Senior Information Security Officer

Montreal

Offre publiée le 2024-03-28

Bell

JOB DESCRIPTION

Req Id :

At Bell, we do more than build world-class networks, develop innovative services and create original multiplatform media content - we advance how Canadians connect with each other and the world.

If you’re ready to bring game-changing ideas to life and join a community that values professional growth and employee wellness, we want you on the Bell team.

Our Bell Business Markets team enables the digital transformation of businesses and governments nationwide through solutions in areas including Internet and private networks, voice and unified communications, contact centre, security, Internet of Things, data centre and cloud.

We’re proud to be Canada’s leading provider of broadband network and communication services for businesses and governments.

Key Responsibilities

  • Act as a spokesperson and subject matter expert in information security governance, risk management and compliance for the BBM Managed Services teams and clients.
  • Maintain the organizations compliance with the security requirements of Bell customers Contract Security Program.
  • Review and agree upon the security metrics that will validate compliance of the Services following the identification of mutually agreed upon requirements with the customer
  • Act as the single point of contact for the client for security-related issues
  • Provide monthly security metrics, support audits and be the single point of contact for security-related processes.
  • Design, validate and supervise the vulnerability management process which is run by the operation team. In this process, the security officer validates mitigation plans presented by the operation teams , and ensure that each step of the process is done in a timely manner and handle remediation plans.
  • Document deviations and recommend solutions when applicable.
  • Develop and implement safeguards and metrics in collaboration with operational and business teams to support client security requirements.
  • Review and maintain IT system security controls to ensure compliance with industry standards, contract requirements and clauses.
  • Review and analyze complex IT systems identifying risk and security exposures.
  • Coordinate audits and IT inspections, managing remediation activities, documentation and reporting.
  • Produce and maintain business risk registry, risk reports and impact analysis, developing action plans to minimize risk to the business.
  • Evaluate and monitor risk assessment and gap remediation processes and provide recommendations for process improvement.
  • Measure effectiveness of security processes and controls through development of metrics, dashboards, and reporting mechanisms.
  • Work closely with security and business leaders / stakeholders to drive security compliance and build a culture of security awareness.
  • Implementation of Bell’s privacy program and maintaining compliance obligations imposed by privacy regulations.

Critical Qualifications

  • Experience in information security and an understanding of the concepts and principles of information handling and protection.
  • Experience in designing and developing procedures, and processes for Information Security best practices.
  • Experience in facilitating and performing security audits.
  • Experience performing risk assessment and management, developing mitigation strategies.
  • Demonstrated knowledge of information technology security, trends, leading practices, regulatory and industry standard compliance issues (ISO , SOC 2, PCI-DSS and others)
  • Experience with SIEM development and use cases. Will be an asset
  • Experience VA scanning and reporting to key stakeholder.
  • Excellent communication skills.
  • Bilingualism (French / English)
  • Experience in agile methodologies (Scrum, Kanban) will be an asset
  • Experience working in the telecommunications industry, with knowledge of network security and operations

Preferred Qualifications

One or more of the following certifications : CISSP, CISA and / or CISM would be considered an asset

EmployeeReferralProgram

Bilingualism is an asset (English and French); adequate knowledge of French is required for positions in Quebec.

Additional Information :

Position Type : Management

Job Status : Regular - Full Time

Job Location : Canada : Quebec : Montreal

Flexible work profile : Mobile

Application Deadline : 04 / 14 /

Please apply directly online to be considered for this role. Applications through email will not be accepted.

At Bell, we don’t just accept difference - we celebrate it. We’re committed to fostering an inclusive, equitable, and accessible workplace where every team member feels valued, respected, and supported, and has the opportunity to reach their full potential.

We welcome and encourage applications from people with disabilities.

Accommodations are available on request for candidates taking part in all aspects of the selection process. For a confidential inquiry, simply email your recruiter directly or to make arrangements.

If you have questions regarding accessible employment at Bell please email our Diversity & Inclusion Team at .

14 hours ago