Information Security Advisor Job Description
Information Security Advisor Duties & Responsibilities
To write an effective information security advisor job description, begin by listing detailed duties, responsibilities and expectations. We have included information security advisor job description templates that you can modify and use.
Sample responsibilities for this position include:
Information Security Advisor Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Information Security Advisor
List any licenses or certifications required by the position: CISSP, CISA, CCNP, GIAC, CCNA, MCSE, CCIE, CCSP, CISM, CCSFP
Education for Information Security Advisor
Typically a job would require a certain level of education.
Employers hiring for the information security advisor job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Collage Degree in Computer Science, Education, Management Information Systems, Information Security, Engineering, Information Technology, Business, Technical, Management, Information Management
Skills for Information Security Advisor
Desired skills for information security advisor include:
Desired experience for information security advisor includes:
Information Security Advisor Examples
Information Security Advisor Job Description
- Document feedback and lessons learned from customer engagements
- Share knowledge within the ISO community
- Be a mobile worker typically involved in pre-sales and service delivery visits to customer locations
- Review and evaluate the existing I.C.T
- Review and evaluate the existing CISCO Firewalls and polices for IEC HQ, and assist in designing for ECC and provide a report on required upgrades and actions
- Review all software licences presently owned by the both EMB’s (IEC/ECC) and determine their future worth to the present I.C.T
- Inspect and provide a status report on the both EMB’s (IEC/ECC) firewalls at HQ and provincial offices
- Assist the EMB’s (IEC/ECC) in re-establishing VPNs within both HQ ensuring network security
- Complete a physical test on the CISCO Unified communication appliance and suggest improvements with latest technology to give IEC total voice communication
- Provide advice and assist the EMB’s in the updating of its existing operational/administration I.C.T
- Proven networking experiences including TCP/IP, BGP, OSPF
- Improve ITD controls posture by providing delivery teams, and client relations management teams with advise and council on the interpretation of IT Security policies and security controls documents including but not limited to ITCS104, GSD 331, and ISeC
- Undergraduate degree in information technology or related field
- University degree in a computer science/related field or relevant work experience
- History of successfully implementing enterprise security solutions (SIEM, DLP)
- Minimum of 5 years of experience in implementing and/or operating information security tools
Information Security Advisor Job Description
- This role will also perform risk assessments on projects being delivered and any new IS-related services being deployed (including extranet services)
- Leads the development of requirements, system architecture, and software design of security products and services
- Leads the development of strategies for discovery, evaluation and response to new networking attacks
- Provide oversight related to various audit engagements
- Raise awareness, educate project team’s members of security requirements, and provide technical guidance when required to facilitate compliance
- Document issues and present formal reports to project teams and/or senior management
- Work with the organization’s Privacy Officer to ensure projects adhere to Federal/Provincial privacy requirements
- Participate in the intake process ensuring projects are assigned to members of the team in a timely manner
- Ensure that all projects receive timely updates and all requests are updated within the team’s tracking tools
- Support the further development of the organization’s information security policies and procedures
- Anticipates Federal and State regulatory and business partner Information Security risk requirements and responds both verbally and written to inquiries from periodic exams
- 6+ years facilitating risk assessment sessions with all levels of management and executive management
- Bachelor's degree in MIS, Computer Engineering, Cyber Security, IT or related disciplines or 4 years of additional work experience in IT, Information Security, Cyber Security or equivalent in lieu of a degree
- Provides advanced advice and acts as an Information Security subject matter expert liaison between the company and staff agencies through formal and ad-hoc inquiries
- Provides governance and leads identifying, analyzing and initiating changes in the Information Security policies, guidelines and standards including advising company and staff agencies in support of developing and managing the Information Security awareness program
- Leads the planning, design, development and execution of the Information Security risk and control identification, evaluation, documentation, analysis and reporting processes including analytic tools
Information Security Advisor Job Description
- Provide detailed data analysis, insights, and operational reporting to aid Retail teams in the development and delivery of remediation plans
- Provide centralized financial oversight and budget planning support of compliance initiatives within Retail IT
- Support internal and external technology audit activities and collaborate in the development of audit finding remediation plans
- Monitor and maintain internal departmental compliance processes with a focus on effectiveness, efficiencies, and continuous improvement
- Conduct internal IT security policy and compliance procedure reviews to assess departmental compliance
- Demonstrated ability to work independently to manage personal workload
- Demonstrated ability to handle concurrent high priority tasks and work in dynamic environment of security discoveries on a daily basis
- Solid analytical skills to define complex business processes or resolve complex business issues
- Ability to communicate at executive and departmental levels
- Ability to work effectively across a variety of functional IT and business areas
- Relevant industry security certifications would be advantageous
- Supports the lines of business and staff agencies with Information Security issues and communicates changes and trends in the Information Security standards and regulations
- Responsible for the implementation and interpretation of Information Security policies, guidelines and standards including the Information Security awareness program
- Supports cross-functional teams through the problem resolution process, ensures necessary technology security controls exist and troubleshoots non-complex Information Security issues
- Could performs physical site assessments of business partners, provides peer review of work product and deliverables and executes release of information analysis to third party business partners
- Executes the Information Security risk and control identification, evaluation, documentation, analysis and reporting processes including analytic tools
Information Security Advisor Job Description
- Improve employee cybersecurity education and awareness in the Medical business segment including global locations through socialization of Information Security strategies and goals
- Assist with incidence response planning investigation of security breaches, disciplinary and legal matters associated with breaches as necessary in the Medical segment
- Assist in prioritizing information security initiatives and spending based on appropriate risk management taking into account the Medical segment business needs and priorities
- Ensure information technology compliance with data privacy and other regulations in the Medical segment
- Prevents Security Problems across multiple systems
- Interview business stakeholders in order to define and document Access Control Matrix and related documents for application onboarding projects
- Establish a strong working relationship with the various business partners among Canadian Banking, International Banking, Global Banking & Markets, Global Wealth & Insurance and internal IT&S teams to ensures access certification and access termination changes provides value and consistency added to the user and customer experience by onboarding applications to the bank’s access governance platforms
- Initialize continued process improvements of access governance
- Esponding inquires to various audit, compliance and IT risk teams
- Perform required tasks for access governance functions
- 4+ years relevant work experience in Information Technology
- 4+ years working risk assessments with all levels of management
- CISSP, CISA, CISM, CRISC or similar certification are must
- Minimum three (3) years of experience in similar role
- Solid understanding of ISO27001/ISO27002, IT Governance best practices, SSAE16/PCI/COBIT/ITIL
- Experience in working with legal, audit and compliance staff
Information Security Advisor Job Description
- Negotiate and facilitate meetings amongst stakeholders to determine policy strategy and treatment
- Perform analysis regarding coverage of risks, gaps, and processes in current policy documentation
- Respond to clarification/collaboration requests from stakeholders
- Experience working with individual external to IT
- 5-8 years (8+ years for Sr Advisor) combined experience in systems administration and security aspects of information systems, computer networking, telecommunications, systems development and management
- Provides first level engineering design functions and trouble resolution
- Maintains security incident response plans
- Leads level 1 & 2 incident recoveries
- Creating and performing review and validation of daily compliance reports to track business as usual and out of policy activities
- Working with the Security Operations Center (SOC) to identify content improvements
- Experience in software development and/or Secure SDLC
- Experience with information security and cloud deployment models (SaaS/PaaS/IaaS)
- Professional designation in CISSP, CISA, CRISC, CISM, CEH, GWAPT, GWEB, or CRCMP
- An advanced degree in MIS, Computer Engineering or Cyber Security
- Experience in architectural design and project led implementation of SIEM solutions
- Experience in setup of SOC processes and procedures