Bilingual Security Architect SME

  • Location

    Montreal, Canada

  • Sector:


  • Job type:


  • Contact:

    Lorena Perry

  • Job ref:


  • Published:

    3 months ago

  • Duration:


  • Expiry date:


  • Startdate:


Job Title: Bilingual Security Architect - Merger and Acquisition (SME)

Type: Contract - 6 month

Location: Montreal Quebec

Starts: January 2nd, 2020

Ends: June 1st, 2020 (6 months)


Our client is looking for two (2) Bilingual Experts in Security Architecture to support implementation of security requirements in IT segregation/divestiture projects for 6 months in Montreal, QC


  • Security project strategy and planning, including cyber security activities and deliverables;
  • Cyber risk gap and maturity assessment, leveraging industry recognized frameworks such as NIST CSF and ISO 27001;
  • Gathering of functional and business requirements to help clients select cyber security technologies;
  • Implementation of cyber security controls, requirements and solutions;
  • Conduct information technology and security due diligence;
  • Maintain, support, and operate the company Information Security GRC framework, including all related processes and procedures as well as their dissemination, and constant evolution to adapt to the business realities;
  • Communicate and support security recommendations to meet business objectives in a proactive and pragmatic manner, ensuring an appropriate level of engagement with stakeholders and contributors to ensure success;
  • Provides support and recommendations over activities and ensures adherence to regulatory and
  • Information Security requirements;
  • Create and support documentation over security controls, security exceptions and others;
  • Work closely with the Compliance team to ensure proper integration of controls and compliance metrics;
  • Work closely with the Governance & Risk Management team to ensure that controls meet Information Security standards;
  • Assess and challenge the operational effectiveness of security controls;
  • Assist on establishing information security risk and compliance reporting;
  • Participate in the security assessments and reviews of risk analysis;
  • Interact with various Information Security entities as necessary to understand, support and document security requirements as needed.

Required Experience:

  • Knowledge of Information Security risk practices, frameworks and how to report on them;
  • Knowledge of Information Security Governance and Compliance frameworks;
  • Knowledge of various industry standards and frameworks including ISO/IEC 27000 series, ISF, NIST, Special Publications, Risk Management methodologies, and security evaluations methodologies;
  • Knowledge of security laws and regulations;
  • Bachelor’s degree in IT or a related field -or- equivalent work experience;
  • 10+ years of experience in an information security / cybersecurity / risk management;
  • Previous experience in risk reporting, working with metrics;
  • Professional designation in information security, control and governance, and risk management (CISSP,
  • CISA, CISM, CRISC Certifications);


Soft skills:

  • Ability to work under pressure, when is required
  • Leadership
  • Teamwork and collaboration
  • Great communication skills (French & English) ability to interact, and report to senior leadership
  • Autonomy, works independently Dynamic, proactive
  • Self-motivated;
  • Solid project management and advisory skills;
  • Proven analytical and problem-solving skills;
  • Excellent written and oral communication skills including both technical and business writing, documentation and presentation skills;
  • Able to present and promote ideas and recommendations to technical and non-technical audiences.