Strategic IT Security Planning and Protection Consultant

Location: National Capital Region

Security Clearance: Secret Security Clearance

Core Responsibilities:

The responsibilities for the Strategic Information Technology Security Planning and Protection Consultant Level 3 include, but are not limited to the following tasks:

• Review, analyze, and/or apply the IT Security Policies, Procedures and Guidelines of International government, Federal, Provincial or Territorial government;
• Review, analyze, and apply the best practices, national or international computer law and ethics, IT Security architecture, and IT Security Risk Management Methodology;
• Develop vision papers delineating the way ahead to ensure that IT Security and cyber; protection are business enablers;
• Conduct business function analysis and business impact assessments;
• Brief senior managers;
• Provide strategic assessments on technology trends and emerging technologies;
• Provide IT Security strategic planning and advice;
• Conduct feasibility studies, technology assessments and cost-benefit analyses, and propose system implementation plans for IT Security;
• Develop advanced R&D policy/strategy;
• Collect, collate and prioritize client IT Security and Information Infrastructure Protection requirements;
• Evaluate and assist in the selection of enterprise-wide technology tools;
• Review and prioritize IT Security and Information Infrastructure Protection programs;
• Develop strategic IT Security architecture vision, strategies and designs using the Business Transformation Enablement Program (BTEP) methodology and the Government Strategic Reference Model(GSRM);
• Develop IT Security programs and service designs using the following GSRM models: Program Logic Model, Program and Service Alignment Model, Service Integration and Accountability Model, State Transition Model, Information Model and Performance Model; and
• Develop and deliver training material relevant to the resource category.

Knowledge, Skills and Abilities Required:

• A minimum of five years cumulative experience in the last eight years of IT Security management consulting and/or IT Security planning.
• Experience on a minimum of three projects delivering a combination of IT Security and Microsoft Identity and Access Management solutions.
• Demonstrate that you have written a minimum of two Enterprise Security Policies.
• A minimum of two projects delivering IT Security consulting services, specifically in the domain of Identity and Access Management (IAM).
• Possess one current professional certification from the following:
• • PMP from PMI;
  • CISSP from (ISC)2;
  • CISSP / ISSEP from (ISC)2;
  • CISSP / ISSAP from (ISC)2;
  • CISSP / ISSMP from (ISC)2;
  • CISM from ISACA; vii.CBCP from DRI;
  • CPP from ASIS;
  • ISA from ISACA;
  • CA or CMA or CGA;
  • CMC;
  • GIAC / Any Silver management certification;
  • GIAC / GFSP, GEIT Gold management certification;
  • Registration/licence to practice professional engineering in Canada; and
  • CISA from ISACA.

If you are interested in this opportunity, please submit your résumé.