Security Incident Response Specialist

You are as unique as your background, experience and point of view. Here, you’ll be encouraged, empowered and challenged to be your best self. You'll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day, you'll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do. Discover how you can make a difference in the lives of individuals, families and communities around the world.

Job Description:

Job description (heading) /  Description du poste (titre)

• The Cyber Security Incident Response Administrator participates in the delivery of the Information Security Threat Management capability and corresponding services within the Digital Security Threat Management department. The role’s primary mandate is in the Security Incident Management service including management reported internal and external possible incidents for triage, investigation, remediation tracking and reporting security incident report to management if required.

Preferred skills (heading) / Compétences particulières (titre)

• Basic IT/Information Security experience in handling incident response

• Basic Internet, networking, and computer knowledge (software & hardware).

• Knowledge of Information Security principles, protocols, practices, and industry standards is an advantage.

• Understanding of existing and emerging Information Security technologies.

• Good technology generalist, with a good understanding of all aspects of IT especially architecture.

• Working knowledge of MS Office.

• Detail oriented with good organizational and analytical skills.

• Excellent communication and collaboration skills.

Qualifications (heading) / Compétences (titre)

• University degree (Bachelor’s Degree if candidate is from Asia) or Certificate in Information Security or Computer Technology is an advantage.

• Experience with ServiceNow modules.   

• Professional designation relating to Information Security (e.g., Security+, CISSP, CISM, CISA) is an advantage but not mandatory.

Responsibilities (heading) / Responsabilités (titre)

• The primary objectives for the Information Security team are 

• To protect confidential and sensitive information and to maintain operational stability resulting from cyber-attacks. 

• Work with the team to produces weekly/monthly reports on security Incident and event trending and direction. 

• Participate in ongoing activities, Cyber Incident Management, Breach Readiness Program, and other initiatives to achieve effective operations, productivity and optimal business performance.

• Ability to manage and deliver on special projects related to strategy, continual service improvement, metrics, process documentation and tools.

• Track different indicators of Cyber Security Incident and Security Events with the objective of proactively identifying problem areas within Sun Life.

• Work closely with the different Information Security teams to identify new threats and any Cyber Security related events that have the potential to impact Sun Life. Cyber Security Incident and Security event management and Cyber Breach

• Participates in Cyber Security Incident and Security event activities

• Ensure the successful execution of the Security Incident process and related Incidents.

• Participate in the Development & Maintenance of Cyber Breach Incident scenarios & playbooks as part of the Sun Life Cyber Breach Program.

Job Category:

Posting End Date: