×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Security Specialist

Job in Toronto, Ontario, M5A, Canada
Listing for: Foilcon
Contract position
Listed on 2026-01-01
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Job Description & How to Apply Below
Position: Security Specialist 0483-0717

HM

Note:

This hybrid contract role is three (3) days in office. Candidate resumes must include first and last name, email and telephone contact information.

Description

Background Information

  • The purpose of this request is to acquire a Sr. Security Specialist to support and deliver on multiple initiatives related to Security Governance, Risk and Compliance and Cyber Defence Operations.
  • This includes leading multiple initiatives related to security strategy, security audit and compliance requirements and findings, security governance including policies, standards and processes development and security risk management procedures.

Must haves:

  • Experience in risk management models for assessing and mitigating various aspects of risk exposure.
  • Analysis of the assessment’s reports based on NIST CSF.
  • Risk assessment methodologies such as HTRA (Harmonized Threat Risk Assessment) and NIST CSF, and frameworks such as ISO 27001/2.
  • Experience with security governance including developing policies, standards, processes and procedures.
  • Experience in working with various compliance and audit frameworks including, PHIPA, SOC 2 Type II, Information Privacy Commissioner (IPC) triennial audits, Ontario Auditor General Office (OAGO)
  • Experience with Security frameworks such as NIST CSF 2.0 and ISO 27001.
  • An adept team player who is action oriented, with a record of accomplishment of motivating other team members to achieve higher goals.

    • Responsibilities:

    • Take a subject matter expert role in various security risk management initiatives and providing security expertise, facilitating collaboration and performing Risk Assessment.
    • Analyze proposed solution architectures, technology, design and IT development processes to identify potential threats and vulnerabilities, and to recommend options that enhance the security of solutions and business processes. Identify, analyze, and recommend options for risk management at appropriate levels within the enterprise and the health care sector.
    • Present topic areas and relevant security materials to product and digital solution groups.
    • Coordinate with members and teams in Ontario Health to develop and implement recommended security policies and related controls.
    • Track the security control implementation to meet compliance requirements and audit findings.
    • Coordinate internal and external information security initiatives as a subject matter expert to reach feasible security solutions for issues across the health care sector.
    • Take a leading role in offensive security practices and provide guidance to the teams with methodologies, tools, and processes.
    • Contribute to the ongoing development and maturing of the OH security program, consulting and assurance practices.
    • Demonstrate the ability to effectively negotiate and resolve conflicts with individuals or teams in a professional and collaborative manner.
    • Utilize strong communication and negotiation skills to effectively persuade individuals with differing perspectives and conflicting interests towards a mutually beneficial resolution on a regular basis.
    • Implement tools and processes to manage workflow and materials related to the information security risk management.
    • Stay abreast of any changes to industry best practices or legislative regulations and assess the resulting impact to the organization.
    • Deep knowledge of the methodologies, frameworks, and processes in Information Security domain.
    • Good Experience in conducting Threat Risk Assessments using various Framework / Methodologies / Standards such as (NIST / HTRA / ISO).
    • Risk management models for assessing and mitigating various aspects of risk exposure.
    • Generate risk maps to help, guide the risk owners and keep the stakeholders in the communication.

    Desired Skills:

    • 10+ years’ experience in various security domains including third-party risk management, IT audits and/or Security Governance, Risk and Compliance (GRC)
    • Bachelor’s or master’s degree in computer science, Information Technology, Cyber Security, Systems or other related field, or equivalent work experience.
    • Professional certifications in information/cyber security (e.g. CISSP, CCSP, CISA, CISM, CRISC) is required.
    • Knowledge of prevalent industry…
    Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
    To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)

    Job Posting Language
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search