Information Security Compliance Officer
Waterloo, Ontario, Canada
Applications have closed
IMS
IMS is a vehicle and driving data business, delivering enterprise solutions to over 350 customers including insurers, mobility operators and governments.IMS (Insurance and Mobility Solutions) is a leader in connected car and telematics services. We provide services and analytics to insurers, governments, and enterprises. We are proud to be the developer of the industry-acclaimed; cloud-based “Drive-Sync” connected car platform. From insurers and governments to dealerships and everyday drivers, we’re proud to produce technology that makes driving – Safer. Smarter. Greener.
The position requires the Information Security Compliance Officer to maintain and enhance current security controls that protect the business computing infrastructure from all forms of information breaches. You will be responsible for identifying vulnerabilities and working with the business to resolve them, ensuring that our staff and systems operate within defined safe and secure practices.
The position requires analytical skills and good knowledge of best practices as described in ISO27001 Information Security Management System (ISMS) to prevent a wide range of security threats. Additionally, excellent communication is required both written and verbal.
This position is a vital component of the business, and is responsible for:
- Conducting audits throughout the business against agreed Information Security policies and standards
- Identifying remediation techniques and assisting the development with resolution activities as appropriate
- Undertaking audits of 3rd parties who have access to our network, our assets, or with whom we share data with
- Working with Security Consultants to ensure new 3rd parties are appropriately audited before service commencement
- Maintaining all awarded InfoSec framework certificates to a high standard
- Writing documentation to be presented to business owners
- Monitor computer networks for security issues.
- Investigate security breaches and other cyber security incidents.
- Install security processes and measures and operate software to protect systems and information infrastructure.
- Document security breaches and risks to assess the damage they cause.
- Fix detected vulnerabilities to maintain a high-security standard.
- Maintain the relevant InfoSec policies, processes, and other documentation required to deliver InfoSec as a service to the business
- Research security enhancements and make recommendations to management.
- Stay current on IT security trends, technology, standards, and business-related threat landscapes
- Perform other InfoSec duties as assigned
Requirements
We know you will have a wide skill set, but to thrive in this role we think you will need;
- 1-2 years of work experience in a related field, with a proven history in information security in a production IT environment
- Qualifications in ISO27001 ISMS lead auditor or lead implementor
- Strong ability to interact with others in a team environment
- Ability to deliver a high standard of work while meeting deadlines
- Excellent written and verbal communication skills with acute attention to detail
- Strong organization skills
Bonus Skills:
- Knowledge of other security frameworks such as NIST and SOC
- Knowledge of General Data Protection Regulation (GDPR)
- IT background
Benefits
- Flexible holiday scheme to really make the most of your time and wellbeing
- Private life and health/dental insurance.
- Christmas Savings Club and store discounts
- Hybrid working policies and a 'Work From Anywhere' policy for 30 days per year!
- Funded training opportunities and a dedicated online learning platform.
- Management coaching programmes
- Employee Assistance Programme and an enhanced maternity/paternity package.
- Kudos Hub - a peer-to-peer recognition system, where you can recognise others using points. These points can be collected and redeemed against a huge catalogue of rewards!
Even if you do not meet all of the above criteria, please consider applying! If you have any questions, do not hesitate to get in touch with our HR team.
Tags: Analytics Audits Cloud Compliance GDPR ISMS ISO 27001 NIST SOC Vulnerabilities
Perks/benefits: Career development Flex hours Health care Parental leave Salary bonus
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open DevSecOps-related jobs