The Insurance Corporation of British Columbia (ICBC) has an exciting opportunity for an experienced Information Protection Advisor to work in our Information Risk Management Department. As part of this team you will gather electronic evidence to support investigations. You will provide information security governance and compliance services to corporate and divisional projects, conduct risk assessments and penetration tests, and present findings to business risk owners. You will also develop security policies and standards.
To make an immediate contribution, you will draw on your demonstrated experience:
- Gathering electronic evidence to support investigations, including extracting and interpreting systems log files and conducting computer forensics and mobile device forensics
- Analyzing threats and assessing information security exposures to ICBC’s information and ICBC’s information technology systems
- Performing regular pen tests and security tests on ICBC Systems, as well as engaging third parties to perform regular penetration tests
- Developing electronic investigation processes and procedures
- Developing proactive monitoring rules, triaging alerts, and handling incidents
- Recommending, creating, and updating corporate principles, policies, standards, and procedures related to information security
- Consulting on corporate and divisional projects as an Information Security Lead, identifying information security risks, communicating with the business owners to establish impact, recommending treatment plans to remain within business risk tolerance, and tracking treatment plans through implementation
- Collect information security metrics to monitor and enhance the information security program at ICBC
- Creating information security awareness media, including posters, online communications, blog articles, audio and video recordings, and other media.
Position Requirements
Key to your success in this role requires you to bring knowledge related to:
- Principles, standards, practices, and tools pertaining to information systems security
- The ISO/IEC 27000 framework for building Information Security Management Systems
- BC’s Freedom of Information and Protection of Privacy Act (FIPPA); and e-Discovery and Legal Hold trends and legislation
- Strong understanding of distributed systems and how they work
- Incident handling processes and procedures
- Trends and developments in the information and technology security field
- Familiarity with SOC and SIEM tools
- Familiarity with third party audit reports such as SSAE 16, SOC 2
Due to the nature of this position, the successful candidate must meet the Canadian Border Service security clearance requirements of the Enhanced Driver License Program.
It would be considered an asset if your experience is supported by a business or technology degree and if you have industry recognized certifications such as a Certified Information Systems Security Professional (CISSP) and/or a Certified Information Systems Auditor (CISA) and/or a Certified Information Security Management (CISM) designation.
You can view this job posting and apply for the position through ICBC’s website up to May 30, 2021.
ICBC’s job is to make sure the car insurance system works for all British Columbians, today and in the future. If you want to make the most of your skills and expertise while growing your career, ICBC wants you. A career at ICBC is an opportunity to be part of a talented, diverse and inclusive team that is driven to serve its customers and community. You can expect a competitive salary, comprehensive benefits and a collaborative work environment. If you are reliable and dependable, contact ICBC today to be part of their talented and diverse team as they work together to create an insurance system that all can be proud of.
ICBC welcomes applications from all qualified job seekers. If you are a job seeker with a disability, please let ICBC know as adjustments can be made to help support you in delivering your best performance.