Information Security Officer – Maternity Leave Coverage
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Information Security Officer at Vecima Networks responsible for ISMS maintenance and ISO compliance. Supporting governance activities, supplier security, and incident response during maternity leave coverage.
Responsibilities:
- Maintain and improve Vecima’s Information Security Management System (ISMS)
- Support ISO/IEC 27001:2022 governance activities, including risk assessments, risk treatment tracking, control documentation, evidence collection, corrective actions, audit readiness, and follow-up on gaps
- Coordinate periodic management reviews, policy and standards reviews, control updates, and related governance activities to support continuous improvement of the information security program
- Maintain security metrics, dashboards, risk registers, and status reporting for leadership
- Support and coordinate supplier security reviews, including due diligence, security questionnaires, risk assessments, remediation follow-up, and ongoing monitoring of higher-risk suppliers
- Work with Supply Chain, Legal, internal business owners, and other stakeholders to ensure information security requirements are incorporated into supplier onboarding, contracting, monitoring, and offboarding processes
- Use GRC, ISMS, and TPRM tools, including Optro (formerly AuditBoard), to manage security documentation, assessments, workflows, and evidence as applicable
- Partner with internal stakeholders to define security requirements, assign action owners, track remediation, and escalate material security risks or unresolved issues as needed
- Communicate security obligations, risks, and progress clearly to technical and non-technical audiences
- Contribute to the development, implementation, and continuous improvement of the organization’s information security strategy aligned with business objectives
- Stay current with emerging threats, security trends, and relevant technologies to help maintain an effective and practical security posture
- Promote a strong culture of security awareness across the organization and support the delivery of effective security education and awareness activities
- Support maintenance of the incident response plan and coordinate investigations, documentation, corrective actions, and follow-up activities related to security incidents
Requirements:
- Post-secondary education in Information Technology, Cybersecurity, Computer Science, or a related discipline, or an equivalent combination of education and experience
- 5+ years of relevant experience in information security, IT risk, compliance, audit, governance, or a related field
- Strong practical experience with ISO/IEC 27001:2022 and with operating and maintaining an ISMS
- Experience developing, maintaining, and improving information security policies, standards, procedures, and governance documentation
- Experience performing or coordinating security risk assessments, audit support, remediation tracking, and evidence collection
- Knowledge of cloud and SaaS environments and common security controls
- Strong written and verbal communication skills, with the ability to work effectively with technical and non-technical stakeholders
Benefits:
- Competitive compensation and benefits package
- Challenging work environment
- Skill development support
- Career growth opportunities
Similar Jobs
Senior Pre-Sales Security Architect
Senior Pre-Sales Security Architect serving as strategic advisor in cybersecurity for enterprise clients. Bridging cybersecurity strategy, solution architecture, and commercial execution across a broad partner ecosystem.
Email Security Architecture Manager
Manage Email Security Architects at Doppel, providing social engineering defense for clients. Establish operational excellence and guide customers in their security deployments.
Senior Cybersecurity Analyst – Blue Team, Vulnerability Management
Senior Cybersecurity Analyst at Dfense Security integrating into a client’s Blue Team. Responsible for vulnerability management and risk analysis in a dynamic environment.
Cybersecurity Professional
Cybersecurity Professional defining the standard for risk management at Humana. Involving assessments, initiatives, and decisions to enhance technology-related cybersecurity posture.
IS Technical Specialist – RACF Security Engineer
RACF Infrastructure Engineer handling identity & access management services for a major financial institution. Collaborating with teams to ensure compliance with security and privacy standards.
Senior Cloud Cybersecurity Specialist – AWS/FedRAMP
Senior Cloud Cybersecurity Specialist focusing on cloud security for federal clients. Leading cybersecurity operations and compliance efforts for AWS and Databricks environments.
Cybersecurity Engineer
Cybersecurity Engineer responsible for managing security projects in a top 20 CPA and advisory firm. Collaborating across teams to implement security controls and ensure operational integrity.
Information Security Officer 3 – Security Architect, Application and Product Security
Information Security Officer specializing in application and product security for the Government of Alberta. Safeguarding digital services through collaboration and compliance with cybersecurity policies.
Industrial OT Security Specialist – Operational Technology
Especialista em Segurança Industrial OT focado em Cyber Security para apoiar operações do Grupo Cosan. Lidera iniciativas de monitoramento de segurança e desenvolve casos de uso de detecção.
Staff Security Engineer – Proactive Security
Staff Security Engineer at DoorDash leading threat modeling and security operations for product and cloud domains. Collaborating with teams to ensure secure infrastructure and services.
Enterprise Security Engineer
Enterprise Security Engineer at DoorDash protecting workforce through security controls and automation. Collaborating across DoorDash, Wolt, and Deliveroo to enhance security systems.
Senior AI Security Engineer
Senior AI Security Engineer designing safeguards for internal AI usage at Backblaze. Focused on agentic systems, developer protection, and runtime security.
Senior Account Manager – BMS/Fire/Security/SaaS
Senior Account Manager responsible for managing key customer accounts and driving sales growth at Honeywell. Foster client relationships to deliver tailored solutions while collaborating with internal teams.
Senior Manager, Workday Security
Workday Security Senior Manager overseeing Workday security architecture and compliance for Fortrea. Collaborating with HR, Finance, IT, and Compliance teams to safeguard sensitive data access.
Senior Splunk Technical Account Manager – Cybersecurity
Senior Splunk Technical Account Manager driving security objectives through Splunk platform optimization. Cultivating partnerships and enhancing customer satisfaction.
Security Consultant – Detection Engineer
Detection Engineer supporting enterprise security monitoring and threat detection initiatives. Responsible for developing and maintaining security detections in a large-scale environment.
Cybersecurity Tech Writer – Part Time
GovCon Cybersecurity Proposal Tech Writer producing technical and proposal content remotely for federal contracting. Coordinates with clients and proposal manager on projects.
Google Workspace Security Architect
Google Workspace Security Architect specializing in security enhancements and identity governance for global technology services. Collaborates with stakeholders to improve security protocols and documentation standards.
Software Developer – NATO, Security Clearance
NIRIS Software Developer for NATO developing software for Networked Interoperable Real-Time Information Services. Collaborating with teams to enhance interoperability capabilities and maintain software quality.
Software Engineer – Security Clearance
Software Engineer developing and maintaining JChat applications for NATO's Communication and Information Agency. Collaborating in a Scrum team to enhance software and ensure quality.