Security Consultant II - Risk, Governance, and Awareness(REMOTE)
Vancouver, British Columbia, CA Calgary, AB, CA Ottawa, ON, CA Saskatoon, SK, CA Burnaby, British Columbia, CA Edmonton, AB, CA Halifax, Nova Scotia, CA Toronto, ON, CA
The Security Governance, Risk and Awareness (GRA) team is looking to add a Security Consultant II to our ranks, who will be helping us in a range of governance and risk management activities. This includes everything from supporting security risk management activities across all areas of TELUS, to maintaining and aligning corporate policies and standards to industry best practices, to implementing automation and process improvement initiatives. By joining our highly motivated, forward-thinking team, you will play an important role in helping us proactively keep TELUS’ customers, data, and systems secure. We hope you’ll enjoy being a valued member of Canada’s Top 100 Employers (2022) with a world-leading culture featuring extensive community-giving initiatives, a flexible work environment including remote work, and award-winning opportunities for career development.
Join our team and what we’ll accomplish together
As a Security Consultant II focused on governance and risk management, you will have an opportunity to help TELUS define our security policies and standards in alignment with industry best practices. Your comprehensive knowledge of the policies and standards will in turn help you support our business to understand and manage security risks they undertake and help them drive remediation actions. Additionally, your background in scripting and software development will be put to good use in supporting our many integration and automation opportunities.
Your ability to develop reciprocal relationships with business partners and internal stakeholders, in concert with your knowledge of governance and compliance will allow you to comfortably engage with and provide feedback to team members across TELUS.
What you’ll do
- Conduct security risk management activities in support of major TELUS initiatives in order to ensure that identified risks are appropriately documented, signed off, monitored, and eventually remediated
- Manage and further develop scope of reporting of activities into compelling monthly reports and metrics
- Collect and assess security requirements and industry standards, and create corresponding TELUS Security policy and standard statements using language accessible to team members across the organization
- Collaborate with other Security Consultants and Subject Matter Experts across TELUS to maintain relevant policies and standards.
- Analyze existing work processes and procedures within team, and develop innovative solutions to help improve and automate them
- Support customer inquiries by providing tailored security advice to TELUS policies, standards, and best practices
- Exercise effective time management skills and independently drive project completion
What you bring
- 3+ years in Information Technology
- At least 1+ year supporting either
- Security Risk, Compliance and Governance reviews
- IT risk assessments/ Information Security consulting/ IT audits
- Experience in Software Development (Process improvement and automation), using common programming/scripting languages such as Python/ Java/ C++/ Similar others
- Expertise with analyzing complex problems, authoring technical content and presenting them in a simple manner, using non-technical language
- Ability to create policy that meets security requirements
- Exceptional English communication skills, both written and verbal
- Ability to obtain a secret security clearance
Great-to-haves
- Experience with industry standards such as ISO 27001/2, NIST, CIS, COBIT, PCI-DSS, etc
- Security, governance and risk related certifications (e.g. CISA, CRISC, CISSP, CISM)
- Bi-lingual (French and English)