Analyste en sécurité de l'information / Information Security Analyst

Job Category

Information Technology

Requisition Number

ANALY002751

Apply now

• Posted: May 30, 2025
• Full-Time
• Remote

Locations

Showing 1 location

• Montreal SLP
• 800 Victoria Square
• Suite 3500
• Montreal, QC H3C0B4, CAN
• Calgary SLP
• 350 7 Avenue
• Suite 3400
• Calgary, AB T2P3N9, CAN
• Surrey SLP
• 13401, 108 Avenue
• Suite 1800
• Surrey, BC V3T5T3, CAN

Position Details

Permanent position – Any Fasken office in Canada – Hybrid

Job Description

Are you a specialist in data protection and information security? Do you have proven expertise in auditing, improving and supporting an ISO 27001 certified information security management systems (ISMS) program on premise and in the cloud? Do you have experience executing and driving a security awareness program? We are interested in your profile!

In this role, you will report to the Director, Information Security and be responsible for executing activities around our current program, analyzing existing practices, issuing recommendations and promoting best practices. Moreover, you will play a key role in working closely with Fasken business units and clients ensuring core ISMS and regulatory requirements are in place and aligned to:

• You will participate in development and delivery of security awareness training curriculum, conduct security awareness campaigns, evaluate their effectiveness, and recommend improvements to overall security awareness program.
• You will oversee the cybersecurity awareness and communication program, including employee training and phishing simulations.
• You will develop, manage & communicate security awareness and training roadmap to leadership, customers, and other key stakeholders.
• You will engage with technology vendors to understand capabilities and limitations to drive improvements in the security posture of current products, and assist in the selection of the right partners.
• You will support the development and maintenance of Security policies, standards, and guidelines in alignment with applicable laws, regulations, security frameworks and leading practices.
• You will collaborate with CISO, security, lines of business and IT to understand business direction and the consequent impact on the firm's security posture and risk appetite.
• You will identify and promote effective management of identified risks according to the risk management program.
• You will support the development of solutions for automating and streamlining information security risk management practices.
• You will develop risk management assessment measures, reports, presentations and dashboards.
• You will respond to client information security and data protection questionnaires.
• You will ensure ISO 27001, ISMS and Regulatory compliance and continuous improvement.
• You will demonstrate the ability to analyze and understand core business processes and workflows in order to identify associated security risks and define appropriate controls and solutions.
• You will conduct risk assessments to identify vulnerabilities in business processes and recommend mitigation strategies.
• You will collaborate with business units to integrate security in a way that enables productivity while reducing exposure.
• You will communicate security recommendations in business-friendly terms to gain stakeholder buy-in and support.

Benefits

• For a flexible workplace integrating teleworking in which life balance is at the heart of our priorities.
• For a health and wellness reimbursement program, an insurance plan that adapts to your needs, telemedicine services and a generous retirement savings plan.
• For a friendly work atmosphere where the values of respect, openness, innovation, diversity, equity and inclusion are put forward.
• For a culture and leaders who promote an excellent employee experience by prioritizing autonomy, recognition, collaboration and the development of full potential.
• To be part of a company that is committed and gives back to the community.
• For bright, ergonomic offices available to all.

About You

• University degree in computer science, information security, information technology or in a related field of study, or an equivalent combination of studies and experience.
• Certified professional in information security or risk management (CISSP, CISM, CISA, etc.).
• Five (5) years of experience in a similar position with three (3) years of experience in any of the following areas: internal IT audit; governance/risk and compliance, information security awareness and training, third-party risk assessments, privacy compliance assessments/risk analysis.
• Experience in a professional services firm is an asset.
• A command of both French and English, spoken and written is an asset as we are a bilingual Firm.

You don’t meet some of the criteria mentioned? We still invite you to send us your application! We recognize talent and capitalize on everyone's potential. In this sense, we offer several opportunities for continuing education.

About Fasken

As a premier law firm with over 950 lawyers worldwide, Fasken is where excellence meets expertise. We are dedicated to shaping the future our clients want, precisely when it matters most. For more information, visit fasken.com.

A leader in the legal community, we were recognized as “the largest law firm in Quebec and Canada in 2023”, “the best law firm to work in Canada in 2023 and 2024” and as one of the “Best Diversity Employers in 2023”.

Diversity and Inclusion

At Fasken, we believe in a diverse workplace made up of people with unique experiences and qualities. It is important that all our members find our workplace welcoming and caring. An inclusive workplace creates a fair environment where people are respected and valued.

Accessibility and Accommodation

Reasonable accommodations are available for applicants with disabilities.

J-18808-Ljbffr