Information Security Compliance Officer

Waterloo, Ontario, Canada

Applications have closed

IMS

IMS is a vehicle and driving data business, delivering enterprise solutions to over 350 customers including insurers, mobility operators and governments.

View company page

IMS (Insurance and Mobility Solutions) is a leader in connected car and telematics services. We provide services and analytics to insurers, governments, and enterprises. We are proud to be the developer of the industry-acclaimed; cloud-based “Drive-Sync” connected car platform. From insurers and governments to dealerships and everyday drivers, we’re proud to produce technology that makes driving – Safer. Smarter. Greener.

The position requires the Information Security Compliance Officer to maintain and enhance current security controls that protect the business computing infrastructure from all forms of information breaches. You will be responsible for identifying vulnerabilities and working with the business to resolve them, ensuring that our staff and systems operate within defined safe and secure practices.

The position requires analytical skills and good knowledge of best practices as described in ISO27001 Information Security Management System (ISMS) to prevent a wide range of security threats. Additionally, excellent communication is required both written and verbal.

This position is a vital component of the business, and is responsible for:

  • Conducting audits throughout the business against agreed Information Security policies and standards
  • Identifying remediation techniques and assisting the development with resolution activities as appropriate
  • Undertaking audits of 3rd parties who have access to our network, our assets, or with whom we share data with
  • Working with Security Consultants to ensure new 3rd parties are appropriately audited before service commencement
  • Maintaining all awarded InfoSec framework certificates to a high standard
  • Writing documentation to be presented to business owners
  • Monitor computer networks for security issues.
  • Investigate security breaches and other cyber security incidents.
  • Install security processes and measures and operate software to protect systems and information infrastructure.
  • Document security breaches and risks to assess the damage they cause.
  • Fix detected vulnerabilities to maintain a high-security standard.
  • Maintain the relevant InfoSec policies, processes, and other documentation required to deliver InfoSec as a service to the business
  • Research security enhancements and make recommendations to management.
  • Stay current on IT security trends, technology, standards, and business-related threat landscapes
  • Perform other InfoSec duties as assigned

Requirements

We know you will have a wide skill set, but to thrive in this role we think you will need;

  • 1-2 years of work experience in a related field, with a proven history in information security in a production IT environment
  • Qualifications in ISO27001 ISMS lead auditor or lead implementor
  • Strong ability to interact with others in a team environment
  • Ability to deliver a high standard of work while meeting deadlines
  • Excellent written and verbal communication skills with acute attention to detail
  • Strong organization skills

Bonus Skills:

  • Knowledge of other security frameworks such as NIST and SOC
  • Knowledge of General Data Protection Regulation (GDPR)
  • IT background

Benefits

  • Flexible holiday scheme to really make the most of your time and wellbeing
  • Private life and health/dental insurance.
  • Christmas Savings Club and store discounts
  • Hybrid working policies and a 'Work From Anywhere' policy for 30 days per year!
  • Funded training opportunities and a dedicated online learning platform.
  • Management coaching programmes
  • Employee Assistance Programme and an enhanced maternity/paternity package.
  • Kudos Hub - a peer-to-peer recognition system, where you can recognise others using points. These points can be collected and redeemed against a huge catalogue of rewards!

Even if you do not meet all of the above criteria, please consider applying! If you have any questions, do not hesitate to get in touch with our HR team.

Tags: Analytics Audits Cloud Compliance GDPR ISMS ISO 27001 NIST SOC Vulnerabilities

Perks/benefits: Career development Flex hours Health care Parental leave Salary bonus

Region: North America
Country: Canada
Job stats:  17  2  0
Category: Compliance Jobs

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.