Senior Information Security Analyst

Come help build the future, where our work makes the world work!

SUMMARY

Reporting to the Director, Information Technology, the Senior Information Security Analyst will lead and implement robust security measures to safeguard the organization’s information assets, ensure regulatory compliance, and promote a culture of security awareness. The ideal candidate will provide expert guidance on security best practices, lead incident response efforts, and help shape the organization’s security policies and procedures.

PRIMARY SCOPE OF ROLE

• Security Design and Implementation: Implement and manage security controls such as firewalls, IDS/IPS, and DLP tools. Contribute to developing and enforcing security policies, standards, and procedures.
• Vulnerability Management and Risk Assessment: Conduct thorough security risk assessments and identify system vulnerabilities. Develop and implement mitigation strategies to manage security risks. Conduct penetration testing and vulnerability scanning.
• Incident Response and Security Operations: Lead incident response efforts, investigate security breaches, and ensure timely remediation. Monitor network traffic and system logs for suspicious activity. Develop and maintain incident response plans.
• Compliance and Auditing: Participate in internal and external security audits and assessments. Ensure compliance with industry standards and regulatory requirements(e.g., PCI DSS, HIPAA).
• Collaboration and Communication: Collaborate with IT teams to implement and maintain security best practices. Communicate complex security concepts to both technical and non-technical audiences. Develop and deliver security awareness training programs to employees. Lead and manage security-focused projects and initiatives.
Emerging Trends: Tracking and understanding emerging security practices and threats. Staying up to date with the latest security technologies and best practices.

POSITION REQUIREMENTS

• Education: Bachelor’s degree in computer science, Information Systems, or a related field.
• Certifications: Relevant industry certifications such as CISSP (Certified Information Systems Security Professional).
• Industry & Domain Experience: 5 – 10 years of experience in information security or cybersecurity roles. Experience with security frameworks and methodologies (e.g., NIST,ISO 27001). Strong understanding of security concepts, principles, and technologies.Proficiency in using security tools like firewalls, IDS/IPS, and SIEM platforms.
• Construction/Civil Engineering Focus: Experience in the construction or civil engineering industry is highly preferred.
• Analytical & Problem-Solving: Excellent analytical skills with the ability to dissect complex problems and formulate effective technical solutions. Proactive in
• troubleshooting issues and adept at decision-making, especially under pressure or when dealing with ambiguity.
• Communication & Interpersonal: Strong verbal and written communication skills. Able to collaborate and build relationships across departments. Able to effectively communicate security risks and best practices to technical and non-technical stakeholders.
• Leadership & Team Management: Demonstrated leadership abilities in guiding technical teams or projects. Strong organizational skills and the ability to lead by example, championing best practices and high-quality standards in solution delivery.

WHAT WE OFFER

• Expected Base Salary: $100,000 - $115,000 per year. The actual base salary will depend on several factors including experience, qualifications, internal equity, work location and market expectations.
• Annual performance-based bonus.
• Comprehensive group benefits program.
• Retirement savings program.
• Career growth and advancement opportunities.

Disclaimers

Artificial Intelligence (AI) Disclosure: AI tools are not used in the screening or assessment of applicants for this position.

Vacancy Status: This posting is for an existing job vacancy.

GIP does not accept unsolicited resumes from external recruiters or agencies. We only work with approved partners directly engaged by our Human Resources team for specific searches. Unsolicited submissions will not be eligible for placement fees.

We thank you for your interest. Only those selected for an interview will be contacted.

Green Infrastructure Partners Inc. “GIP”, is an equal opportunity employer and encourages women, Indigenous peoples, persons with disabilities and members of visible minorities to apply. We seek to hire individuals with diverse characteristics, backgrounds and perspectives.

We believe that world-class talent makes no distinctions based on gender, ethnic or national origin, sexual identity and orientation, age, religion or disability, but enriches itself through these differences. GIP will provide accommodations to job applicants with disabilities throughout the recruitment process. If you require an accommodation, please notify us and we will work with you to meet your needs.