Contract

IT Security TRA and C&A Analyst 3

Posted on 24 December 24 by Brianna Babineau

  • Ottawa, ON
  • $ - $
Logo

Powered by Tracker

Job Description

We are working with a Federal Government client seeking an IT Security TRA and C&A Analyst for an upcoming 1-year contract!

Roles and Responsibilities

  • Review, analyze, and/or apply IT Security policies, System IT Security Certification & Accreditation processes, IT Security products, safeguards and best practices, and IT Security risk mitigation strategies.
  • Identify threats to, and vulnerabilities of proposed network and security architecture which includes both wired and wireless architecture.
  • Identify personnel, technical, physical, and procedural threats to and vulnerabilities of IM/IT applications and systems.
  • Develop reports such as: Data security analysis, Concepts of Security, Statements of Sensitivity (SoS), Threat assessments, Privacy Impact Assessments (PIAs), Non-technical Vulnerability Assessments, Risk assessments, IT Security threat, vulnerability and/or risk briefings.
  • Conduct Accreditation activities such as: review of certification results in the design review documentation to ensure that the system will operate with an acceptable level of risk and that it will comply with security policies and standards.
Qualifications and Skills
  • Secret Security Clearance.
  • A minimum of ten years’ experience, within the last fifteen years, developing at least two of the following reports:
    1. Data security analysis, Concepts of operation;
    2. Statements of Sensitivity (SoSs);
    3. Threat assessments;
    4. Privacy Impact Assessments (PIAs);
    5. Non-technical Vulnerability Assessments;
    6. Risk assessments;
    7. IT Security threat;
    8. Vulnerability and/or risk briefings.
  • A minimum of ten years’ experience, within the last fifteen years, reviewing, analyzing, and/or applying IT Security policies, System IT Security Certification & Accreditation processes, IT Security products, safeguards and best practices, and the IT Security risk mitigation strategies.
  • Experience within the last ten years, identifying personnel, technical, physical, and procedural threats to and vulnerabilities

Education

  • A Degree or Diploma in the sciences, engineering or information management.
  • One of the following certifications:
    • Certified Information Systems Security Professional (CISSP)
    • Certified Information Systems Auditor (CISA)
    • Certified Information Security Manager (CISM)
    • ISACA Certification and Risk and Information Systems Control; and
    • ISO 27001 Lead Auditor Certification.

 

Job Information

Rate / Salary

$ - $

Sector

Federal Government

Category

Not Specified

Skills / Experience

Not Specified

Benefits

Not Specified

Our Reference

JOB-19698

Job Location