---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Security System Administrator
Location: Toronto, Ontario, Canada
Type: Permanent P/T
Closing Date: 2006-09-15
Business Unit Description
Technology Infrastructure is responsible for CIBC-wide technology architecture
and platforms, and managing CIBC’s core computing facilities,
telecommunications and networks in Canada and around the globe.
Enterprise Information Security develops and maintains bank-wide Information
Security strategies, programs, policies and standards.
This position is part of the Security Operations team of EIS (Enterprise
Information Security).
This role is part of the team that makes up Enterprise Security Operations. The
Enterprise Security Operations Centre (ESOC) provides a centralized management
facility for the reporting of information security events.
The ESOC is responsible for the management of the enterprise Internet SMTP
gateways, Anti-SPAM, Anti-Virus, intrusion detection, vulnerability assessment,
vulnerability scanning, key management and incident management.
Key Accountabilities
You will be responsible for supporting the staff that monitors security
consoles, responds to alerts, performs initial event analysis and escalates to
the appropriate groups within the bank infrastructure.
Activities:
• Provide enhanced knowledge of security products, procedures and
processes to team analysts
• Manage security incidents and provide mitigation actions
• Provide second level escalation support to ESOC analysts
• Work with management on new projects for the department
• Work with Senior EIS staff in lab environment to bring new security
systems to operational status
Responsibilities:
• Senior Analyst for ESOC
• Back up role for ESOC Manager
• Employee administration functions for ESOC team
• Accountability for operational efficiency with security products
• Ensure identified vulnerabilities are remediate within appropriate time
frames
• Escalate and document identified security incidents
• Procedure development and documentation for ESOC systems operation
• Maintain system health check on managed security devices and platforms
• Quality assurance of newly deployed security systems
• The Security Specialist will actively work with LOB TS and TI support
to determine upcoming tasks and manage Change Requests.
JOB REQUIREMENTS
---------------------------------------------------
Requirements:
Technical Skills
• College degree in Computer Information Systems, Computer Science or
equivalent experience required
• CISSP or other industry recognized security certifications would be an
asset.
• Experience with network troubleshooting tools
• Experience with vulnerability scanners and network mapping tools
• Familiar with methods and techniques used by ethical hackers including
for ethical security hacking/penetration testing.
• Familiarity with industry leading security applications (ISS,
NetForensics)
• Understanding of systems administration, intrusion detection and
vulnerability analysis
• Familiarity with industry security standards such as SOX
• Detailed understanding of TCP/IP
• Detailed Internet, networking, and computer knowledge (Software &
Hardware)
• Understanding of networking principles including TCP/IP, WANs, LANs,
and commonly used Internet protocols such as HTTP, FTP, POP, LDAP, etc.
• Enhanced knowledge of key TCP/IP services such as SMTP and DNS
• Knowledge of multiple operating systems and applicable system
administration skills (Windows, Solaris, Linux)
• Knowledge of client-server applications, multi-tier web applications,
relational databases, firewalls, VPNs, Exchange, Outlook, enterprise Anti-Virus
products.
• Ability to troubleshoot advanced network security problems.
• Former Operations experience is an asset.
• Supervisory skills and asset
• Knowledge of threat assessments and security testing methodologies
would be an asset.
Other Skills:
• Detail oriented with strong organizational and analytical skills.
• Excellent communication skills to be able to work with individuals at
all levels of the organization and with third party vendors.
• Good documentation skills
• Self-motivated
• Analytical and systematic thinking
• Results Oriented
• Service Orientated
Special Conditions:
Straight day position
On-call support may be required
We are looking to hire at a base pay of $60-70K CAD. There is an incentive on
top of the base, performance based.
CONTACT
---------------------------------------------------
This position is open only to those legally entitled to work in Canada
CIBC
Laurie Morris
Resourcing Consultant
laurie.morris@cibc.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
