Security Operations Compliance Specialist, Kingston
Security Operations Compliance Specialist, Kingston
-
Kingston, Canada -
Publiée: il y a moins d’une semaine
-
Ajouter -
Partager
Description
Job Summary
Reporting to the Director, Technology Operations, Centre for Advanced Computing (CAC), the Security Operations Compliance Specialist (Specialist) is part of a team responsible for ensuring compliance with CAC’s policies, practices, recognized cybersecurity frameworks, while investigating cyber risk to facilitate remediation of identified vulnerabilities across the centre.CAC is a regional partner in Canada’s national digital research infrastructure and works closely with the
Digital Research Alliance of Canada
to support secure, high‑performance research computing environments for researchers across Canada. In this context, the Specialist contributes to a trusted and compliant security posture that enables advanced research, data stewardship, and national collaboration. The Specialist identifies and assesses risk, documentsremediation and risk acceptance options, and provides subject‑matter expertise on security operations and compliance. As a subject‑matter expert, the Specialist also maintains oversight of the security maintenance program as well as reporting on findings and recommending corrective action. The Specialist maintains a strong collaborative working relationship with internal teams, external partners, and clients, supporting the CAC’s mission to deliver secure, scalable, and reliable research computing services.Key Responsibilities
Follows established security frameworks, to provide input into compliance requirements, security design solutions, security training material, workshops and communication updates. Maintains the security of numerous systems, ensuring configuration, monitoring, reporting and policies support the privacy requirements and security standards.Participates in the development of cybersecurity operations capabilities and activities, which include security design requirements, operational maintenance activities, documentation and the collection of evidence necessary for compliance objectives. Participates in the delivery of security assessments to ensure compliance with security policies, standards and procedures.Participates in the delivery of security services, including the collection of cyber‑threat intelligence, security vulnerability management, perpetual scanning (VA), logging and monitoring, SIEM, event correlation, operational metrics and reporting, as well as specialized security needs and services pertaining to the network.Supports and contributes to security‑focused workshops, training sessions, and knowledge‑transfer activities for researchers, technical staff, and partners, aligned with CAC priorities and the Digital Research Alliance of Canada standards. Anticipates security breaches and remains up to date on intelligence, including hackers’methodologies; maintains high degree of knowledge by tracking trends and best practices.Develops and deploys security monitoring use cases. Triages and analyzes security events to prioritize and elevate alerts that exceed thresholds. Analyzes cybersecurity events and incidents to determine the root cause and apply the appropriate mitigation measures. Creates scripts and implements tools to automate and develop a variety of configuration and update tasks including signature updates, rule changes, and policy updates on security devices.Assists in the delivery of vulnerability assessments to ensure compliance with security policies, standards and procedures, and takes corrective action to mitigate identified security vulnerability. Collaborates with diverse groups of internal and external IT teams and key stakeholders by interacting effectively and persuasively to investigate and resolve security violations.Participates in the development and management of security metrics for cybersecurity operations, with the aim of strengthening the security posture. Creates, maintains and publishes security documentation. Participates in change review boards as requested; reviews network security requirements for firewall changes, data encryption and other network security measures to ensure access and authorization controls are in place.Researches more effective security processes and implements application/processes that prevent data loss and service interruptions. Works occasional extended hours and an on‑call rotation outside regular work hours. Undertakes other duties as delegated in support of the CAC. Special Skills
Working with Others: actively seeks ideas from multiple sources for consideration to improve the performance of the team(s). Shares thoughts and information with all levels of expertise. Ensures that one’s own behaviour does not negatively impact others when faced with complex situations. Inclusivity: welcomes an inclusive environment and coaches others to address and support those who may feel vulnerable. Ensures the diverse group receives opportunities for fair treatment regardless of background.Communication: takes an active role to communicate to multiple audiences and easily explains complex information to ensure the message is understood. Customer Service and Support: actively engages the customer or team member and evaluates their needs in a timely manner. Establishes plans and organizes work to meet or exceed the deadlines. Periodically, conducts plan reviews and provides an update to client/customer and recommends any process efficiencies.Planning/Organising: takes an active role in analysing problems regarding resources/deliverables that may impact deadlines or standards and escalates for discussion and resolution. Plans medium‑term requirements and provides insight into scope of potential problems and identifies possible solutions.Continuous Improvement: takes an active role within a team(s) and together they identify ways to improve processes and the quality of customer service. Solicits feedback from multiple sources to identify ways to become a more highly functioning team. Attention to Detail: takes an active role to implement efficient systems to ensure that high quality work is consistently maintained by self and others. These actions include careful monitoring of work that meets standards and project plan deadlines.Adaptability and Support for Change: takes an active role to positively support team members through change. Supports change by generating new ideas and offering suggestions that will benefit the team. Decision Making
Prioritizes own work and work of project team members in accordance with evolving and/or competing priorities. Determines appropriate assignment of resources, assists in solving problems, analyses implication, and decides on a course of action that would result in timely and accurate completion of tasks.Formulates, evaluates and implements solutions to problems, alone or cooperatively with senior staff and/or CAC staff. Assesses the nature of a request and assists as appropriate. Confidentiality is paramount; therefore, aptitude to differentiate what information is shareable, when, and with whom.Determines what information should be distributed, to whom, and in what format; decisions will be based on the relevance of the information and the impact that recipients can have on the process or project outcome. Determines when to advise or involve senior staff. Self‑motivation and prioritises workloads.Determines how to deal with operational problems that occur outside of working hours to avoid major customer impact.
#J-18808-Ljbffr
Reporting to the Director, Technology Operations, Centre for Advanced Computing (CAC), the Security Operations Compliance Specialist (Specialist) is part of a team responsible for ensuring compliance with CAC’s policies, practices, recognized cybersecurity frameworks, while investigating cyber risk to facilitate remediation of identified vulnerabilities across the centre.CAC is a regional partner in Canada’s national digital research infrastructure and works closely with the
Digital Research Alliance of Canada
to support secure, high‑performance research computing environments for researchers across Canada. In this context, the Specialist contributes to a trusted and compliant security posture that enables advanced research, data stewardship, and national collaboration. The Specialist identifies and assesses risk, documentsremediation and risk acceptance options, and provides subject‑matter expertise on security operations and compliance. As a subject‑matter expert, the Specialist also maintains oversight of the security maintenance program as well as reporting on findings and recommending corrective action. The Specialist maintains a strong collaborative working relationship with internal teams, external partners, and clients, supporting the CAC’s mission to deliver secure, scalable, and reliable research computing services.Key Responsibilities
Follows established security frameworks, to provide input into compliance requirements, security design solutions, security training material, workshops and communication updates. Maintains the security of numerous systems, ensuring configuration, monitoring, reporting and policies support the privacy requirements and security standards.Participates in the development of cybersecurity operations capabilities and activities, which include security design requirements, operational maintenance activities, documentation and the collection of evidence necessary for compliance objectives. Participates in the delivery of security assessments to ensure compliance with security policies, standards and procedures.Participates in the delivery of security services, including the collection of cyber‑threat intelligence, security vulnerability management, perpetual scanning (VA), logging and monitoring, SIEM, event correlation, operational metrics and reporting, as well as specialized security needs and services pertaining to the network.Supports and contributes to security‑focused workshops, training sessions, and knowledge‑transfer activities for researchers, technical staff, and partners, aligned with CAC priorities and the Digital Research Alliance of Canada standards. Anticipates security breaches and remains up to date on intelligence, including hackers’methodologies; maintains high degree of knowledge by tracking trends and best practices.Develops and deploys security monitoring use cases. Triages and analyzes security events to prioritize and elevate alerts that exceed thresholds. Analyzes cybersecurity events and incidents to determine the root cause and apply the appropriate mitigation measures. Creates scripts and implements tools to automate and develop a variety of configuration and update tasks including signature updates, rule changes, and policy updates on security devices.Assists in the delivery of vulnerability assessments to ensure compliance with security policies, standards and procedures, and takes corrective action to mitigate identified security vulnerability. Collaborates with diverse groups of internal and external IT teams and key stakeholders by interacting effectively and persuasively to investigate and resolve security violations.Participates in the development and management of security metrics for cybersecurity operations, with the aim of strengthening the security posture. Creates, maintains and publishes security documentation. Participates in change review boards as requested; reviews network security requirements for firewall changes, data encryption and other network security measures to ensure access and authorization controls are in place.Researches more effective security processes and implements application/processes that prevent data loss and service interruptions. Works occasional extended hours and an on‑call rotation outside regular work hours. Undertakes other duties as delegated in support of the CAC. Special Skills
Working with Others: actively seeks ideas from multiple sources for consideration to improve the performance of the team(s). Shares thoughts and information with all levels of expertise. Ensures that one’s own behaviour does not negatively impact others when faced with complex situations. Inclusivity: welcomes an inclusive environment and coaches others to address and support those who may feel vulnerable. Ensures the diverse group receives opportunities for fair treatment regardless of background.Communication: takes an active role to communicate to multiple audiences and easily explains complex information to ensure the message is understood. Customer Service and Support: actively engages the customer or team member and evaluates their needs in a timely manner. Establishes plans and organizes work to meet or exceed the deadlines. Periodically, conducts plan reviews and provides an update to client/customer and recommends any process efficiencies.Planning/Organising: takes an active role in analysing problems regarding resources/deliverables that may impact deadlines or standards and escalates for discussion and resolution. Plans medium‑term requirements and provides insight into scope of potential problems and identifies possible solutions.Continuous Improvement: takes an active role within a team(s) and together they identify ways to improve processes and the quality of customer service. Solicits feedback from multiple sources to identify ways to become a more highly functioning team. Attention to Detail: takes an active role to implement efficient systems to ensure that high quality work is consistently maintained by self and others. These actions include careful monitoring of work that meets standards and project plan deadlines.Adaptability and Support for Change: takes an active role to positively support team members through change. Supports change by generating new ideas and offering suggestions that will benefit the team. Decision Making
Prioritizes own work and work of project team members in accordance with evolving and/or competing priorities. Determines appropriate assignment of resources, assists in solving problems, analyses implication, and decides on a course of action that would result in timely and accurate completion of tasks.Formulates, evaluates and implements solutions to problems, alone or cooperatively with senior staff and/or CAC staff. Assesses the nature of a request and assists as appropriate. Confidentiality is paramount; therefore, aptitude to differentiate what information is shareable, when, and with whom.Determines what information should be distributed, to whom, and in what format; decisions will be based on the relevance of the information and the impact that recipients can have on the process or project outcome. Determines when to advise or involve senior staff. Self‑motivation and prioritises workloads.Determines how to deal with operational problems that occur outside of working hours to avoid major customer impact.
#J-18808-Ljbffr
Informations clefs
-
Nom de l’entrepriseQueen's University -
Titre de posteSecurity Operations Compliance Specialist
-
Signaler -
Bloquer l’annonce
Conseils de Sécurité
Protégez vos informations personnelles et utilisez le formulaire de contact pour entamer une conversation.
Recherches afférentes
Informations supplémentaires sur l’annonce
Security Operations Compliance Specialist est visible sur Locanto dans la rubrique Kingston Informatique, télécommunications.
Pour Kingston il n’y a pas d’autres annonces dans cette rubrique.
Il y a encore plus de petites annonces dans un rayon de 15 km pour cette rubrique. Cliquez ici pour consulter ces annonces.
