Search jobs > Ottawa, ON > Temporary > Security specialist

IT Security VA Specialist

David Joseph & Company
Ottawa, ON, CA
Full-time

Our government client has a requirement for specialist professional services

in the field of IT Security Vulnerability Analysis to assist their Information Protection.

The enterprise information security program addresses these challenges through a range of

programs and services, some of which require enhancement to further fulfill organizational needs.

The IT Security Vulnerability Analysis Specialist will assist in the ongoing enhancement of the

Vulnerability Management Program tailored for its unique operational environments.

SCOPE

The IT Security Vulnerability Analysis Specialist will provide insight and assistance to staff and be

responsible for successful completion of the following requirements listed below :

Work with stakeholders to facilitate the adoption of patching best practices throughout the

enterprise with a primary focus on Enterprise Technologies and Solutions (ETS) and DXC

  • Technology patch management authorities;
  • Carry out vulnerability scans, reporting findings to management and working with stakeholders
  • to resolve critical issues;
  • Train staff on enterprise Vulnerability Analysis capability;
  • Assist with any vulnerability management activity that arises resulting from networks
  • integration activities;
  • produce briefing notes and risk assessments concerning vulnerability posture;
  • Assist with, and where necessary provide technical leadership for, corporate response activities
  • to major, urgent vulnerabilities requiring immediate and comprehensive action;
  • Management and coordination of the work and provision of quality control oversight on all
  • deliverables;
  • Providing weekly progress / status reports, the exact format / template will be provided by the
  • technical authority;
  • Preparing a record of discussions / decisions resulting from any formal meetings that are held
  • related to this work;
  • Immediately notifying in writing following format the TA of any issue / problem that may
  • impede, delay or negatively impact completion of authorized work;
  • Maintaining an electronic library of work in progress, delivered items and reviewed comments,
  • and version control thereof in GCDOCS;
  • Consulting with the TA, throughout the duration of this contract and provide briefing notes, and
  • presentations to management as required by the TA;
  • Providing written advice, guidance and recommendations on Information Security (IS) / IT

Security issues as required by the TA, , the exact format / template will be provided by the

  • technical authority;
  • Participating in working groups and forums as required (within the NCR);
  • Providing coordination of input to change management board; and
  • Managing and coordinating quality control oversight on all deliverables.

DELIVERABLES

The Contractor must produce the following deliverables in support of the tasks described in section

above. Deliverables must be submitted to the TA for review and comment one week prior to the

completion dates, with any follow-on revisions carried out within two business days of receiving

feedback from the TA.

All deliverables shall be submitted to the TA, in one (1) electronic copy in MS Office format, Atlassian

collaboration tools (including using Confluence and Jira) and reporting capabilities of the provided

systems. All deliverables must be securely stored.

Where suitable in support of the services required :

Process documentation (for example Concept of Operation (CONOPs), other material required in

support of accreditation).

Documented testing methods and analysis tools that will be used to train or share information

with staff.

Briefing notes and risk assessments concerning vulnerability posture using standard office

productivity software from the desktop environment (e.g. PowerPoint

presentations and Word documents).

  • Weekly status reports on efforts, deliverables, issues, and risks.
  • Report and track project-related activities, status, and progress.
  • Record of Decisions (RoD) affecting the outcome of the project are made to include cost, scope,

and timelines. RoD after each meeting and / or telephone discussion where appropriate.

Top Secret Security Clearance (or ability to obtain one)

2) years’ experience within the last five (5) years providing in-depth analysis of vulnerabilities and impacts to key stakeholders of Government of Canada.

  • Experience in identification and evaluation of complex business and technology risks, establishment of internal controls which mitigate risks, and related opportunities for internal control improvement.
  • Experience with (2) of the following in an On-Site enterprise environment domains :
  • NMAP;
  • Tenable Network
  • Security;
  • Qualys;
  • Burp Suite; and
  • Rapid7
  • 30+ days ago
Related jobs
David Joseph & Company
Ottawa, Ontario

The IT Security Vulnerability Analysis Specialist will assist in the ongoing enhancement of the . The IT Security Vulnerability Analysis Specialist will provide insight and assistance to staff and be. IT Security Vulnerability Analysis to assist their Information Protection. Assist with any vulnerab...

David Joseph & Company
Ottawa, Ontario

The IT Security Vulnerability Analysis Specialist will assist in the ongoing enhancement of the . The IT Security Vulnerability Analysis Specialist will provide insight and assistance to staff and be. IT Security Vulnerability Analysis to assist their Information Protection. Assist with any vulnerab...

Stafflink
Ottawa, Ontario

Our client in the IT industry is seeking Multiple Trilingual Help Desk agents to join their team! Provide technical support to resolve customer IT problems, incidents, issues, requests, and queries. Collaborate with other support teams or product teams as needed to ensure timely resolution of reques...

S.i. Systems
Ottawa, Ontario

Senior IT Security Vulnerability Analysis Specialist to help modernize their capability in Cyber Security. Prepare and/or deliver IT Security threat, vulnerability and/or risk briefings;. Security Vulnerability Specialist. Worked on 3 projects in the last 5 years identifying IT Security Vulnerabilit...

Promoted
AdventInfotech
Ontario, Canada

As a Cyber Security Engineer, you will be responsible for safeguarding an organization's computer networks and systems. You will utilize your expertise in cybersecurity principles, practices, and tools to protect sensitive data, prevent unauthorized access, and mitigate potential security threats. B...

TEEMA
Ottawa, Ontario

Work closely with IT, Application, and data architects to develop an architectural framework and guiding principles that will define and maintain our future enterprise architecture. Plan and design an enterprise security architecture and document how the implementation of a new technology impacts th...

High Cliff Partners Inc.
Ottawa, Ontario

The ideal candidate will to lead the design, implementation, and management of SAP HANA security architecture within complex SAP environments. Oversee security architecture across various SAP environments, including HANA S/4, Suite on HANA, CRM, C4C, HCM, SuccessFactors, ECC, and other SAP solutions...

Ouster
Ottawa, Ontario

Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field At a minimum 5 years of experience as an Application Security Engineer At least 3 years of relevant experience in software engineering or devops Mastery of Jenkins or other CI/CD system Mastery of Linux a...

York Region District School Board
Ontario, Canada

We are currently accepting applications for the position of:Senior Enterprise Network & Cyber Security Architect Position Type: Permanent effective Immediately Salary Range - $79,890 - $104,939 POSITION SUMMARY Under the direction of the Manager, Network Infrastructure, Cyber Security & Telecommunic...

CB Canada
Ottawa, Ontario

Security Consultant to conduct Security Threat and Risk Assessments of their IT facilities and IT Infrastructure/Data Centers in accordance with ITSG-33 and Harmonized Threat and Risk Assessment (HTRA). SA&A/C&A) Security Assessment and Authorization / Security and Accreditation packages for IT syst...