Jobillico

Sign in

This recruiter is online.

This is your chance to shine!

Apply Now
S.i. Systems

Senior Secret cleared IT Security TRA and C&A Analyst to review, analyze, and apply GC IT Security policies, SA&A processes and risk mitigation str

S.i. Systems

Ottawa, ON

  • Number of positions available : 1

  • To be discussed

  • Contract job

  • Starting date : 1 position to fill as soon as possible

Apply Now
Our valued Public sector client is in need of a Senior IT Security TRA and C&A Analyst to review, analyze, and apply GC IT Security policies, SA&A processes and risk mitigation strategies.

Provide services to assess and analyze risks and develop Statements of Sensitivity (SOS) and Threat and Risk Assessments (TRA) as required for Cyber Security and Identity Management (CSIM) to perform Security Assessment and Authorization (SA&A) for current and future computing initiatives.

We are looking for someone with the following, but not limited to, experience:
  • 10 years as a IT Security TRA and C&A Analyst
  • Experience developing any one (1) or more of the following types of reports for a Canadian Public sector client:
    • data security analysis
    • Concept of operations
    • Statement of Sensitivity (SoS)
    • Threat and Risk Assessment (TRA)
    • Privacy Impact Assessment (PIA)
    • Vulnerability Assessment
    • Risk assessment.
  • Experience identifying and modelling threats that pose a risk to a client’s systems and data and applying safeguards according to these threats during system design
  • Experience creating complete Security Control Profiles by performing all of the following tasks to ensure that the solution architecture and its supporting processes and policies are assessed completely:
    • Identifying the scope of the project.
    • Establishing the set of security architecture components.
    • Crafting a control profile on a per-component basis where one control may apply differently to each component, requiring separate evidence.
    • Providing documented guidance as to acceptable evidence per control per component.
  • Experience verifying that security safeguards for IT systems and infrastructure meet Government of Canada policies and standards and have been implemented correctly to meet assurance requirements
  • Experience providing guidance to their client concerning the mitigation of security risks within the Public Cloud environment
  • Two valid certifications from the following list:
    • CISSP (Certified Information Systems Security Professional) from International Info System Security Certification Consortium Inc. (ISC)2
    • CCSP (Certified Cloud Security Professional) from (ISC)²)
    • CISSP / ISSEP (advanced specialty Information Systems Security Engineering Professional) from (ISC)2
    • CISSP / ISSAP (advanced specialty information Systems Security Architecture Professional) from (ISC)2
    • CISSP / ISSMP (advanced specialty Information Systems Security Management Professional) from (ISC)2
    • CPP (Certified Protection Professional) from ASIS;
    • CISA (Certified Information Systems Auditor) from ISACA
    • CRISC (Certified in Risk and Information Systems Control) from ISACA;
    • CISM (Certified Information Security Manager) from ISACA
    • CBCP (Certified Business Continuity Professional) from DRI
    • Certificate of Cloud Security Knowledge (Cloud Security Alliance)
Apply

Requirements

Level of education

undetermined

Work experience (years)

undetermined

Written languages

undetermined

Spoken languages

undetermined

Internal reference No.

111555

Apply Now

More similar jobs like "Senior Secret cleared IT Security TRA and C&A Analyst to review, analyze, and apply GC IT Security policies, SA&A processes and risk mitigation str"

See more similar jobs

Search more jobs

We create the perfect match

Jobillico displays the best jobs that fit your profile.

Upload your resume

job seekers also viewed.

See more >

Send by email

You must fill in all of the fields

(Please use the semicolon as email separator.)