Cyber Controls Assurance Analyst (GCS) Full-time Job
Feb 5th, 2024 at 14:53 IT & Telecoms Toronto 214 views Reference: 4459Job Details
Job Summary
To provide Information Security expertise within RBC. To use this expertise in Internal consulting and representation with the objective of optimum protection of all RBC Information assets. Applies experience and seasoned knowledge, skills, and practices to perform a variety of assignments.
Job Description
What is the Opportunity?
As a Cyber Control Assurance Analyst, you will provide Cyber Security expertise and act as a key Cyber Control advisor to internal business and technology clients. In this role, you will offer Cyber Control assessment services for initiatives in the Application/Infrastructure portfolio to ensure risk mitigation controls are properly designed and documented. You will be part of the team that provides the primary Risk & Security Services contact for projects involving new and exciting technology initiatives and enhancements to existing systems as well as interacting with all levels of the organization as a subject matter expert to ensure compliance with Information Security policies, standards, regulations, and industry standards.
What will you do?
- You will perform Cyber Control assessments on application and infrastructure assets (including cloud technologies).
- Participation in Security Review discussions, Walkthroughs, and Assessments/Security Workshops.
- Provide security controls guidance to stakeholders as part of the application/Infrastructure control assessment lifecycle.
- Assess the security of applications/infrastructure assets with a focus on the review of logical controls.
What do you need to succeed?
Must-have
- Degree in IT, Cyber Security, or other related discipline
- Experience with assessment of risk and controls using ISO 27002 framework
- Experience with Application Control Assessments and Infrastructure Control Assessments.
- Knowledge of cyber security technologies like access control solutions, authentication, network security, cryptography, PCI, privacy, and data classification/protection
- One or more of the following certifications CISSP/CRISC/CISA/CCSP
- Ability to bring years of Cybersecurity or Information Security experience to advise best practices, industry standards
- Ability to partner with all levels within the organization as required
Nice-to-have
- Previous experience working with IT Risk in a large financial institution or other regulated industries
- Knowledge of Security Policies and Standards; Information Security Practices
- Knowledge of compliance, audit, and privacy policies and regulations
What’s in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference in our communities, and achieving success that is mutual.
- A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
- Leaders who support your development through coaching and managing opportunities
- Ability to make a difference and lasting impact
- Work in a dynamic, collaborative, progressive, and high-performing team
- A world-class training program in financial services
- Flexible work/life balance options
- Opportunities to do challenging work
- Opportunities to take on progressively greater accountabilities
- Opportunities to build close relationships with clients
- Access to a variety of job opportunities across business and geographies
#LI-hybrid
#techpj
Job Skills
Control Assessment, Interpersonal Communication, Leadership, Professional Development, Risk Assessments, Secure Software Development Lifecycle, Security Access Control, Security Risk Assessment, Security Technologies, Taking Initiative, Teamwork, Working Independently
