Advisor, Information Security Architecture

About The Position

Requirements

• Bachelor's degree in information technology or administration (specializing in information systems or security), or a combination of training and experience deemed equivalent
• At least seven (7) years of relevant professional experience, including significant experience in information security, technological risk or security architecture
• In-depth knowledge and understanding of cybersecurity frameworks, standards and best practices (ISO 27001, NIST, Zero-Trust Architecture, CSA CCM, COBIT, etc.)
• Experience in major technological transformations and cloud migrations, as well as in securing analytical and AI environments, an asset
• In-depth knowledge and understanding of application security, cloud security, and systems security, as well as applicable security solutions
• Knowledge of SDLC processes and Agile/DevOps delivery methods
• Bilingualism in English and French
• Frequent interactions in English with PSP employees based in our Hong Kong, London and New York offices, and interactions in French with employees in our local Montreal and Ottawa offices

Nice To Haves

• Relevant Professional designation : CISSP, ISSAP, CSSP, CSSLP, CISM, CISA, CRISC or CGEIT, an asset
• Knowledge and experience with programming, scripting, and query languages, an asset

Responsibilities

• Contribute to the definition, evolution, and continuous improvement of the information security framework, and support its implementation in alignment with PSP’s vision and strategic plan
• Conduct third‑party security risk assessments and ensure required contractual and operational recommendations are implemented
• Guide the implementation of security controls for projects to ensure they meet PSP's security requirements
• Review technology solutions and application integrations to identify potential security risks and recommend action plans
• Serve as a point of contact for PSP's security capabilities and advise on security risks for technology and business projects
• Represent Information Security on working groups to ensure compliance with security requirements
• Stay abreast of information security trends and risks that are relevant to the industry

Benefits

• Investment in career development
• Comprehensive group insurance plans
• Competitive pension plans
• Unlimited access to virtual healthcare services and wellness programs
• Gender-inclusive paid family leave policy: up to 26 weeks for primary caregivers, 5 weeks for secondary caregivers
• A personalized family-building support, from pre-pregnancy to menopause, with available financial assistance
• Vacation days available on day one with additional days on milestone service anniversaries, and summer Friday afternoons off
• A hybrid work model with a mix of in-office and remote days