Information Security Analyst

Description

Information Security Analyst

About Toyota Financial Services

Toyota Financial Services (TFS) provides retail, leasing and wholesale financial services to Toyota and Lexus dealerships and customers across Canada.

TFS is a member of Toyota Financial Services Corporation (TFSC), a wholly owned subsidiary of Toyota Motor Corporation in Japan.

The Canadian headquarters of TFS are in Markham, Ontario.

What Sets Us Apart?

At Toyota Financial Services (TFS), you will help create best in class customer experiences in an innovative, collaborative and team focused environment.

TFS is an important part of the Toyota family, an award-winning global company, recognized worldwide for our technological leadership and superior standards of quality, continuous improvement, and environmental responsibility.

Position Summary :

TFS currently has an exciting permanent opportunity as a Information Security Analyst, reporting to the Manager, Information Security.

The successful candidate will also be responsible for the planning and execution of TFS’ regular Business Continuity and Disaster Recovery initiatives.

This role will also work closely with senior management to support and ensure compliance to prescribed risk mitigating policies and procedures in certain area of Operational and IT Risk.

We have implemented a hybrid work environment and this role resides in our Markham Office. Number of days working in office is subject to role requirements.

More details will be discussed during the interview process.

What you will be doing :

Conduct and monitor regular security access and vulnerability diagnostics and remediate any risks / issues (including email Phishing responses to Associates)

Maintain and conduct periodic reviews of the Risk Register and I.T. Asset List

Perform risk assessments of information systems and infrastructure; develop appropriate risk treatment and mitigation options, and effectively articulate findings / recommendations to IT project teams and management.

Analyze system architectures to design appropriate security requirements which enforce Information Security policies and standards.

Identify and communicate current and emerging security threats to Senior Management

Collaborate with business units, application teams, and service partners to provide guidance on security controls for managing risk for TFS.

Manage TFS’ regular BCP and DR initiatives

Coordinate ongoing Business Continuity Plan ( BCP ) activities

Develop and execute annual Information Security and BCP Associate Awareness training

Review policies and procedures relating to Business Continuity and Information Security annually

Manage and maintain the shared drive / portals, in accordance to policies and procedures

Provide support with IT projects and act as liaison with Toyota’s GISG (Global Information Security Group)

What you bring :

5-7 years’ related information security experience working with both on-prem and cloud technologies

Post-secondary education in Computer Science / Engineering or related field

Experience as an information security analyst / architect in Banking or Financial services

Hands-on experience configuring and managing security technologies

Exceptional communication skills with diverse audiences and levels - strong critical thinking and analytical skills.

Understanding of software and infrastructure development lifecycles

Understanding of network protocols, network topologies, virtual infrastructure, network segmentation, operating systems, databases, applications, and mobile security

Familiarity with standard network security technology solutions : e.g. firewall, router, VPN.

Familiarity with the use of standard security technology solutions and processes such as : access control, user provisioning, directory, SIEM, vulnerability management, Cloud Access Security Brokers, Data Loss prevention solutions, anti-virus, single sign on and auditing.

Demonstrated ability to identify risks associated with business processes, operations, information security programs and technology projects.

Preferred License or Certification in Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), Information Systems Security Architecture Professional (ISSAP), AWS Certified Security Specialty and / or Certified Cloud Security Knowledge (CCSK)

Working knowledge of Business Continuity and how to plan and execute supporting initiatives

Microsoft Office proficiency at intermediate level (Word, Outlook, Excel), including SharePoint

What We’ll Bring

• Competitive salary including bonus.
• Health and dental benefits effective immediately.
• Company pension plan with matched contribution.
• Associate vehicle discount program.
• Professional growth and development programs to help advance your career, as well as tuition reimbursement.
• Fitness reimbursement.
• Great company culture-respect for people and continuous improvement is at our core

What You Should Know :

Our success begins and ends with our people. We embrace diverse perspectives and value unique human experiences. We are proud to be an equal opportunity employer that celebrates the diversity of the communities where we live and do business.

Applicants for our positions are considered without regard to race, ethnicity, national origin, sex, sexual orientation, gender identity or expression, age, disability, religion, or any other characteristics protected by law.