ProViso Consulting
Story Behind the Need:
• Business group: Threat Monitoring & Response (TMR) team is responsible for detecting, monitoring, and investigating threats; responsible for the coordination of key programs that impact all divisions within the Cybersecurity Operations (CSOps) organization and all of Information Security & Controls
• Project: 3rd party cyber security incidents – These roles are responsible for managing critical 3rd party risk events – The Global Threat Responder is responsible for managing the Bank’s response to cybersecurity & data threats and the mitigation of associated risks. The Global Threat Responder work with various business and corporate functions on understanding and coordinating risk reduction.
Candidate Value Proposition:
• The successful candidate will have the opportunity to work within one of the Top 5 Banking Institutions in Canada. We are technology partners who help the business transform how our employees around the world work.
• You’ll get to work with and learn from diverse industry leaders, who have hailed from top technology and financial institutions across the globe. As a leading global financial institution, this role gives exposure to various national policies and regulations for cybersecurity incident management.
Typical Day in Role:
• Run 3rd party incident handling, refine and improve response playbooks.
• Reporting to Senior Manager, Global Threat Response
• Monitoring 3rd party events – coordinate general cyber security response to news, intelligence notifications
• Working with stakeholders around the globe
• Bridging communication between technical operations teams and globally based business leadership, and demonstrating an understanding of the business risk in doing so
• Compiling and contextualizing investigating data for business consumption
• Guiding team to best practice for incident response
• Solutioning for multiple security domains (Security Management, Security Engineering, Identity and Access Management, etc.).
• Leading complex projects providing security advice to ensure information security risk are mitigated.
Candidate Requirements/Must Have Skills:
• 10+ years of working experience in IT
• 3+ years of prior experience in Cybersecurity – hands-on working experience in management of threats and industry
• 3+ year of incident management experience
• 3+ years’ experience using productivity tools (PowerBI) to produce quantitative/qualitative reports, data flow diagrams & visual presentations.
Nice-To-Have Skills:
• Bilingual in Spanish is a strong nice to have, candidates with the requirements who speak Spanish will be prioritized
• Built and run a TTP framework methodology for pattern and behaviour-based content development
• Built custom reporting of mitigation status against threats
• Experience involving red team (Vulnerability Assessments, Web app assessments), consulting (Compliance, policy creation), SOC and Device Management
• Built a security program to defend against APT
• 6 Experience having sized, deployed, maintained, and hardened SIEM and NGFW solutions
• CISSP and/or CISM certification
Soft Skills Required:
• Excellent written, presentation, and verbal communication skills
• Proven ability to quickly learn and understand complex topics and new technologies
• Superior problem solving & decision-making skills to resolve complex work issues
• Ability to work under pressure in a dynamic environment
• Efficient and thorough note taking skills
• Well established organization skills in terms of meeting deadlines and coordinating different work streams of activities
Education:
• Bachelor’s degree in a technical field such as computer science, engineering, business, or equivalent work experience
• Certifications (CISSP, CISM, CCSP, CRISC) are an asset
Best VS. Average Candidate:
• Ideal candidate has strong incident response experience, is fully bilingual in Spanish, can understand supplier relationships; has ability to organize and guide and interpret for purpose of managing and response, when receiving disparately organized information
Candidate Review & Selection:
• 2 rounds – MS Teams Video Interviews:
o 1st round interview – Panel (senior managers) with HM (30 mins)
o 2nd round interview – with HM, Director (30 mins)
Additional Note:
• Program is moving into LatAm hence Spanish is a strongly desired skill here (candidates need to be fully bilingual English-Spanish along with the core must have requirements)