Sr. Information Security Specialist – Threat and Vulnerablity

Job Overview

Job title: Sr. Information Security Specialist – Threat and Vulnerablity

Job description: As the fastest growing online brokerage in Canada, Questrade is committed to helping Canadians become much more financially successful and secure. Our vision is to revolutionize financial services by offering the most innovative and cost efficient financial services – including banking.

Questrade Technology Group (QTG) acts as the back-bone for Questrade. We act as strategic partners with each business unit to help us leverage technology to gain competitive advantage. The team is comprised of very skilled, very committed individuals working collaboratively and our unique work environment is fast-paced and challenging, but also very open and supportive. So are we the serious, geeky-types? No way! Fun, freedom, flexibility is how QTG members describe the work culture here.

This position can work remotely from anywhere in Canada or Brazil.

What’s it like working as a Sr. Information Security Specialist – Thread and Vulnerability Management at Questrade?

You will be responsible for identifying and responding to cyber threats and define and implement processes and technologies regarding threat and vulnerability management, threat and risk assessment, security logging and monitoring, as well as defining and implementing metrics and reporting framework.

Need more details? Keep reading…

  • Implementing and updating Information Security Strategy and Operating Procedures
  • Lead and improve Threat and Vulnerability Management (TVM) Program including scanning solution design improvements, implement processes for vulnerabilities prioritization, distribution and remediation tracking, ensure asset inventory validation and full coverage by the scanning solution.
  • Analyze issues and assess the risks associated for identified vulnerabilities, and facilitate remediation activities across the enterprise,
  • Collect and analyze metrics and provide reports to management.
  • Coordinate Penetration Testing activities with third party vendors.
  • Manage endpoint protection solutions including malware protection and DLP.
  • Review Incident Response (IR) plan and procedures, IR playbooks, prepare for table top exercises
  • Perform TPRAs (Third party risk assessments) for existing and new products and vendors.
  • Support compliance activities primarily achieving SOC 2 compliance.
  • Execute procedures, perform detailed data analysis, reach conclusions, document results, and suggest ideas for efficiencies, identify opportunities to reduce risk and documents remediation options regarding acceptance or mitigation of risk scenarios
  • Perform assessments of the IT security/risk posture within the IT network, systems and software applications, in addition to assessments within the Vendor Management Program

So are YOU our next Sr. Information Security Specialist – Threat and Vulnerability Management? You are if…

  • 7+ years IT security or information security experience with a proven ability to engage with Senior Management and auditors
  • Certified Information Systems Security Professional (CISSP), or related certification
  • Knowledge of technical infrastructure, networks, databases and systems in relation to IT Security and IT Risk.
  • Exoerience with one or more of the following vulnerability scanning solutions (Nessus, Rapid 7, Qualys).
  • Previous experience in implementing Vulnerability Management program, Threat collection, Analysis & Management and Situational Awareness.
  • Experience with endpoint protection solutions, firewalls, IPS/IDS, content filtering.
  • Experience in defining metrics and KPIs, implementing cybersecurity/risk dashboards
  • Strong written and verbal communication, presentation and technical writing skills, coupled with a strong interest in further developing Cyber Security skills

Brownie points if…

  • Prior experience working within a financial service organization preferred
  • Certified Information Systems Security Professional (CISSP), or related certification

Sounds like you? Click below to apply!

At Questrade Group of Companies, with multiple office locations around the world, we are committed to fostering a diverse, inclusive and accessible work environment. We value the unique skills and experiences each individual brings, and believe that when our teams feel supported and motivated, their creativity becomes a source of innovation. We are also committed to creating and sustaining a collegial work environment in which all individuals are treated with dignity and respect and also one which reflects the diversity of the communities we serve and operate in to help us revolutionize financial services for the benefit of all of our customers.

Candidates selected for an interview will be contacted directly. If you require accommodation during the recruitment/selection process, please let us know and we will work with you to meet your needs.

Company: Questrade

Expected salary:

Location: Toronto, ON

Job date: Thu, 27 May 2021 03:42:55 GMT

Apply for this job

A job board that helps you to get the right job based on your skills and experience.

Contact Us

info@firstnationswork.com