Senior Cyber Security Advisor
City : Montreal, Quebec
Category : Permanent Full-Time
Industry : Information technology
Employer : National Bank
A career as a Senior Cybersecurity Advisor at National Bank means acting as a cybersecurity expert and providing tactical and strategic guidance as well as advice to help business and technical teams achieve acceptable security risk postures. It is through your diplomacy, as well as your knowledge of governance processes, risk management and compliance that you will have a positive impact on our organization, directly influencing our security posture.
Your job:
- Assess the cybersecurity risk posture of one or more business units;
- Assess the maturity of cybersecurity controls according to Canadian and international regulatory frameworks/frameworks;
- Ensure that risk considerations are addressed at each phase of a system's development and maintenance lifecycle;
- Proactively propose solutions to reduce and anticipate cybersecurity risks;
- Recommend security measures in applications and infrastructure components by exercising judgment within existing policies and industry best practices;
- Produce, maintain and communicate indicators (progress, performance, risk, etc.).
Your team:
Our IT team is more than 2,300 experts who work in an agile, proactive and collaborative manner to seize opportunities, stay on the cutting edge of technology and continuously improve processes.
We ultimately aim to offer you maximum flexibility and quality of life. This notably means a hybrid work environment, as well as adaptable working hours.
The Bank values continuous development and internal mobility. Our personalized training programs, based on learning in action, allow you to master your craft and develop new areas of expertise. Tools such as Udemy, the Data Academy, language training, the Harvard Learning Center, and coaching and mentoring support are available to you at all times.
Prerequisite:
- Completed bachelor's degree, related to the sector of activity, and five (5) years of relevant experience;
- Experience in information security (authentication, authorization, access control, auditing, cryptography, etc.);
- Experience in risk assessment with recognized tools;
- Working understanding of application architecture and related technologies;
- Knowledge of one of the main cyber regulatory frameworks for financial institutions (PCI, OSFI, FFIEC, NYDFS, etc.)
- Knowledge of one of the main regulatory frameworks surrounding the protection of personal information (Bill 25, PIPEDA, GDPR, GLBA, etc.)
- Health and wellness program, including many options
- Flexible group insurance
- Generous pension plan
- Employee Share Ownership Plan
- Employee and Family Assistance Program
- Preferential banking services
- Opportunities to get involved in community initiatives
- Telemedicine service
- Virtual sleep clinic