Job Description :
Title: Security Architect - Level 3 Location: Toronto, ON Duration: 12+ Months Contract Must Haves: Demonstrated experience developing incident response plans and playbooks for a med-large size organization Previous banking experience is ideal Demonstrated experience with disaster recovery planning Demonstrated experience with prioritization and remediation of vulnerabilities Previous experience with process and procedures - working with teams to ensure they are following best practices when it comes to cyber security Technical from a networking and infastructure standpoint - CISSP an asset but not required In depth knowledge of NIST framework NOT looking for someone that has only done the theory and does not have hands on experience with cyber security initiatives Want to see hands on experience improving security and removing vulnerabilities from a med-large org Longer term, multi year experience with the same organization preferred Security Specialist Experience Demonstrated experience developing Incident Response Plans and IR Playbooks for medium to large size organizations for multiple scenarios Demonstrated experience with DR Planning from a Security perspective Demonstrated experience working in / for / with a SOC Demonstrated experience with the prioritization of measures to remediate vulnerabilities Demonstrated experience participating in / leading penetration tests and remediating vulnerabilities identified in those tests. Demonstrated experience working with organizations to ensure their processes and procedures are compliant with organizational policies Demonstrated experience drafting team-level policy and processes related to security. Security Specialist Knowledge Deeply familiar with NIST, SANS and other IR frameworks Knowledgeable with multiple jurisdictions including Canada in terms of privacy regulations and responsibilities Technical knowledge with respect to infrastructure and networks as it relates to application security Knowledge of Incident Response Plans and IR Playbooks Knowledge of Disaster Recovery Planning from a Security perspective Knowledge of the functions and processes within a Security Operations Centre (SOC) Knowledge of penetration testing theory and associated remediation of vulnerabilities