Senior Information Security Analyst

Permanent Full Time

We are seeking a highly skilled and experienced Senior Information Security Analyst to join our team in the Technology Risk and CISO department.

The Senior Information Security Analyst plays a crucial role in our first line of cyber defense. This position involves collaborating with various stakeholders, including technology and business partners, to effectively manage information security risks and ensure compliance with organizational policies. Additionally, the role supports the delivery of analysis-driven cybersecurity services to our internal clients across Canada.

This role will primarily focus on security awareness and training along with other security operation activities, including incident response, security investigation, and cyber threat intelligence analysis. The successful candidate will play a critical role in implementing security awareness and training program requirements, enhancing the program based on evolving needs to elevate the security culture and drive behavioral change, and collaborating in other security operation activities, including incident response efforts, and supporting risk analysis and assessment within the organization.

The ideal candidate should possess in-depth knowledge of security awareness and training, cybersecurity threats, risks, and mitigation strategies, along with the ability to communicate security concepts effectively to all levels of the organization.

What you will do:

• Develop, implement, and maintain security awareness and training program to educate employees on security best practices, threat prevention, and response procedures.
• Design targeted campaigns to address emerging threats such as phishing and social engineering and evaluate and enhance training materials to ensure alignment with industry standards and regulatory requirements.
• Create comprehensive security training courses tailored to various audiences within the organization.
• Manage user accounts, content updates, and reporting functionalities as a Super Admin for the Proofpoint Security Awareness Training platform.
• Create engaging training materials, including learning modules, workshops, and informational resources that promote a culture of security awareness.
• Track and report on training effectiveness and phishing simulation results, using data to continuously improve training programs.
• Keep up with the latest trends in cybersecurity threats and awareness training methodologies to ensure programs remain relevant and effective.
• Collaborate in the incident response tasks to analyze security incidents and develop training materials that address identified vulnerabilities.
• Conduct threat and risk analyses by researching evolving threats and providing actionable recommendations to enhance security posture and effectively mitigate potential risks.
• Document security findings in comprehensive reports to inform stakeholders and guide remediation efforts.
• Strong desire to work collaboratively in an unconventional and non-linear way to problem-solve unique solutions.
• Be customer focused and delivery oriented to drive change in ambiguous situations.
• Collaborate proactively with internal clients to understand their needs and deliver creative solutions.
• Strive for continuous learning and can influence others.
  
  

What you will bring:

• Bachelor’s degree from an accredited college or university or equivalent experience.
• Minimum five years’ experience as an information technology professional with at least three of those in information security demonstrating the accountabilities as listed above.
• Holds at least one information security certification or actively working towards at least one security certification (e.g. CISSP, CISM).
• Strong working knowledge of threat risk assessment methodologies NIST, ISO, IRAM2, etc.
• Strong technical background with exposure to multiple aspects of information technology, networks, server, application dev, architecture, storage, cloud etc.
• Excellent communicator including demonstrated presentation and negotiation skills.
• Experience with security solutions for multi-tier cloud-based applications
• Experience interpreting and consulting around meeting the requirements of the Information Security Policies and Standards for a large organization.
• Strong knowledge of IT control frameworks such as COBIT, ISO 27001, and the NIST cyber security framework.
• Working knowledge of IT Audit processes, including design of control test procedures.
• Demonstrated ability to foster relationships and build trust.
• Ability to work independently and deliver on commitments.
• Strong analytical and problem-solving skills.
• Experience in risk assessment methodologies.
  
  

The base salary for this position is between $68,700.00 - $114,500.00 annually. This represents base salary only and does not represent other variable compensation components of our total compensation ( i.e. annual bonus, commission etc). If you are selected to move forward in our recruitment process, your recruiter will be able to discuss additional details of our total rewards program with you.

Career opportunities will be open a minimum of 5 business days from the date of posting, closing dates will vary depending on the search activity. All applications received will be reviewed on a rolling basis.

Be your best at Canada Life- Apply today!

Being a part of Canada Life means you have a voice. This is a place where your unique background, perspectives and talents are valued, and shape our future success.

You can be your best here. You’re part of a diverse and inclusive workplace where your career and well-being are championed. You’ll have the opportunity to excel in your way, finding new and better ways to deliver exceptional customer and advisor experiences.

Together, as part of a great team, you’ll deliver on our shared purpose to improve the well-being of Canadians. It’s our driving force. Become part of a strong and successful company that’s trusted by millions of Canadians to do the right thing.

Canada Life serves the financial security needs of more than 13 million people across Canada, with additional operations in Europe and the United States. As members of the Power Financial Corporation group of companies, we’re one of Canada’s leading insurers with interests in life insurance, health insurance, investment and retirement savings. We offer a broad portfolio of financial and benefit plan solutions for individuals, families, businesses and organizations. 

We are committed to providing an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. We are dedicated to building a workforce that reflects the diversity of the communities in which we live, and to creating an environment where every employee has the opportunity to reach their potential. 

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Canada Life policies. To request a reasonable accommodation in the application process, contact [email protected].

Canada Life would like to thank all applicants, however only those who qualify for an interview will be contacted.