects.Position requires a four-year degree in engineering, computer science etc. recognized in Canada. Deep knowledge of, and experience with, the CIS CSC controls.Knowledge cybersecurity frameworks and standards will be a definite advantage.Understanding of cybersecurity risk management and risk mitigation strategies.Ability to communicate project and technology risks effectively.Strong negotiation skills to negotiate resources, changes, issues, budgets, and timelines.Passionate about customer service excellence.Multi-tasking ability – must be comfortable with simultaneously managing multiple projects.Excellent interpersonal, communication, leadership, motivational, organizational, and planning skills.Resourceful, creative and self-motivated.Strong problem-solving skills, including the ability to take a practical approach to dealing with shifting priorities, demands and timelines Highly self-motivated, self-directed, and attentive to detail.Excellent communication and interpersonal skills are required. These skills must include strong oral and written communication skills, as well as a high degree of tact, diplomacy, and persuasiveness.Demonstrated supervisory skills. Ability to effectively prioritize and execute tasks in a high-pressure environment.Extensive experience working in a team-oriented, collaborative environment.Applicant must be eligible to work in Canada and reside within Canada.**Final candidates will be required to undergo a comprehensive background check, including security screening and verification of credentials.** Job ID: 21217421
Savvy IT Resources Inc.
View original article here Source