Talent.com
Spécialiste de la sécurité des données, Services de technologies informatiques

Spécialiste de la sécurité des données, Services de technologies informatiques

RichterMontréal, QC, CA
30+ days ago
Job type
  • Full-time
Job description

Overview

The Data Security Specialist is responsible for implementing, managing, and maintaining security controls and measures to safeguard sensitive data. The role involves identifying vulnerabilities, monitoring for breaches, and developing processes to ensure the confidentiality, integrity, and availability of data. The Data Security Specialist ensures that Richter maintains compliance with privacy regulations and meets all data security legal obligations. They collaborate with cross-functional teams to develop and implement security strategies that align with regulatory standards and industry best practices, including CIS Controls, NIST, and CISA frameworks.

A day in the life

  • Design and implement security measures to protect sensitive data across systems, applications, and networks.
  • Develop, implement, maintain, and oversee enforcement of policies, procedures, and associated plans for system security administration and user system access based on industry-standard best practices.
  • Develop and maintain data classification and encryption standards.
  • Ensure compliance with relevant security standards and regulations (e.g., Law 25, GDPR, HIPAA, PCI-DSS).
  • Manage data loss prevention (DLP) systems, encryption solutions, and security monitoring tools.
  • Develop security policies and procedures, providing guidance on secure data handling practices.
  • Perform regular audits and reviews of data access, security controls, and compliance metrics.
  • Work with vendors and third-party services to assess and enhance data security.
  • Interact and negotiate with management, vendors, outsourcers, and contractors to obtain protection services and products.
  • Demonstrate a strong understanding of security frameworks (for example CIS Controls, NIST, and CISA frameworks)
  • Participate in the IT Security on call routine (once every three weeks

About you

  • Minimum of 5 years of experience in data security, cybersecurity, or a related field.
  • Strong communication and documentation skills in both English and French
  • Proven technical learning : CISSP, CISM, CISA, GIAC or other.
  • Certification or experience with Microsoft Purview required
  • Strong understanding of encryption, Data Loss Prevention, Identity and Access Management systems
  • Strong team collaboration and interpersonal skills required
  • Knowledge of applicable practices and laws relating to data privacy and protection for Canada (Ontario, Quebec), and how they are applied using modern security frameworks (CIS, GDPR, etc)
  • Keep current on emerging products, services, protocols, and standards in support of security enhancements
  • Intuition and keen instincts to pre-empt attacks.
  • High level of analytical and problem-solving abilities.
  • Ability to effectively prioritize and execute tasks in a high-pressure environment.
  • Provide on-call security support once every three weeks.

    • What Richter offers you?

  • Competitive group benefits which include group insurance, Health Spending Account, savings plans, and Employer Contribution Matching
  • Employee and Family access to virtual healthcare network
  • Employee and Family Assistance Programs, including consultations with mental health professionals
  • Annual Health & Well-being Program
  • Hybrid work Environment
  • Competitive Performance Bonus
  • Tuition Reimbursement
  • Professional Dues Reimbursement
  • CFE leave financial support
  • Academic Incentives
  • Talent referral bonus
  • Client referral bonus
  • Access to an on-demand concierge nannying, babysitting, and tutoring service
  • Annual employee rewards and recognition