Loading...
Share this Job

Cyber Security Analyst

Location:  Markham
Stellen-ID:  11563

In a fast changing world, it takes pioneering spirit to create trustworthy technology. We enable secure connectivity and payment solutions for billions of people around the globe. At G+D Mobile Security, you will play a key role in realizing the digital transformation.

Job Title: Cyber Security Analyst
Reports To: Manager, Security
Department: Security

 

Job Summary

The position is responsible for ensuring that G+D Canada (Markham and Dorval) is in compliance with all applicable industry, client and company Information Security requirements, policies and procedures.  The Cyber Security Analyst will work collaboratively with other members of the local Security department, with all other colleagues at G+D Canada and with colleagues in within various regions and Munich head office. 

 

Primary Responsibilities

  • Ensure that the company’s Information Security controls are relevant, properly documented and maintained for ongoing recertification and governance activities with a primary focus on Payment Card Industry (PCI) Card Production and Provisioning Logical Security Requirements, G+D guidelines and policies and the security requirements of G+D’s clients.   Ensure the business maintains appropriate, demonstrable, auditable and coordinated security procedures and practices that are compliant with related laws, regulations, policies and professional standards.  
  • Coordinate external audits including the completion of security questionnaires and related pre-audit and post-audit activities.  Manage the maintenance of facility security certifications and related compliance and governance activities. Maintain G+D Canada’s Security Risk Register, tracking security requirements and nonconformances while working with the appropriate stakeholders to track progress and close audit findings.
  • Perform internal Information Security audits utilizing G+D’s assessment and risk reporting methodology.  In a collaborative manner assist the managers and supervisors of affected departments regarding security concerns and opportunities for continual improvement.
  • Plan and coordindate the external penetration test and vulnerability assessment and internal scan process including remendiation tracking and reporting as required. 
  • Monitor the output of SIEM and DLP systems and develop local reports as necessary to keep management apprised of information security threats and active attacks, incident response and follow-up activities.  Provide constructive feedback to the global SIEM team to support their efforts in producing effective and accurate alerting and reporting.
  • Perform Information Security investigations as required.  Serve as primary Information Security Investigator. Assist local Head of Security and other management in performing internal investigations pertaining to discrepancies and other breaches of security, including identifying root causes, necessary remediation and any other opportunities for improvement.
  • Maintain and administer the Physical Access Control System, CCTV and DVR / NVR systems ensuring that the systems are functional and patched. Update / create documented procedures for the infrastructure as required in order to support compliance requirements and end users.
  • Perform internal network vulnerability scanning, including wireless scanning in accordance with payment industry and G+D requirements.  Monitor and review firewall configurations to ensure ongoing compliance with network architecture and change management security requirements.
  • Actively contribute to the preparation and delivery of Security Awareness and Privacy Training and other Security related communication and awareness programs.
  • The Cyber Security Analyst will perform Risk Assessments as required for existing lines of business, new products and services and when required for special projects.  The Cyber Security Analyst serves as a local Information Security Subject Matter Expert (SME) and consultant to the business.


Secondary Responsibilities

Act as a back up to the Security Auditor position in perform tasks such as:

  • Employee and vendor security screening
  • New hire processing
  • CCTV Reviews
  • Secure destruction escorting
  • Access card replacements


Qualifications, Experience and Educational Requirements

  • 2-5 years of experience in an Information Security role 
  • One or more relevant industry certifications – e.g. CISSP, CISA, CRISC, CEH.  
  • Experience in the administration of Information Technology infrastructure such as servers and firewalls
  • Experience in performing vulnerabity assessments using Qualys Cloud Platform
  • Strong Microsoft Office skills including Excel, Word, PowerPoint and Visio
  • Strong English communication skills required (written and verbal) with French an asset


Working Conditions

  • Office environment with some light industrial plant exposure
  • Must be accessible by company cell phone 24/7
  • Overtime work may occasionally be required
  • May be required to travel up to 5% of the time including international travel

 

Physical Requirements

  • Significant amount of walking throughout facilities

 

Direct Reports

  • None

 

Additional Information

*This job description is not intended to be all inclusive.  The candidate hired will also perform other reasonable related business duties as assigned by the supervisor.  The company reserves the right to revise or change job duties as needed.  This job description does not constitute a written or implied contract of employment.

Please note:  Reference Checks as well as Security Screening (criminal, credit and anti-terrorist) will be administered on suitably qualified candidates.

 

 

Giesecke + Devrient Mobile Security Canada Inc. is an equal opportunity employer and values diversity in its workforce, encouraging applications from all qualified individuals. Accommodations are available on request for candidates taking part in all aspects of the selection process. If you would like to contact us, please contact Human Resources at careers.gdsci@gi-de.com 

We are looking forward to receiving your application!

Giesecke+Devrient Mobile Security Canada Inc.
Markham, Ontario
www.gi-de.com/en/ca/mobile-security
RD_GROUP_MF_EUR_RUS_AUS_USA_CAN
Cutting-edge technology for secure payment and con
I’m proud of what we do: