Consultant, Information Security

CIBC•Toronto, ON

2d•Hybrid

About The Position

As an Information Security Consultant, you’ll assess projects for security risks and present recommendations that allow the business to make informed conclusions. You’ll provide insight and support to assemble policies and procedures that safeguard our clients, enhance risk management, and enable our success. The role is responsible for delivering technical expertise in the development and support of activities, processes, procedures and tools for protecting technology based information. The role works on complex issues involving one or more technical areas, mentoring employees and performing tasks of advanced technical depth and breadth. The role troubleshoots complex issues for all levels while reviewing, developing, testing and implementing security plans and control techniques. The role exercises independent judgement and decision making within ownership of projects, defining and supporting the implementation of the minimum security configuration for all IT hardware and software and ensuring that industry best practices are maintained. Using strong analytic and inductive thinking, the role assesses projects for security risks, identifying the potential exposures, and presenting recommendations that are practical and achievable, enabling the business to make informed risk decisions. At CIBC we enable the work environment most optimal for you to thrive in your role. You’ll have the flexibility to manage your work activities within a hybrid work arrangement where you’ll spend 1-3 days per week on-site, while other days will be remote.

Requirements

Experience as a Privileged Access Management (PAM) professional with advanced experience as an Idira Engineer (formerly CyberArk) in a self-hosted environment.
Developer or application support background.
Deep expertise in building and troubleshooting CyberArk components such as Vault, PVWA, PSM, CPM, CCP, and SCIM.
Conducting root cause analysis, documenting findings and resolutions, and engaging with stakeholders.
Experience in Service Continuity Management (SCM), CyberArk upgrades, clean-up, and server decommissioning.
Familiarity with enterprise change management processes.
Familiarity with cloud computing technologies.
Familiarity with Agile development methodologies.
Familiarity with code promotion processes.
Intermediate documentation skills in SharePoint and Jira/Confluence.
Awareness of cybersecurity trends and risks impacting IAM and PAM.
Deep knowledge of Idira/CyberArk, IAM, and PAM.
Proficiency in supporting and integrating technologies across Windows, Unix, Linux, Mainframe, Active Directory, and Azure Active Directory environments.
Solid engineering or development background.
Demonstrated experience in REST API utilization, technology integration, and workflow automation.
Strong knowledge of a broad set of technology solutions with focus on CyberArk, Identity and Access Management (IAM), Privileged Access Management (PAM), Windows, Unix, Linux, Mainframe, Active Directory, Azure Active Directory, Databases.
Background in application support.
Experience in various coding languages such as Python and Powershell.
Ability to work with REST API, understanding how to integrate technologies leveraging REST API and automating manual workflows.
Analytical Thinking
Decision Making
Information Security
IT Governance
Mentorship
Risk Assessments
Security Technologies
Security Testing
System Security
Troubleshooting

Nice To Haves

Pcloud migration experience is a valuable asset.
CISSP certification are considered assets.
Engineering or developer background will be beneficial to the role.
Expertise in Python and PowerShell is a great asset.

Responsibilities

Design and execute PAM processes and strategies to securely manage privileged identities throughout their lifecycle, including the discovery and assessment of privileged accounts to help CIBC reach its zero standing privilege objective.
Implement, configure, and support PAM solutions, address end-user issues, document recurring patterns, conduct root cause analysis, and facilitate technical discussions.
Act as a PAM subject matter expert for project teams, mentor colleagues, and serve as the technical escalation resource for PAM-related challenges.
Contribute to the organization’s cloud initiatives by providing technical expertise in cloud technologies, and participate in a rotating on-call coverage with your team.
Apply your Information Security Management expertise to implement security patches for both planned and emergent needs, ensuring risks are clearly identified and addressed.
Use your familiarity with processes, tools, techniques, and practices to consistently uphold standards for accessing, altering, and protecting the organization’s data.
Collaborate with project teams and technology or business partners to design and implement privileged access management for both new and existing infrastructure.
Ensure alignment with Identity & Access Management (IAM) initiatives, policies, standards, and procedures to strengthen CIBC’s information security posture.
Support other teams in investigating potential security incidents and provide actionable recommendations for remediation.
Examine and interpret requirement documents and architecture diagrams.
Collaborate with senior leaders and make informed, risk-based recommendations to enhance information system security.
Weigh business needs against security concerns to help guide the business to make practical and informed risk choices.
Recommend solutions to streamline workflows, minimize risks, and boost service quality for partners.
Employ analytical tools to diagnose issues, conduct root cause analysis, and pinpoint process bottlenecks and vulnerabilities related to identity and access management.
Carry out gap analyses, develop and maintain clear training and procedural documentation, review and refresh controls and supporting materials, and oversee the continued accuracy of Privileged Access Management lifecycle knowledge.