Summary

Our Professional Services team has an immediate need for a Senior Consultant Cybersecurity Governance, Risk and Compliance with experience in PCI compliance. 

Key Responsibilities

• Conduct or participate in various cyber security and compliance assessments based on established security frameworks including but not limited to IS027001,  NIST CSF, CIS, CCM and PCI-DSS
• Evaluate and rate clients’cybersecurity posture using established models, and provide recommendations for improving the posture
• Analyze and understand client cyber security issues to develop and recommend creative solutions adapted to the client.
• Provide advisory services to clients on various cybersecurity aspects with regards to Conformity, PCI compliance, Privacy, and Risks
• Cultivate relationships with clients to ensure client satisfaction and entail new business
• Employ a structured approach to project delivery to ensure client satisfaction and project profitability.
• Participate in pre-sales activities, proposal development, clients needs analysis, and solution design
• Ability to work concurrently on different projects

Critical Qualifications

• 8+ years experience of which 5  in Cybersecurity
• University degree / diploma in Computer Science or a field related to IT, IT Security or Information Technology, or a solid combination of education and experience
• Experience with some of the following information security concepts and how to asses them:

1. privacy protection
2. risk 
3. policies, processes, standards and procedures
4. business continuity
5. incident response, 
6. security architecture
7. secure cloud architecture
8. network and wireless security, 
9. systems hardening, 
10. data and communications encryption
11. access control
12. physical security, 
13. application security
14. files and log monitoring
15. SIEM technologies 
16. Cloud security and migration challenges

• Possesses either a CISSP, CISM or, ISO 27001 Lead Implementer valid certification and/or 
• CISA or ISO 27001 Lead Auditor valid certification
• Experience in assessing complex client environments from a technological and security standpoint
• Experience in auditing IT systems is a definite asset

Preferred Qualifications

• PCI-DSS knowledge and QSA certification is a definite asset
• Minimum of two years in Security consulting with external clients
• Experience with Threat Modelling, or  with conducting Threat and Risk, cloud or Privacy Assessments
• Highly proficient verbal and written communication skills in French and English
• Exceptional client satisfaction attitude
• Excellent communication and interpersonal skills
• Ability to work with others effectively in a team environment,
• Ability to work alone and autonomously
• Strong technical skills
• Strong analytical skills
• Ability to write effectively
• High sense of integrity
• Ability to adapt quickly and work at a dynamic fast-paced environment
• Organization and time management skills
• Project management skills
• Ability to travel within Canada if required