Senior Security Consultant
Toronto, ON, Canada
Applications have closed
ADGA Group Consultants Inc
Brilliant Minds. Critical Challenges. Proven Solutions. Solving complex problems for our clients across the Canadian defence, public, and commercial sectors.Company Description
Description de l'entreprise
ADGA fournit une vision stratégique, une technologie de classe mondiale et un service d'excellence dans le domaine de la défense, de la sécurité et de l'informatique d'entreprise à des clients du gouvernement fédéral, d'autres niveaux de gouvernement et du secteur privé. Dans un monde dominé par la convergence, ADGA fournit l'expertise et l'innovation dont les organisations ont besoin pour rester sûres, efficaces et productives. Cela repose sur un bilan exceptionnel construit depuis 1967, en protégeant certains des actifs les plus critiques du Canada. Basée à Ottawa, avec des bureaux dans tout le Canada, ADGA est une société privée canadienne qui emploie plus de 800 employés, consultants techniques et experts en la matière.
ADGA provides strategic vision, world-class technology and service excellence in the areas of defence, security and enterprise computing to clients in the federal government, other levels of government and the private sector. In a world dominated by convergence, ADGA provides the expertise and innovation that organizations need to stay safe, efficient and productive. This is based on an exceptional balance sheet built since 1967, protecting some of Canada's most critical assets. Headquartered in Ottawa, with offices across Canada, ADGA is a privately owned Canadian company employing more than 800 employees, technical consultants and subject matter experts.
Job Description
ADGA is hiring a Senior Security Consultant to conduct a threat and risk assessment (TRA) of the conceptual placement and design identified as the future Secured Work Location (SWL). It is envisioned that the SWL will host the Canadian Top Secret Network (CTSN) and provide the full suite of services such as computing, video conferencing, and classified VoIP telephony. The TRA shall consider the Asset Value to be at the highest security level.
This TRA is required to support the Certification and Authorization process by identifying risks and recommending mitigating measures and controls. The TRA must be completed following the Harmonized Threat and Risk Assessment (HTRA) methodology. Alternate methodologies or formats must be approved by senior management.
The Senior Security Consultant will be responsible for the following:
- Perform a full physical inspection and walkthrough of the required areas.
- Conduct a threat and risk assessment of the physical locations/concepts identified for the placement of the SWL. See Notes below.
- Provide recommendations for physical, procedural and technical safeguards to mitigate identified risks.
- Developing a Threat and Risk Assessment report following RCMP/CSE HTRA methodology for the conceptual SWL at the identified location. Report structure may not follow the HTRA strictly and may omit unnecessary tables and sections as deemed appropriate by the author, however, the overall methodology must be followed and the following analytical sections must be addressed at a minimum:
- Asset Identification and Valuation;
- Threat Assessment (must consider at a minimum threat of espionage as well as EMSEC threats and EMSEC zoning. Must also consider threats from outsiders as well as insiders who are not cleared/do not need to know)
- Vulnerability Assessment (must consider all location adjacencies, physical security controls, procedural controls, security screening controls, monitoring and response, security perimeter, wall and door construction, access control and intrusion detection)
- Risk Register and Calculation of Residual Risks (listed and ranked)
Qualifications
- 10 years of experience conducting tasks and activities related to Physical Security, including at least four out of six of the following tasks:
- Conducting threat and risk assessments;
- Providing recommendations related to physical security;
- Developing physical security risk management strategies;
- Conducting maturity analysis of physical security controls;
- Planning and Conducting administrative investigations into the suspected theft or loss of corporate assets; or
- Developing and/or updating Policy Instruments or other supporting documentation related to Physical Security.
- The Senior Security Consultant must have previous experience conducting TRAs for Sensitive Compartmented Information Facilities (SCIFs).
Additional Information
Work-Life Balance
We strongly support a healthy and productive work-life balance. This starts with a flexible approach to work, and policies designed to support employees through their day-to-day routines and major life events. For example, we offer a Maternity/Parental Top-Up (up to 52 weeks) and a Reservist Leave Top-Up (up to 180 days).
Belong@ADGA
ADGA continuously strives to integrate advanced Diversity, Equity & Inclusion (DEI) approaches and practices into our work culture. Our employee-based DEI Committee explores activities and invites discussions that foster an environment where all employees feel valued, respected, and heard.
Compensation
Above and beyond our commitment to offer a competitive base salary, ADGA has a company-wide profit-sharing plan for all full-time and part-time employees.
Comprehensive Benefits and Total Rewards
We offer a comprehensive benefit program, providing employees with the choice between base or enhanced plans. Depending on the plan, ADGA pays for Health & Dental, a Health Spending Account, Short-Term Disability, an Employee Assistance Program, and a Telemedicine service. Also offered: discounts on gym memberships, 5,000+ perks through Perkoplis, a Deferred Profit Sharing Plan, and access to a wide range of other employee-centric services and savings programs.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Intrusion detection Monitoring Risk assessment Risk Assessment Report Risk management Top Secret
Perks/benefits: Career development Competitive pay Equity Flexible spending account Health care Parental leave Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs