Cyber and Information Security Architect

TEAM LOCAL is hiring

Built on nearly 80 years of service in local communities, Prospera Credit Union is a community-based, purpose-driven organization that offers a full range of financial products and services. Prospera is one of the largest credit unions in British Columbia, with approximately $9.3 billion in assets and 120,000 members. Our advice centers span the across BC which include Lower Mainland, Fraser Valley and Okanagan regions, and we are proud to serve members across these areas. It's our vision to help build vibrant, healthy communities, thriving local enterprises and financially empowered people.

Working collaboratively with the Architecture Review Board (ARB)and other governance teams, such as Data Governance, the role will be essential in conveying the National Institute of Standards and Technology (NIST) Cyber Security Framework (CSF) and other NIST Standards into Prospera's Enterprise Architecture and Design Principles.

What you'll do:

• Develop and maintain Prospera's security architecture framework, ensuring it aligns with business objectives and industry standards.
• Lead the design and review of secure network architectures, systems, applications, and cloud-based environments.
• Collaborate with cross-functional teams to integrate security requirements into the software development lifecycle and infrastructure deployment processes.
• Ensure concepts such as Zero-Trust and Least Privilege and Data Protection standards are integrated into Prospera design standards.
• Ensure environments, such as Cloud and Mobile Devices, are planned and configured for optimal security controls for Confidentiality, Integrity, and Availability (CIA).
• Ensure the proper configuration, monitoring, and optimization of security tools and technologies.
• Conduct research and evaluate emerging security technologies, proposing innovative solutions to enhance the Prospera's security posture.
• Develop and maintain a comprehensive set of Policies, Standards and Procedures related to cyber and information security, such as Acceptable Use of Technology, Device and Environment Hardening, Information Security, etc.
• Work collaboratively with DevSecOps specialists as the compliance specialist.
• Conduct regular risk assessments, identifying vulnerabilities and recommending appropriate security controls.
• Ensure compliance with relevant regulations, standards, and frameworks, such as ISO 27001, NIST Cyber Security Framework, and privacy laws.
• Update the relevant Risk Register(s) as required.
• Participate with Internal Audit on annual audit planning and quarterly updating of registers and action plans.

What you bring:

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or relevant work experience.
• Minimum of 5 years of experience in information security roles or relevant work experience
• Familiarity with security frameworks and regulations (e.g., NIST, ISO27000, CIS Critical Security Controls, etc.).
• Proficiency in cybersecurity and operational risk assessments.
• Proficient experience with assessing and auditing network controls such as firewalls, IDS/IDP, DNS, VPN, 2-factor authentication, port/packet filtering, VLANs, physical and logical separation of network segments, security zoning, and traffic analysis.
• Advanced working knowledge and understanding of Azure and AWS cloud platforms.
• Member of ISSA, ISACA or part of the local information security or assurance community would be an asset.
• Proficiency with NIST, SABSA, TOGAF and other industry best practices an asset.
• Strong knowledge of security principles, technologies, and industry best practices.
• Proficiency in designing secure network architectures, systems, and cloud environments.

• Designation/License/Certification considered a Requirement:

  • Security+ certification
• Designation/License/Certification considered an Asset:
• • CISSP
  • CISM, SANS and GIAC certifications
  • OSCP

• Excellent written and verbal communication skills, interpersonal and collaborative skills,
• Strong leadership skills including people management, relationship building, negotiation and influencing,
• Problem solving skills with ability to exercise flexibility and judgement as required,
• Highly motivated and results oriented with the ability to handle high pressure situations with multiple stakeholders,
• Results and quality driven, while being open to constant changes in priority and focus.
  
  

What's in it for you?

Inclusive, equitable and accessible workplace: All team members are valued, respected and heard. We learn from each other's differences, gaining strength through our people and our perspectives.

Training and support. We set our employees up for success with training and continued support and access to resources throughout employment.

Career advancement! We're committed to our employees' growth and development, and we want to see you soar.

Fun and camaraderie. We care deeply about our members and our employees, and we want the hours you spend with us to be fun, rewarding and sometimes lighthearted. We like to work hard, play hard, have fun and be there for each other.

Show me the money! We offer competitive pay, a personalized benefits program, and a generous defined contribution pension plan.

Community focused. We care about giving back to the communities we live, work and play in. We participate in many community minded activities throughout the year.

Our commitment to Diversity, Equity and Inclusion

Diversity, equity and inclusion is part of everything we do, and we're on a continuous journey to ensure every employee and members feels like they #BelongAtProspera.

If you require accommodation during any part of the recruitment process, please let us know.

Apply today!

Join #TeamLocal