Join our Talent Network

Specialist, Cybersecurity – Assurance - 29567

Location: DORVAL, QC, Canada
Posting Start Date: May 18, 2022
Posting End Date: Ongoing

Share:

Job Description

Description

Being part of Air Canada is to become part of an iconic Canadian symbol, recently ranked the best Airline in North America. Let your career take flight by joining our diverse and vibrant team at the leading edge of passenger aviation.
 
The Specialist, Cybersecurity will be working in a fast paced and innovative environment supporting the overall security posture of Air Canada’s technology environment. Air Canada’s cyber security systems are foundational to protecting the data and systems that allow its customers to fly safely.
 
This position can be based in Toronto or Montreal. 

The Specialist, Cybersecurity acts as a cyber security subject matter expert and provides guidance concerning the cyber security assurance program, cyber risks and compliance for Air Canada and its affiliates. He/she will evaluate Air Canada’s existing security systems to determine potential cybersecurity risks, provide inputs on security requirements for personal, commercial and financial data as well as the operation of Air Canada IT networks and infrastructure. Cyber security threats continue to evolve, and the Cyber Security team will evolve with it.

This position will be reporting to the Manager, Cybersecurity, Assurance
 
Functional Accountabilities 
  • Leads the execution of assurance activities (ex. penetration tests, application security testing etc.).
  • Review, interpret and recommend remediations based on security scanning reports (SAST, DAST and pen-test).
  • Validates the results of the assurance tests with the internal and external stakeholders. 
  • Manage cybersecurity defects/vulnerabilities from identification to remediation.
  • Performs risk assessments, documents them and support the implementation of mitigating controls consistent with company strategy.
  • Collaborates with different stakeholders (i.e. Advisory, Architecture, Project team) to ensure that business and technical requirements are properly identified.
  • Collaborates with Strategic Procurement for the sourcing exercise and on-boarding of the third-parties for the execution of assurance activities.
  • Generate security reports for IT administrators and business managers to evaluate the efficacy of security systems and policies.
  • Identify Cyber risks, communicate and develop “best practice” solutions, and implement mitigating controls consistent with company strategy.
  • Introduce new processes and ensure that gaps in the aforementioned items are identified and addressed ahead of time.
  • Represent the organization and take an active participation on different IT business or security airline specific forums.
  • Supporting the leadership team on strategic initiatives specific to the respective portfolio.

Qualifications

  • A relevant University degree/technical certification, and/or relevant experience commensurate to the role
  • 6-8 years of IT technology, operations, and people leadership experience in a large company, with a minimum of 4 years of experience in a cyber security and/or risk & compliance role.
  • Extensive application security, SDLC and integration understanding.
  • Current information security certification (CISSP, CISM or equivalent) is an asset.
  • Strong knowledge and understanding of cyber security concepts, protocols, industry best practices, strategies, frameworks and regulations such as SOX, PCI DSS, ISO, CoBIT, NIST, PIPEDA, GDPR.
  • Exceptional analytical, organizational and communication skills.
  • Self-motivated and independent worker.
  • Possess investigative nature and be self-motivated.
  • Results oriented with proactive and methodical approach to problem solving.
  • Able to multi-task and work under pressure against tight deadlines and changing priorities.
  • Must be a team player with ability to work closely with diverse groups and working styles.
  • Ability to establish and maintain effective business relationships.
  • Flexibility and willingness to work extended hours, when required.
Conditions of Employment:
  • Candidates must be eligible to work in the country of interest, at the time any offer of employment is made and seeking any required work permits/visas or other authorizations which may be required is the sole responsibility of the candidates applying for this position.
  • Mandatory Covid-19 Vaccination Required
Linguistic Requirements

Based on equal qualifications, preference will be given to bilingual candidates. 

Diversity and Inclusion
 
Air Canada is strongly committed to Diversity and Inclusion and aims to create a healthy, accessible and rewarding work environment which highlights employees’ unique contributions to our company’s success.
 
As an equal opportunity employer, we welcome applications from all to help us build a diverse workforce which reflects the diversity of our customers, and communities, in which we live and serve.

Air Canada thanks all candidates for their interest; however only those selected to continue in the process will be contacted
Share: