0

Senior Security Analyst

BC Liquor Stores Jobs View other BC Liquor Stores offers
January 17 2025
Industries Retail
Categories Business Process Analyst, Data Business Analyst,
Burnaby, BC • Full time

About the BCLDB:

The BC Liquor Distribution Branch (LDB) is one of two branches of government that provide oversight for the beverage alcohol and non-medical cannabis industries in the province. The LDB is responsible for the wholesale distribution of liquor and cannabis, and operates the retails brands BCLIQUOR and BC Cannabis Stores.

The LDB is committed to government's goals of making life better for people in B.C., improving services, and ensuring a sustainable province for future generations. The revenue generated by the LDB helps fund essential public services like health care, education, and community programming. Learn more on the LDB careers page.

The LDB's Information Technology (IT) team consists of 6 competency areas: Enterprise Systems (from infrastructure to application portfolio management), Customer Experience, Enterprise Architecture, Data Analytics & Governance, Software Engineering and Information Security. 5 divisions managed by IT Directors collectively are responsible for all of the 6 competency areas to deliver the IT mandate of supporting LDB's corporate and business operations and enabling future needs and initiatives.

At present, the IT team consists of more than 200 full-time employees and includes a sourcing strategy to leverage external expertise to ensure the integrated IT team continues to deliver LDB's strategic initiatives timely and in high quality. Key systems in use by the LDB include Infrastructure and Enterprise Resource Planning (ERP) systems which support our head office, BC Liquor Stores, and BC Cannabis Stores, and Supply Chain Management (SCM) systems which support over 25,000 suppliers of liquor, cannabis products as well as 2,000 wholesale customers and 10,000 hospitality customers.

About this role:

Advising senior management, the Senior Security Analyst works with business stakeholders and leads the implementation of key branch security strategies and projects. This position comes with a high degree of authority and autonomous decision making. The Senior Security Analyst is responsible for assessing security risks and identifying control requirements and is focused on creating solutions to address control needs.

The Senior Security Analyst in collaboration with IT project teams, architects, and administrators, assesses systems, applications, HW/SW and provides security advice and recommendations to LDB business and IT leadership during the design, development, deployment and maintenance of security and other systems and platforms. The Senior Security Analyst also leads initiatives to improve the LDB's information security policies and standards and address the changing scope of security threats and computer technologies. The Senior Security Analyst works closely with business leaders and technical teams to ensure information security is an integral component of business processes and IT applications.

The work involves considerable complexity, multiple applications and a wide variety of technologies. The Senior Security Analyst operates within a wide scope of responsibility and all activities of NIST domains, leading the LDB's security and risk management program to ensure the protection of IT information assets across LDB's entire operation.

A criminal record check is required.

Working conditions include the need to work outside of core hours, as and when required. Some weekend work may be required to implement changes.

For complete details about this opportunity, including accountabilities, please refer to the attached job description, also located in the Additional Information section at the bottom of the posting.

An eligibility list for permanent or temporary future opportunities may be established.

Position requirements:

Education and Experience:

Degree in Computer Science, Information Technology, Cybersecurity, or related field with a minimum of 4 years of recent, related experience*

OR

A combination of education, training and experience will be considered. i.e., 6 years of recent, related experience* with a diploma or certificate in Computer Science, Information Technology, Cybersecurity or related field.

*Recent, related experience must have occurred in the last 7 years and must include the following:

  • Experience reporting on vulnerabilities across the organization.
  • Experience leading technical projects and/or initiatives.
  • Experience with implementation and maintenance/operation of security tools such as Microsoft 365 Defender, etc.
  • Experience with assessing and addressing software and hardware vulnerabilities.

Preference may be given to candidates with any of the following experience:

  • Experience leading Security Threat Risk Assessments (STRA) including identifying and assessment of potential risks, documenting risk ratings and planned treatments and security audits i.e., penetration testing, PCI compliance audit, segmentation audit etc.
  • Industry standard certification including a Certified Information Systems Security Professional (CISSP) or Certified Information Systems Auditor (CISA) or Certified in Risk and Information Systems Control (CRISC) or equivalent.
  • Certification in one or more technical disciplines such as CISCO, security (SANS, CSI or other accredited institutes) and/or certification in privacy or information management.
  • Experience with a security focus in a Microsoft environment, preferably cloud environment i.e., Azure.
  • Experience leading security awareness i.e., developing email, internet and/or password policies and procedures, identifying trending cyber threats recognition and response training/education such as company communication on cybersecurity and phishing campaigns.
  • Experience with change management processes and/or project management methodologies.
  • Experience ensuring business process compliance with information security policies and identifying and addressing security risks.
  • Experience with application design and development life cycle.
  • Experience with Identity Access Management (IAM).
  • Experience with Payment Card Industry Data Security standards (PCI) or other processes including trends, emerging issues and best practices for PCI.

Application instructions:

To be considered for this position, your application must clearly demonstrate how you meet the education and experience as outlined in the position requirements section above. Applicants selected to move forward in the hiring process may be assessed on the knowledge, skills, abilities and competencies as outlined in the attached Job Description. Applicants must meet the requirements as described below to be considered:

  • A cover letter is required as part of your application. The content and/or format of your cover letter may be evaluated as part of the assessment process.
  • Ensure your resume includes your educational accomplishments, employment history including start and end dates (month and year) of your employment, and any relevant information that relates to the job to which you are applying.

For specific position-related enquiries, please contact Doireann Melady, R/HR Advisor at Doireann.Melady@bcldb.com.

Only applications submitted using the BC Public Service Recruitment System on this website will be accepted. For more information about how to create or update your profile, please refer to the attached Application Instructions or refer to the Job Application page on the MyHR website. If you are experiencing technical difficulty applying for a competition, please send an e-mail to BCPSA.Hiring.Centre@gov.bc.ca before the stated closing time, and they will respond as soon as possible to assist you.

Note: Applications will be accepted until 11:00pm Pacific Time on the closing date of the competition.

Working for the BC Public Service:

The BC Public Service is committed to creating a diverse workplace to represent the population we serve and to better meet the needs of our citizens. Consider joining our team and being part of an innovative, inclusive and rewarding workplace.

This position is eligible for flexible work arrangements, such as a hybrid work combination of in-office and work-from-home, following the guidelines established for flexible workplaces.

The Indigenous Applicant Advisory Service is available to applicants that self-identify as Indigenous (First Nations, status or non-status, Métis, or Inuit) seeking work or already employed in the BC Public Service. For guidance on applying and interviewing, please contact IndigenousApplicants@gov.bc.ca or 778-405-3452.

The BC Public Service is an award-winning employer and offers employees competitive benefits, great learning opportunities and a chance to engage in rewarding work with exciting career development options. For more information, visit What the BC Public Service Offers.

SaveRemove
 SaveRemove
Apply now!

Similar offers

Searching...
No similar offer found.
An error has occured, try again later.

Jobs.ca network

close
Hrjob
Human Resources
Jobwings
Finance
Pmjobs
Project Management
Legaljobs
Legal
Paralegaljobs
Paralegal
Salesrep
Sales
Itjobs
Information Technology
Retail
Retail
Callcentrejob
Call Centres
Adminjobs
Administrative
Techjobs
Engineering
accountingjobs
Accounting
Bajobs
Business Analysis
Pharmajob
Pharmaceutical
Healthcarejobs
Healthcare
Aerojobs
Aeronautical
Parttime
Part-Time
Temporaryjobs
Temporary
Summerjobs
Summer Jobs
LogoWinterjobs_CMYK
Winter Jobs
Hospitalityjobs
Hospitality