1.844.822.0541

info@nexusgroup.ca

Nexus Systems Group

by

Typical Day in Role:
In this role, you will be expected to work closely with the application development groups from every line of business in the client to integrate application and network security processes and procedures into the software development lifecycle. You will work closely with vendors and the client’s internal penetration testing team to ensure regulatory driven penetration testing programs are executed.
• Collaborate with IT management teams, security advisory and IT Risk teams, on a Global Scale to ensure effective execution of mandated assessments.
• Develop/enhance and/or execute effective communication models to assist with the management of reported vulnerabilities and their remediation with the development and infrastructure in support of risk management practices.
• Develop/enhance and/or execute strategies and processes to track, manage and communicate reported results of testing.
• Be responsible for adherence to established process flows that ensure development teams, infrastructure teams and business owners implement control measure that effectively mitigate or eliminate risk.
• Be responsible for timely and accurate reporting of all findings to the appropriate teams, different levels of management and business risk owners.
• Be responsible for scheduling, oversight of execution, and forwarding deliverables to stakeholders and other Security teams within IS&C.

Candidate Requirements/Must Have Skills:
• You have 5-7 years as a Project Manager or Technical Coordinator or security related experience.
• 3+ years of hands-on experience managing financial budgets, financial reporting, reviewing invoicing and statements of work.
• Strong working experience independently making decisions guided by process and procedures (with limited guidance).

Nice-To-Have Skills:
• You have a dynamic personality, able to work with a wide scope of work that is ever changing.
• Spanish is a considered an asset.

Education:
• Nice to have an industry certification like Security+, Google cyber security certificate, A+, Network+