Location: National Capital Region
Security Clearance: Secret Security Clearance
Core Responsibilities:
The responsibilities for the Information Technology Security Methodology, Policy and Procedures Analyst Level 3 include, but are not limited to the following tasks:
- Review, analyze, and/or apply Federal, Provincial or Territorial Government IT Security methodologies, programs, policies, procedures, standards, guidelines, and IT Security Risk Management methodologies;
- Develop IT Security standards, procedures and guidelines pursuant to the requirements of The National Security Policy, Policy on Government Security, supporting operational standards (e.g., MITS), departmental/agency security policy, and other relevant standards, procedures and guidelines;
- Develop IT Security policy in the areas of IT security and assurance, standard Certification & Accreditation frameworks for IT systems, information infrastructure protection, product evaluation, privacy, Business Continuity Planning, contingency planning and Disaster Response Planning, Research & Development;
- Develop IT Security risk assessment methodologies for application to Government of Canada institutions; and
- Develop and deliver training material relevant to the resource category.
Knowledge, Skills and Abilities Required:
- A minimum of five years cumulative experience in the last eight years related to the development of IT Security methodologies, policies, procedures, standards and/or guidelines. This includes review and/or analysis resulting in recommendations for changes/ amendments/ updates.
- Possess one current professional certification from the following:
- CIISP from (ISC)2;
- CISSP / ISSEP from (ISC)2;
- CISSP / ISSAP from (ISC)2;
- CISSP / ISSMP from (ISC)2;
- CISM from ISACA;
- CBCP from DRI;
- CPP from ASIS; and
- CISA from ISACA .
If you are interested in this opportunity, please submit your résumé.
