CYBER SECURITY BUSINESS ANALYST

Aversan Inc. (www.aversan.com) is a reputable Engineering Company that provides expertise in Systems Integration, Product Design/Development and Software/Product Testing for highly regulated industries including Digital Health, Medical Devices, IT and Aerospace.  We are currently seeking a qualified Cyber Security Business Analyst to work on leading edge technology products. The successful candidate for this position will be a part of highly motivated and highly technical work environment that feeds off the collective energy of a team-oriented workplace.

Location: St. Laurent, QC (Hybrid)

RESPONSIBILITIES

• Maintain an understanding of region/business unit processes, systems, technologies, data, customers, consumers and partners.
• Contribute to IT security projects under his responsibility, ensuring that the company assets are protected either on-premise or in the cloud.
• Define security requirements for IT projects and collect business needs.
• Gather and document business needs and requirement and provide project estimate and high-level solution before hand over to Architect.
• Meet & engage with Vendor to find the best solution to meet security requirement.
• Communicate the Information Security Policies and Standards across the assigned region / business unit.
• Support BISO in the KPI definition and gathering for upper management.
• Act as a local security contact / adviser for the IT leadership and the IT Business
• Partners, IT Infrastructure, IT Architecture, HR, Finance, Legal, Enterprise risk management and other local or regional personnel.

BASIC QUALIFICATIONS

• Possess a degree in information technology or any other relevant programs or equivalent experience.
• Three years’ experience in IT security.
• Good knowledge and experience in IT Security, infrastructure and Telecommunications.
• Knowledge of security architecture and methodology (TOGAF, SABSA, etc.).
• Good knowledge of Cloud security.
• Good knowledge of risk analysis methods (e.g., ISO).
• Good understanding of major compliance requirements: GDPR, Exostar, export control, Sarbanes‑Oxley.
• Knowledge of IT control frameworks (NIST, CIS, ISO, etc.) and a good understanding of IT General Controls.
• Bilingualism (French and English) is required.
• CISSP, CCSP or/and CISA Certifications are an important asset.
• Aerospace industry knowledge would be considered an asset.