Information Security Specialist

92032
North York
Permanent/Direct Hire
15 hours ago

Job Title: Information Security Specialist

Location: Toronto, ON (Hybrid)

Estimated Duration: 9 – 12 Months

Information Security Specialist 
Our client
is a trusted healthcare safety advisor, committed to offering a full spectrum of insurance, risk and claims management products and support.

 
Our client knows healthcare as it’s the largest not-for-profit healthcare liability insurer in the country, with over 700+ healthcare organizations part of the Reciprocal. Combined with sage counsel and risk management solutions, our Client works with its partners to increase safety.
 
As a Reciprocal, our Client is governed by its Subscribers and remains an innovative, agile, and proactive partner. Since its inception in 1987, the not-for-profit has returned over $260 million to the healthcare system. Our client’s 35 years of data is combined with its extensive experience to advise and share learnings, all with the goal of scaling knowledge and increasing safety across Canada’s healthcare system.
 
One common thread running through our Client’s culture is the feeling of being part of something unique: partnering to create the safest healthcare system – our Client’s vision.
 
Each employee has the opportunity to find their calling and help build a stronger organization designed to meet the needs of its Subscribers. As a Top 100 GTA Employer ten years running, our Client’s employees are empowered to find solutions and create amazing experiences in service to its Subscribers.
 
Join us and be part of the team working to make a difference.
 
SUMMARY:
 
The Information Security Specialist will be a vital member of the Performance Excellence and Information Services and Privacy and Compliance Team. The role is primarily responsible for providing a robust, reliable and secure foundation of technologies and systems to enable the company’s business operations and support its strategy.  
 
KEY RESPONSIBILITIES: 

  • Work with the PEIS and Privacy and Compliance Team to assess, prioritize, remediate vulnerabilities that have been identified through scans or zero-day vulnerabilities.
  • Collaborate with PEIS team to remediate vulnerabilities across all operational aspects of server infrastructure, including physical servers, virtual servers, cloud servers and hyperconverged infrastructure.
  • Collaborate with PEIS team to ensure the optimal function of key security applications and systems by working with the Managed Security Service Provider (MSSP), including but not

limited to endpoint security agents, antivirus software, Security Incident and Event Management (SIEM), and Vulnerability Management. 

  • Respond to emergencies in line with business continuity plans to ensure prompt cybersecurity incident response and disaster recovery, including in simulated tests.
  • Collaborate with our cybersecurity MSSP to mitigate security risks by ensuring systems are patched in accordance with schedules and priorities.
  • Support in reviewing Security Assessment for new tools and technology implementation for the Client by completing Cloud Security Assessment and AI Assessment as needed. Potentially work with a third-party provider to undertake Threat & Risk Assessments (TRA).
  • Support collecting and submitting evidence for compliance and audit related activities.
  • Document security policies, procedures, and protocols, as required. 
  • Keep current with the industry and key trends in IT security products, services, technologies and standards in support of the company’s continued innovation.
  • Contribute to the company’s knowledge base to strengthen troubleshooting and maintenance activities.
  • Ensure established service level agreements are met or exceeded.
  • Other duties as assigned.

 
KNOWLEDGE, SKILLS & ABILITIES
 

  • In-depth understanding of IT infrastructure (servers, storage, routers, switches, firewalls, cloud and hyperconverged infrastructure)
  • Experience working with and improving policies and procedures.
  • Experience working with sensitive and protected data, including familiarity with data privacy and confidentiality standards.
  • Good understanding of NIST CSF, SOC 2, ISO frameworks.
  • Strong understanding and familiarity with networking concepts and technologies, including switches, ClearPass, firewalls and VPN tunnels.
  • Exceptional organization and time management skills.
  • Experience in implementing business continuity and disaster recovery methodologies.
  • Knowledge of and familiarity with the following technologies: Fortinet suit of products, Veeam, Active Directory, Microsoft End Point Manager (SCCM), VMware vSphere, Windows Server, Nutanix HCI, HP ClearPass, OKTA, Patch management, What’s up Gold.
  • Programming/scripting skills. E.g., PowerShell, would be an asset but are not required.

 
EDUCATION, TRAINING & EXPERIENCE:
 

  • To be successful in this role, you will possess a College or University degree in the field of Computer Science or a related field.
  • 8-10 years of technical combined work experience in managing IT infrastructure and cybersecurity.
  • Minimum 8 years of experience supporting Data Centre infrastructure; LANs, WANs and Wireless.
  • Minimum 8 years hands-on experience implementing, configuring, and troubleshooting complex networks.
  • Certifications of the following are an asset:

o CISSP
o ITIL
o VMWare Administration
o Nutanix Hyperconverged Administration
o ITIL 4 Foundation
o Cybersecurity Training
o HP ClearPass Administration
o Cloud Networking (Azure/AWS/Oracle)

  • Most importantly, you are an enthusiastic and creative thinker, who is constantly driving performance improvement and are passionate about creating the safest health care system possible for Canadians.