Senior Information Security Advisor

You are as unique as your background, experience and point of view. Here, you’ll be encouraged, empowered and challenged to be your best self. You'll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day, you'll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do. Discover how you can make a difference in the lives of individuals, families and communities around the world.

Job Description:

This is a 13 month contract role for a Maternity leave coverage.

• This role requires Canadian Enhanced Reliability Security clearance [a minimum of 5 years of consecutive residency in Canada].

Role:

The successful candidate would meet with stakeholders for various initiatives, provided technical and architectural information, write professional opinions to support their case, collaborate with others to improve security controls.

What will you do?

• Performs information security risk assessments for projects and initiatives for assigned lines of business within the enterprise:
  • Provide support to Sun Life Business Group initiatives/projects through conducting information security risk assessments, reviewing contracts to ensure inclusion of appropriate security requirements, performing supplier/third-party risk assessments, managing security waivers, and advising on security best practices.
  • Identifies and documents any risks associated with initiatives involving Sun Life systems and external vendors in a risk report for distribution to management.
  • Provide management team with an in-depth analysis of information security trends, status of identified risks, penetration testing and vulnerability scan results, security incidents, current work activities, and work completed by the department. 
  • Assess various Sun Life Business Group initiatives/projects to ensure implementation controls aligns with Sun Life Information Security policies and directives.
• Manages the security risks identified from information security risk assessments and bring them to closure:
  • Escalate risks to VPs for acceptance or action plans.
  • Tracks information security related risks and corresponding action plans with dues dates to ensure that the issues are resolved. Works with the respective business and/or technology owner if dates are not met. Provides reports to the management team outlining the status of information security risks within Sun Life.
  • Meet with VPs quarterly to report on risks for supported lines of business.
  • Escalate deviations and significant risks to the CISO for review and approval.
• Provides security consulting services to the rest of the organization which includes Sun Life business groups, and peers within Enterprise Services:
  • Provides support to Sun Life business groups by suggesting ways to improve security by implementing controls to protect sensitive company information from disclosure, modification, and destruction. 
  • Consults broadly with business groups and Enterprise Services using technical expertise to guide and influence implementation of security in wide or high-impact technology decisions and initiatives.
  • Supports a balanced approach for security controls and support of governance practices and approaches. Continuously promotes and advocates that adequate levels of control mechanisms are in place to safeguard Sun Life.
  • Provide information security related input into technology vendor selection (RFP).
  • Provides support to the Sun Life Legal team regarding information security with respect to agreements and contracts.

What you need to succeed:

• Minimum 5 years in Information Security, preferably with experience in Information Security Risk Management.
• Sound knowledge of technologies related to Information Security: encryption, firewalls, intrusion detection/prevention, anti-virus, DDoS, behavioural analysis/advanced malware detection.
• Post-secondary education.
• Professional designation relating to Information Security (e.g. CISSP, CISM, CISA) preferred.

Preferred skills:

• Strong verbal communication - able to interface and negotiate with senior employees at an executive level.
• Advanced writing skills with emphasis on report writing.
• Strong understanding of existing and emerging Information Security technologies.
• Familiarity with contract wording and interpretation of security clauses.
• Strong consulting skills and ability to influence a win - win outcome.
• Self-starter, strategic thinker, negotiator, and consensus builder.
• Ability to understand Sun Life's diverse business units and ability to work with diverse groups.
• Must be able to work with the business and interpret technical context into common business language.

Unique Requirements

• This role requires Canadian Enhanced Reliability Security clearance [a minimum of 5 years of consecutive residency in Canada].

What’s in it for you:

• Great Place to Work® Certified in Canada and the US - 2022
• Great Place to Work® award for Best Workplaces for #HybridWork
• 2022 Named “Best Places to Work” by Glassdoor
• Canada Award for Excellence for Mental Health at Work 
• Flexible hybrid work model including in-country work-from-home if you prefer.
• Pension, stock and savings programs to help build and enhance your future financial security

#LI-Hybrid #LI-remote

The Base Pay range is for the primary location for which the job is posted.  It may vary depending on the work location of the successful candidate or other factors.  In addition to Base Pay, eligible Sun Life employees participate in various incentive plans, payment under which is discretionary and subject to individual and company performance.  Certain sales focused roles have sales incentive plans based on individual or group sales results. 

Diversity and inclusion have always been at the core of our values at Sun Life. A diverse workforce with wide perspectives and creative ideas benefits our clients, the communities where we operate and all of us as colleagues. We welcome applications from qualified individuals from all backgrounds.

Persons with disabilities who need accommodation in the application process or those needing job postings in an alternative format may e-mail a request to thebrightside@sunlife.com.

At Sun Life we strive to create a flexible work environment where our employees are empowered to do their best work. Several flexible work options are available and can be discussed throughout the selection process depending on the role requirements and individual needs.

We thank all applicants for showing an interest in this position. Only those selected for an interview will be contacted.

Salary Range:

82,000/82 000 - 135,000/135 000

Job Category:

IT - Technology Services

Posting End Date:

28/04/2024