This job ad has been posted over 40 days ago...
0
applicants
Senior IT Security Analyst with Smart Meter &/or Smart Grid experience (Downtown Toronto)
at Human Resources in Toronto
Our client is currently in need of a Senior IT Security Analyst with Smart Meter and/or Smart Grid experience to join their team of IT Professionals in their Downtown office. This is a contract role with an anticipated minimum duration of 6 months with an excellent likelihood of extension.
If you are interested please forward your resume to Aaron Harris at Keen Consulting at aharris@keenconsulting.ca
The position entails supporting the Smart Metering project, working with Smart Meter team members, the Business Information Technology division and internal line of business (LOB) clients to define information and electronic security requirements both in understanding existing policy and framework documentation as well as further defining corporate, smart metering and smart grid centric needs.
The role includes the conduct of vulnerability assessment using threat-risk approaches and other models, privacy assessments and active work in a team to produce the necessary analysis and deliverables to support Smart Meter and/or Smart Grid initiatives. Characteristically, the work involves leading and driving initiatives as well as supporting initiatives lead by others. Activities include participating in assessment meetings, assessment and documentation of analysis, lab analysis and support, driving and/or participating in RFP/RFQ/RFI processes as required and active collaboration with program team members and/or direct creation of documents and deliverables to see work product completed in a timely manner.
In order to provide support to the Account Manager, Geospatial Systems and Strategic Initiatives in the focus areas of Smart Metering and Smart Grid for the Information Technology and reporting into the IT Security prime for Smarter Metering within the BIT IT
Security team, responsibilities include:
• Define, and where applicable, conduct an Advance Metering Infrastructure (AMI) security analysis which may include:
- Conduct a data classification analysis
- Document a threat-risk assessment
- Create detailed documentation on security architecture
- Submit a Due Care Certificate to IT Security for approval
- Direct and independent analysis and opinion formulation,
- Facilitation of 3rd party analysis
- Support ongoing analysis of vendor documentation, specifications, use cases, implementations, test cases, and defect analysis/ tracking from a security perspective
- Assisting the refinement and recommend security standards for AMI architecture including key, firmware and parameter management
- Assisting the refinement and recommend policy changes beyond the AMI system to the relevant interfacing systems, and assist in determining such applicability
- Building a working model for policy and ongoing management for full-life-cycle priority setting from a security perspective
- Facilitate the creation of security operational documentation for sustainment e.g. security incident process updates
• Define and conduct, and/or review the analysis and deliverables by others, of vulnerability assessments on net new applications such as those for customer data presentment and online billing query, payment and similar functions:
- Working from standardized models for threat-risk, determine a systematic approach for architecture, feature and application review;
- Review architecture, features, user/admin/operations/admin documentation, uses cases, specifications and other systems documentation,
- Interview architects, designers, developers and test analyst, and associated documentation
- Prepare gap analyses and summaries of opportunities
- Prioritize risk represented by gaps in regards to both probability and impact
- Recommend controls, mitigations, monitoring points including the methods, frequency and rigor for such approaches
- Prescribe one-time commissioning requirements and ongoing monitoring and controls for the continued life-cycle management and make policy recommendations for the management of the same
- Set review frequency for policy review for ongoing management
In general to support the program, perform an overall risk assessment of the end-to-end Smart Metering solution
If you are interested please forward your resume to Aaron Harris at Keen Consulting at aharris@keenconsulting.ca
The position entails supporting the Smart Metering project, working with Smart Meter team members, the Business Information Technology division and internal line of business (LOB) clients to define information and electronic security requirements both in understanding existing policy and framework documentation as well as further defining corporate, smart metering and smart grid centric needs.
The role includes the conduct of vulnerability assessment using threat-risk approaches and other models, privacy assessments and active work in a team to produce the necessary analysis and deliverables to support Smart Meter and/or Smart Grid initiatives. Characteristically, the work involves leading and driving initiatives as well as supporting initiatives lead by others. Activities include participating in assessment meetings, assessment and documentation of analysis, lab analysis and support, driving and/or participating in RFP/RFQ/RFI processes as required and active collaboration with program team members and/or direct creation of documents and deliverables to see work product completed in a timely manner.
In order to provide support to the Account Manager, Geospatial Systems and Strategic Initiatives in the focus areas of Smart Metering and Smart Grid for the Information Technology and reporting into the IT Security prime for Smarter Metering within the BIT IT
Security team, responsibilities include:
• Define, and where applicable, conduct an Advance Metering Infrastructure (AMI) security analysis which may include:
- Conduct a data classification analysis
- Document a threat-risk assessment
- Create detailed documentation on security architecture
- Submit a Due Care Certificate to IT Security for approval
- Direct and independent analysis and opinion formulation,
- Facilitation of 3rd party analysis
- Support ongoing analysis of vendor documentation, specifications, use cases, implementations, test cases, and defect analysis/ tracking from a security perspective
- Assisting the refinement and recommend security standards for AMI architecture including key, firmware and parameter management
- Assisting the refinement and recommend policy changes beyond the AMI system to the relevant interfacing systems, and assist in determining such applicability
- Building a working model for policy and ongoing management for full-life-cycle priority setting from a security perspective
- Facilitate the creation of security operational documentation for sustainment e.g. security incident process updates
• Define and conduct, and/or review the analysis and deliverables by others, of vulnerability assessments on net new applications such as those for customer data presentment and online billing query, payment and similar functions:
- Working from standardized models for threat-risk, determine a systematic approach for architecture, feature and application review;
- Review architecture, features, user/admin/operations/admin documentation, uses cases, specifications and other systems documentation,
- Interview architects, designers, developers and test analyst, and associated documentation
- Prepare gap analyses and summaries of opportunities
- Prioritize risk represented by gaps in regards to both probability and impact
- Recommend controls, mitigations, monitoring points including the methods, frequency and rigor for such approaches
- Prescribe one-time commissioning requirements and ongoing monitoring and controls for the continued life-cycle management and make policy recommendations for the management of the same
- Set review frequency for policy review for ongoing management
In general to support the program, perform an overall risk assessment of the end-to-end Smart Metering solution
Published at 12-10-2009
Viewed: 158 times
Viewed: 158 times
