Information Security Risk Management Analyst

[ad_1]

APPLY NOW!

Job title: Information Security Risk Management Analyst

Company: NRC – CNRC

Job description: Assignments and secondments may be considered according to NRC’s policies.

City: Ottawa

Organizational Unit: Security Branch

Classification: CS-3

Tenure: Continuing

Language Requirements: English

The NRC Advantage

Great Minds. One Goal. Canada’s Success.

The National Research Council of Canada (NRC) is the Government of Canada’s largest research organization supporting industrial innovation, the advancement of knowledge and technology development. We collaborate with over 70 colleges, universities and hospitals annually, work with 800 companies on their projects, and provide advice or funding to over 8000 Small and Medium-sized Enterprises (SMEs) each year.

We bring together the brightest minds to deliver tangible impacts on the lives of Canadians and people around the world. And now, we want to partner with you. Let your expertise and inspirations make an impact by joining the NRC.

At NRC, we know diversity enables excellence in research and innovation. We are committed to a diverse and representative workforce, an open and inclusive work environment, and contributing to a more inclusive Canadian innovation system.

NRC welcomes all qualified applicants and encourages candidates to self-declare as members of the following designated employment equity groups: women, visible minorities, Aboriginal peoples and persons with disabilities.

Please advise of any accommodation measures required to enable you to be assessed in a fair and equitable manner. They are available to all candidates for further assessment. Related information received will be addressed confidentially.

Your Challenge

Help bring research to life and drive your career forward with the National Research Council of Canada (NRC), Canada’s largest research and technology organization.

We are looking for an Information Security Risk Management Analyst to support our Security Branch. The Information Security Risk Management Analyst would be someone who shares our core values of Integrity, Excellence, Respect and Creativity.

As an Information Security Risk Management Analyst you will be responsible for managing information security risk related to IT services in support of NRC’s strategic objectives.
As a member of the NRC Security Branch you will be actively involved in providing IT security risk management to a variety of advisory committees and CBI’s. You will also perform Security Assessment and Authorization activities for NRC services and applications in support of key applications and programs in the organisation.

You will provide IT security advice and guidance, and make recommendations to internal clients to ensure compliance with federal standards, directives and NRC’s policies.

Screening Criteria

Applicants must demonstrate within the content of their application that they meet the following screening criteria in order to be given further consideration as candidates:

In order to ensure a prompt and efficient processing of applications, candidates are encouraged to provide, along with their résumé, a detailed covering letter explaining how they meet each of the requirements of this position (education, experience, language requirements) by providing concrete examples.

Education

  • Degree from a recognized university in computer science, engineering, information technology, or another specialty relevant to the position or a diploma from a recognized college or post-secondary institute in an IT related field combined with significant experience (at least 5 years).

ASSETS:

  • Certifications: CISSP, GIAC, ISACA, or PMP
  • Completion of government provided training such as HTRA.

For information on certificates and diplomas issued abroad, please see

Experience

  • Basic experience using the fundamentals of project management such as developing and managing project plans, and other project documents, resource planning, scope management and working with Gantt charts, resource planning…etc.
  • Significant experience in system and/or network administration or general IT security principles.
  • Significant experience applying relevant security federal legislation, policies, standards, directives and guidance in an operational environment.
  • Significant experience working with information categorisation, Security Assessment and Authorization methodology based on ITSG-33.

*Basic – a few months and up to 2 years
*Significant – 2 to 6 years

ASSETS:

  • Experience in IT process development (e.g. ITIL, Lean).
  • Experience in development of process and standard operating procedures.
  • Experience with IT requirements for Controlled Goods.
  • Experience in IT Risk Management principles.

Condition of Employment

Secret (II)

Language requirements

English

Assessment Criteria

Candidates will be assessed on the basis of the following criteria:

Technical Competencies

  • Basic knowledge of risk management principles.
  • Basic knowledge of relevant federal legislations, policies, standards and guidance including the Policy on Government Security (PGS), the Directive on Security Management, the Policy on Service and Digital and ITSG-33, TBS Cloud Adoption Strategy, GC Cloud Guardrails.
  • Basic knowledge of different types of cloud offerings and cloud architecture.
  • Basic knowledge of IM/IT systems hardware, software and operating systems.
  • Solid ability to develop documentation for a range of audiences including briefing notes, meeting minutes, presentations.
  • Solid ability to provide information, feedback and recommendations to individuals at many levels of technical knowledge and administrative responsibility.

Behavioural Competencies

  • Management services – Client focus (Level 2)
  • Management services – Communication (Level 2)
  • Management services – Teamwork (Level 2)
  • Management services – Results orientation (Level 3)

Competency Profile(s)

For this position, the NRC will evaluate candidates using the following competency profile: ;

Relocation

Relocation assistance will be determined in accordance with the NRC’s directives.

Salary Range

From $88,225 to $110,995 per annum.

An incumbent occupying a position within the CS Group is currently entitled to receive a terminable allowance of $212 per month.

Notes

  • A pre-qualified list may be established for similar positions for a one year period.
  • In order to ensure a prompt and efficient processing of applications, candidates are encouraged to provide, along with their résumé, a detailed covering letter explaining how they meet each of the requirements of this position (education, experience, language requirements) by providing concrete examples.
  • NRC employees enjoy a wide-range of benefits including comprehensive health and dental plans, pension and insurance plans, vacation and other leave entitlements.
  • Preference will be given to Canadian Citizens and Permanent Residents of Canada. Please include citizenship information in your application.
  • The incumbent must adhere to safe workplace practices at all times.
  • We thank all those who apply, however only those selected for further consideration will be contacted.

Please direct your questions, with the requisition number (11327) to:

E-mail:

: 613-990-4292

Closing Date: 8 February 2021 – 23:59 Eastern Time

For more information on career tools and other resources, check out

*If you are currently a term or continuing employee at NRC, please apply through the SuccessFactors Careers module from your NRC computer.

Date modified: This page is updated continuously.

Expected salary: $88225 – 110995 per year

Location: Ottawa, ON

Job date: Tue, 26 Jan 2021 23:30:31 GMT


APPLY NOW!


[ad_2]

Leave a Reply

Your email address will not be published. Required fields are marked *