Senior Security Consultant

Description

Safeguard, Comply, Innovate : Shape TELUS' Cyber Resilience

Join our team and what we'll accomplish together

Are you interested in being part of building TELUS’ future with our Chief Security Office? Security is the place to be; with increased digitization of our life, customers, vendors and organizations' need for security has dramatically increased. We offer an environment where you’re encouraged to share and act on your ideas, while learning new things and building your career. In our flexible work environment you will connect remotely with team members across Canada.

The Security Programs’ primary objective is to create, deliver, and evolve high quality programs that enhance security for TELUS and our customers in an ever-changing cyber security landscape.

As a Security Consultant on the Assurance & Compliance team, you will have the opportunity to contribute to our mission of safeguarding assets and information and improve security and privacy outcomes. Succeeding means improving customer experience with TELUS' services, ensuring our services meet security standards, and helping TELUS avoid costs from redesign or incident response efforts.

What you will do

• Engage in internal/external compliance audits for PCI, ISO and SOC2 

• Analyze security requirements and existing controls

• Provide recommendations to mitigate risks, estimate costs and establish processes and tools to protect computer systems and networks from potential threats ensuring compliance with security policies, standards and contractual obligations

• Participate in remediation efforts

• Provide regular updates on security progress and effectively escalate issues when required

• Leverage your business and security expertise to further improve our security programs, working collaboratively across our leaders and stakeholders to develop, refine, enhance, and implement

• Build effective working relationships with technology teams and business stakeholders across all of TELUS's business lines

• Stay up-to-date with the latest cyber threats, security trends, technologies, and best practices

Qualifications

What you bring

• University degree in Technology, Cybersecurity or equivalent experience

• At least 6 years’ experience in information security consulting, compliance (e.g. PCI, SOC2, ISO 27001) or governance

• Hands on experience and expertise of datacenter architecture around server, storage, networks, firewall

• Experience working on cloud platforms like GCP, AWS, Azure

• Strong understanding of cybersecurity frameworks (NIST, ISO, OWASP) and best practices

• Ability to adhere to timelines in a dynamic environment, while working collaboratively across teams

Great to haves

• Understanding and experience in Identity and Access Management

• Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM)

• Bilingual (English and French)