Information Security Architect (Technology & Infrastructure)

CBC/Radio-Canada

Ver: 156

Día de actualización: 12-06-2024

Ubicación: Montreal Québec

Categoría: Consultoría / Servicio al cliente Tecnologías de la información

Industria: Media Communication

Tipo de empleo: Full-time, Permanent

Loading ...

Contenido de trabajo

Job Family Information Technology
Primary Location Montreal
Position Language Requirement Bilingual (English / French)
Language Skill Level (Reading) B
Language Skill Level (Writing) B
Language Skill Level (Speaking) B
Status of Employment Permanent
Work schedule(s) Full-time

Work at CBC/Radio-Canada
Behind the scenes, but ahead of the curve: help us develop the next-generation public broadcaster.
Created in 2015 to align, lighten and modernize infrastructure, the Technology and Infrastructure (T&I) team is the backbone and the future forward arm of CBC/Radio-Canada. We are the people that make stuff work. We make connections; between media content, systems, people and places. We are the space in between.
A place with purpose. CBC/Radio-Canada has always been a highly-regarded pioneer of media technology. Not just in Canada, but around the world. Today, we’re transforming ourselves from a conventional radio and television broadcaster into a modern digital media company. Technology is the driving force and we are the team making it happen.
Your role
This position can be based in Montreal or Toronto.
As Information Security Architect, you work with technical and project teams to implement information-security architecture best practices for CBC/Radio-Canada in alignment with established methodology/processes.
You are responsible for executing project assessments to ensure compliance with internal and external requirements; identifying risks; and communicating the posture to the CBC/Radio-Canada Information Security Committee. You act as the subject matter expert for architecture and risk management.
You provide technological advice and guidance to various groups within CBC/Radio-Canada Technology and other components. You collaborate with management on formulating long-term strategies for the deployment of information security technologies and processes and prepare planning documents as required. As technological change may affect the deployment of resources within the organization, you maintain strict confidentiality as to the nature and potential impact of such changes within the appropriate management group.
You work with professionals within various disciplines throughout the design and implementation processes, ensuring that stakeholders are properly consulted, and operational impacts identified. You prepare detailed design documents and commit resources to bring those designs to completion. You ensure that assigned projects are implemented in an optimum manner, on time and within budget.
Strategy:
  • Work with enterprise and solution architects to ensure organizational compliance with security architecture requirements.
  • Provide security consulting services to the business owners and stakeholders.
Planning:
  • Participate in, collaborate on and assess architecture components incorporated into Radio-Canada projects.
  • Help monitor technology trends in cybersecurity and security architecture.
  • Participate in and collaborate on the three-year cybersecurity plan, following up on the status of initiatives and issues.
Operations:
  • Perform hands-on gap or risk assessments to identify significant information security risks (including applications, systems, data centers, infrastructure and vendor security risk assessments) to determine the organizational risk posture.
  • Conduct risk assessments of information security architecture.
  • Align security requirements in the organization’s projects and initiatives.
  • Manage remediation efforts and track completion status of deficiencies.
  • Interface with technical teams, stakeholders and leadership teams to translate security risk mitigation plans into actionable items to mitigate risk.
  • If needed, develop policies, directives and processes to ensure adequate coverage and alignment to the ISO ISMS framework.
Technology:
  • Maintain broad knowledge of best practices and trends in information security.
  • Work with InfoSec tools to collect and maintain security and risk information.

We are looking for a candidate with the following:
  • University degree in the field of computer science, IT or information security
  • Five years’ experience working in a similar position
  • Extensive knowledge of security technology and risk assessment methodologies, policies and processes
  • Capacity to develop a dashboard and KPIs for information security reporting
  • Excellent written and oral communication skills, as well as interpersonal skills, including the ability to articulate to both technical and non-technical audiences
  • Exceptionally self-motivated and directed
  • Ability to work independently and multitask effectively
  • Excellent analytical, evaluative and problem-solving abilities
  • Strong knowledge and experience with IP network designs and secure-designed infrastructures, including firewalls, routers, switches and access control
  • Knowledge in the following areas:
    • Web infrastructure security/application security (OWASP)
    • Network security tools (IDS/IPS, firewalls, etc.)
    • Encryption technologies and concepts
    • Database architecture concepts
    • Physical security controls
    • Disaster recovery concepts
    • Multi Factor authentication concepts
    • Single sign-on concepts
    • Zero-trust concepts
    • Security-by-design concepts
  • Familiarity with internet filtering technologies, DNS and fundamental scripting / programming / coding practices
  • Experience implementing or assessing security in a cloud-hosted environment
  • Experience with security standards such as ISO 27001/27002/27005, NIST, COBIT and ITIL
  • Security-related technical certifications a definite asset (CISSP, CRISC, CBCP, CISA, CISM or equivalent)
  • Bilingualism (English and French)
Candidates may be subject to skills and knowledge testing.
All employees of CBC/Radio-Canada are required to be fully vaccinated against COVID-19 as of December 1st 2021 unless exempted based on a medical/religious ground. As per this requirement, employees must attest to their vaccination status. The requirement for employees to be fully vaccinated applies whether they are teleworking, working remotely or working on-site. This is a condition of employment and it applies to all employees. Should you reach the point in the selection process where it is necessary to verify if you meet the conditions of employment, you will be asked to provide an attestation confirming your COVID-19 vaccination status.
If this sounds interesting, please click on ’’Apply online’’. We thank all applicants for their interest, but only candidates selected for an interview will be contacted.
CBC/Radio-Canada is committed to being a leader in reflecting our country’s diversity. That’s because we can only create and tell the stories that connect Canadians, by having a workforce that mirrors the ever-changing makeup of our country. That’s why we, as an employer, value equal opportunity and nurture an inclusive workplace where our individual differences are not only recognized and valued, but also extend to and pervade all the services we provide as Canada’s public broadcaster. For more information, visit the Diversity and Inclusion section of our website. If you have accommodation needs at this stage of the recruitment process, please inform us as soon as possible by sending an e-mail to recruitment@cbc.ca.
You are invited to consult and familiarize yourself with our Code of Conduct, which can be found on our corporate website. All employees must adhere to the Code as a condition of employment. We also invite you to take a look at our policy on conflicts of interest. In the event that you become an employee, it will be important to inform us, as quickly as possible, of any situation that, because of your hiring, constitutes or could appear to constitute a conflict of interest.

Job Posting Date Feb 22, 2022, 12:44:56 PM
Unposting Date Mar 24, 2022, 10:59:00 PM
Loading ...
Loading ...

Plazo: 27-07-2024

Haga clic para postularse como candidato gratuito

Aplicar

Reporte trabajo
Loading ...
Loading ...

TRABAJOS SIMILARES

Loading ...
Loading ...