Synopsis of the role 

The ideal candidate will have a solid understanding of cybersecurity principles and best practices, as well as experience in conducting security assessments and leading security audits. Communication, critical thinking, and collaboration skills are key to successfully engaging with  our clients and stakeholders.  The ideal candidate will be able to adapt quickly to changing requirements and have the ability to work independently while managing multiple projects simultaneously. Analytics and the ability to see the “big picture” are required to evaluate, gather, and communicate evidence provided across the organization.

What you’ll do

Collaborate with multiple departments and cross functional teams including Global Security, technology, marketing, product development, sales, and data & analytics and drive Security Awareness activities 

Coordinate security audits with clients and government partners. 

Provide requirements in alignment with contractual obligations on  various  projects 

Ability to respond to client inquiries regarding Equifax’s security posture, vulnerability management, and zero-day response. 

Support evidence collection with regards to various security compliance frameworks including NIST, PCI-DSS, ISO 27001, and SOC assessments

As part of the Canadian Information Security Team, you assist in improving the information security posture with respect to delivering services to customers and consumers within Canada for understanding the key assets and processes.

Align with Government of Canada’s requirements and assist in maintaining government clearances. 

What experience you need  

Bachelor’s degree in technology or equivalent work experience 

5+ years’ experience working in information security

In-depth experience with cloud technologies

Client-facing experience and ability to nurture relationships with internal and external stakeholders  

Strong understanding of Security Audit processes and the integration and management of an Information Security strategy in a matrix corporation

Ability to synthesize information from various sources and convey complex information to a variety of audiences 

A solid understanding of security best practices and international standards such as ISO27000, NIST, and PCI DSS and other security frameworks

What could set you apart

Experience with the Government of Canada’s Vendor Procurement Process. 

French language fluency (Reading, writing and speaking) 

Certified Information Security Manager (CISM), Certified in Risk and Information Systems Controls (CRISC) or Certified Information Systems Auditor (CISA) or industry certifications

Familiarity with project management, Google Suite and related technologies

Knowledge and experience of Information Security Risk and Security governance and understanding of risks in the banking/ financial services sector

Primary Location:

CAN-Toronto-5700 Yonge

CAN-Montreal

Function:

Function - Security Governance and Compliance

Schedule:

Full time