New Value Solutions, a national IT consulting company is seeking a part-time Cyber Security Specialist to help our client with a series of cybersecurity audit engagements to be conducted over a number of years.
In addition, the successful candidate would also assist with relevant information and data required for analysis and evaluation.
Responsibilities :
- Applying, evaluating and auditing against the client’s Cybersecurity Framework
- Assessing and evaluating cybersecurity risks, vulnerabilities, threats and potential impacts in a municipal government setting
- Providing technical expertise in evaluating cybersecurity controls including :
- network security
- endpoint protection
- encryption methods
- authentication mechanisms,
- secure coding practices
- incident response processes
- and data and systems recovery
- restoration planning and processes
Requirements :
- Knowledge in evaluating cybersecurity maturity against models such as the Cybersecurity Capability Maturity Model (C2M2)
- Experience with encryption technologies for data-at-rest and data-in-transit protection
- Experience with securing cloud infrastructure, services and applications
- Understanding of methods to secure operating system configurations, patch management and hardening techniques
- Understanding of security practices for maintaining firewalls, intrusion detection / prevention systems (IDS / IPS) and other network security appliances
- Understanding of network protocols, routing, switching and secure remote access technologies
- Experience in conducting penetration tests and ethical hacking exercises
- Ability to perform code reviews and application security assessments
- Knowledge of secure coding practices and common vulnerabilities in web applications
- Familiarity with SIEM tools for centralized logging, correlation and analysis of security events
- Knowledge of cloud computing platforms and their security features including securing cloud infrastructure, services and applications
- Understanding of IAM principles and technologies such as LDAP, Active Directory and Single Sign-On (SSO)
- Knowledge of IoT security standards for securing IoT deployments including device lifecycle management and monitoring
- Familiarity with the compliance requirements of the Freedom of Information and Protection of Privacy Act (FIPPA) and Payment Card Industry Data Security Standard (PCI DSS)
- Familiarity with other cybersecurity frameworks such as CIS Controls, COBIT or ISO 27001
If you have this expertise, and are able to work in Canada, please submit your resume. While we thank all candidates in advance for their application, only those candidates who are shortlisted will be contacted.
ID#4561
The hourly rate range for this position is $100- $130, with the final rate based on consultant experience and fit for the role.
Il y a 3 jours