Security Specialist

Security Specialist

·        Location: Toronto ON

·        Contract Length:6months

Work Type: Hybrid

We at Raise are hiring right now for one of our Government Sector Clients. If you’re interested, apply below for your chance to join a great place to work. 

RESPONSIBILITIES

1. Identify risks associated with legacy system migration and ensure appropriate

security measures are incorporated into the architecture.

2. Develop and refine a cybersecurity strategy aligned with the modernization of

IT systems.

3. Conduct internal cybersecurity risk assessments to identify vulnerabilities and

threats to IT infrastructure.

4. Prioritize risks and design mitigation strategies, including preventive and

detective controls.

5. Develop incident response plans to address potential cybersecurity breaches.

6. Ensure IT systems meet compliance needs with applicable regulatory

standards, including privacy and data protection legislation.

7. Assist in creating or updating internal cybersecurity policies and practices,

ensuring alignment with municipal, provincial, and federal mandates.

8. Provide guidance on integrating cybersecurity measures into modernized

platforms and cloud-based solutions.

9. Work closely with system architects and developers to embed security into

system design, reducing potential attack surfaces.

10. Implement tools and technologies for continuous monitoring and advanced

threat detection.

11. Evaluate the potential use of AI/ML techniques for predictive threat analysis and

anomaly detection.

12. Conduct cybersecurity awareness training for staff to promote a culture of

security.

13. Develop training materials focusing on phishing prevention, password hygiene,

and safe handling of sensitive information.

14. Prepare detailed documentation of security protocols, risk assessments, and

mitigation strategies.

15. Ensure effective knowledge transfer to internal teams, enabling them to

maintain and enhance cybersecurity.

16. Promote modern software development methodologies and processes such as

Agile, CI/CD and DevOps / DevSecOps.

17. Contribute to the ongoing team development by sharing knowledge, information

and lessons learned on a regular basis.

18. Perform other duties as required by the projects

Qualifications

It is important that the services be undertaken by the Specialist who can

demonstrate expert knowledge of and experience in performing similar work for

projects of comparable nature, size and scope as detailed below.

Qualifications and Experience:

• Minimum 8 years of experience in cybersecurity risk assessment,

mitigation, and compliance, preferably within public sector or

enterprise-level IT environments.

• Minimum 5 years with privacy impact assessment, together with

strong understanding of compliance requirements such as the Privacy

Act and PIPEDA, and the provincial FIPPA, MFIPPA and PHIPA.

• Minimum 5 years of experience with vulnerability assessment and

penetration testing, including scanning techniques like SAST, DAST,

IAST, SCA, and tools such as Fortify, WebInspect, and Burp Suite.

• Proficiency in implementing and managing advanced threat detection

tools, including SIEM tools like Splunk and developing incident

response plans.

• Experience with secret management, privileged access management,

along with related tools like Cyberark or BeyondTrust.

• Experience with secure coding practices, OWASP, firewalls, intrusion

prevention systems, data loss prevention tools, traffic and data

encryption.

• Experience with cloud platforms such as Azure and AWS, including

implementation of identity and access management (IAM), encryption,

and monitoring tools.

• Excellent problem solving, leadership, facilitation, interpersonal and

communication skills.

• Relevant cybersecurity certifications such as CISM, CISSP, or CRISC.

• BS in Computer Science, Engineering or related discipline or

equivalent experience.

The City may contact the references provided. Should any reference fail to confirm

that the services listed in Section 3.0 were performed in a satisfactory manner, the

Candidate may be declared non-compliant and not considered for the remainder of

the evaluation process.

Deliverables

Provide security subject matter expertise to management and project

teams in proactive analysis or in incident response.

• Perform the assessment of internal security risks and associated

mitigations.

• Document key security event and analytic findings.

• Assess cyber alerts from related authorities for technical relevance,

potential risks, and mitigations.

• Perform static or dynamic application code analysis (SAST or DAST).

• Assist with Threat & Risk Assessment, Vulnerability Assessment,

Penetration testing, and static and dynamic code scanning

• Develop and conduct the cyber security training program for developers

and other IT staff.

• Identify risks, issues and constraints associated with solutions and

designs.

• Collaborate with other City groups on cybersecurity matters.

• Mentorship, knowledge sharing and transfer

Looking for meaningful work? We can help

 

Raise is an established hiring firm with over 65 years of experience. We believe strongly in making the world a better place through work, which is why we’re a certified B Corporation and donate 10% of our profits to charity.

 

We strive to build teams that reflect the diversity of the communities we work in. We encourage all qualified applicants to apply, including people from traditionally underrepresented groups such as women, visible minorities, Indigenous peoples, people identifying as LGBTQ2SI, veterans, and people with visible/nonvisible disabilities.

 

We have a dedicated webpage for accommodations where you can learn more about what we offer, and request accommodation: https://raise.jobs/accommodations/

 

In order to submit candidates for roles, our clients will sometimes require personal information to confirm the identity of applicants and their legal status to work. Raise will never ask you for personal or banking information unless you have been selected for a job. If you are ever unsure about the legitimacy of this or another job posting by Raise (or have any other questions), please contact us at +1 800-567-9675 orhello@raiserecruiting.com

Security Specialist

  • TORONTO
  • Hybrid
  • Contractor, Full Time
  • $83.3 Per Hour
  • Other
APPLY NOW

Similar job opportunities:

Security Specialist – Penetration Testing – Senior
Cybersecurity Specialist
Export Control Specialist
Systems Testing/QA Specialist – Intermediate
Logistics Specialist
Technical Architecture (Data Centre Specialist)
APPLY NOW

When you apply for a job with us, you consent to the use of automated screening tools — including voice and text analysis — for this job and future jobs with Raise. These tools help us review resumes, assess qualifications, and make initial recommendations; however, all final reviews and hiring decisions are made by people. Questions? Contact us at hello@raiserecruiting.com

Search all jobs:

Search jobs by title or keyword
Click here
SEARCH JOBS

Keep exploring!

AI for job seekers: 5 AI Prompts to help

The Reality of Online Job Applications 

5 Tips for Students Seeking Summer Jobs in May 

Is Raise Legit? Here’s everything you need to know

Why Choose Contingent Work?

How Skills-Based Hiring is Changing Job Searching

SEE ALL JOB & CAREER RESOURCES