Information Security Specialist

About the Opportunity:

A Corporate IT Team is seeking an Information Security Specialist to evaluate, develop, and implement security tools, standards, procedures, and guidelines across multiple platforms and diverse system environments. This role provides security support across a group of companies, focusing on access control, cybersecurity, vulnerability management, risk management, incident management, and security frameworks.

Responsibilities:

• Consult, design, and monitor cloud security controls, processes, and architecture.
• Manage overall access control including auditing, risk identification, recommendations, and remediation tracking.
• Conduct risk assessments for regulatory compliance such as HIPAA and PCI.
• Install, maintain, and monitor security tools to protect systems and data.
• Perform vulnerability scanning on network devices, applications, and databases.
• Analyze and assess security incidents, escalating as per incident plan.
• Develop and maintain procedures for responding to identified threats.
• Manage and analyze SIEM tools and services for event detection and response.
• Assess risks and vulnerabilities to develop baselines and respond to deviations.
• Conduct risk and security assessments of applications, databases, servers, and network technologies.
• Collaborate with IT teams to resolve information security issues promptly.
• Monitor activities to detect and act on anomalous behavior in a timely manner.
• Develop and execute corrective actions and remediation plans for identified issues.
• Evaluate emerging technologies against security architecture for gaps and capabilities.
• Participate in annual security audits, incident response exercises, reporting, and compliance support.
• Support security incident escalation and remediation alongside the Information Security Officer.
• Review and assess security controls prior to hardware/software production migration.

Requirements:

• Minimum 5 years as a Security Analyst with project leadership experience.
• 5 to 7 years as a System Administrator (Unix/Windows) or Network Administrator.
• At least 3 years in a security operations center or system administration role.
• Minimum 3 years experience in cloud services security.
• Ability to present security concepts at the executive level.
• Experience leading incident response and remediation.
• Strong networking knowledge.
• Experience with access control and identity management for on-premise and cloud environments.
• Strong understanding of Security Architecture.
• Hands-on experience with security tools such as Web Content Filtering, Anti-Malware, Firewalls, and Intrusion Protection.
• Ability to write security requirements and design documentation.
• Skilled in analyzing system data including security and network event logs, web, anti-virus, DLP, syslogs, IPS, and firewall logs.
• Knowledgeable of security controls, vulnerabilities, regulatory/legal changes, and security standards.
• Bachelor’s degree in Computer Science, Information Systems, Network Security Engineering, or related field, or equivalent experience.

Compensation:

• Salary range from $80,000 to $110,000 per year.
• Eligibility for bonus or merit program.
• Final compensation based on experience, skills, market conditions, and internal equity.
• Competitive Total Rewards program including health benefits, RRSP matching, stock options, and career development opportunities.

Benefits & Perks:

• Competitive compensation package.
• Casual work environment.
• Full employee benefits including 401(k), medical, dental, vision, life insurance, short and long-term disability, and AD&D.
• Paid vacation.

Note:

“RemoteHunter is not the Employer of Record (EOR) for this role. Our purpose in this opportunity is to connect exceptional candidates with leading employers. We help job seekers worldwide discover roles that match their goals and guide them to complete their full application directly through the hiring company’s career page or ATS.”

Key skills/competency

• Cybersecurity
• Vulnerability Management
• Risk Management
• Incident Response
• Access Control
• Cloud Security
• SIEM
• Security Architecture
• Regulatory Compliance
• Network Security