Job Description

Our employees are central to everything we are. They do more than share remarkable talent and build pioneering AI software—they bring fresh ideas to old ways of thinking and delight our customers. That’s why we’re committed to making sure every employee at MindBridge feels appreciated. We do this by offering a robust benefits package and by creating a culture that is both inspiring and welcoming. Working at MindBridge isn’t like any other job. We’re a team of high-spirited and dynamic individuals who are passionate about using artificial intelligence to enable humans to do better. With that comes a high-drive culture where people feel valued, supported, and primed to succeed.
The Information Security & Risk Specialist plays a vital role in keeping MindBridge proprietary and sensitive information secure. Reporting to the Director of Information Technology & Security this role will work inter-departmentally to identify and correct flaws in the company’s security systems, solutions and programs while recommending specific measures that improve MindBridge’s overall security posture.
What you'll do; As a Senior Information Security Specialist some of your key area of responsibility are both of a technical and governance nature such as, conducting and leading different types of security investigation as well as conducting security assessments, TRAs etc. Other areas of responsibility will be around the administration, monitoring and metrics of MindBridge's security program to insure a continuously maturing security posture. To be successful in this role you will need to be a strong team-player with the ability to engage with all levels of the organization. In addition, the successful candidate will stay relevant to technology and should have the flexibility to adapt to the growing technology and market demands.
Responsibilities:

• Provide IT security and risk advisory support in the following domains of vendor and supply-chain security, project threat risk assessments, and operational risk inputs to enterprise risk management.
• Utilize industry standard metrics for evaluating risks (e.g. CVSS).
• Identify security flaws and vulnerabilities.
• Proactively monitor, evaluate and track systems and networks for breaches to MindBridge's security, SaaS service, development and corporate networks.
• Ensure that MindBridge's compliance requirements are met (e.g. ISO27k1, SOC2 etc.).
• Perform security audits, risk analysis, vendor assessments to reduce risks.
• Establish a development plan that outlines security gap assessments, policies, procedures, playbooks, training and tabletop testing.
• Administer security tools throughout the organization.
• Remedy security incidents in a timely manner according to priority.
• Provide expert project leadership and guidance to internal teams as SME.
• Support MindBridge's global strategic initiatives.

Requirements:

• Experience in conducting threat risk assessments (TRA) using different frameworks (ex: Harmonized TRA, NIST, ISO etc.);
• Understanding of confidentiality and data protection issues, threats and solutions,
• Ability to effectively manage time and meet deadlines,
• Ability to write technical documentation(Ex: Solutions Documents, Knowledgebase Articles, Incident & Vulnerability reports etc.)

Assets:

• Experience with Compliancy standards such as SOC2 Type2, ISO27001/17/18, CSA-Star etc.
• Government of Canada experience in Threat Risk Assessments
• Experience with MS Azure and O365, G-Suite;
• Experience scripting is an asset;

Requirements contingent on employment:

• Fulfill requirements necessary to obtain full background check.

About the company Through the power of human-centric artificial intelligence, MindBridge Ai helps organizations deliver rapid value to their clients with deeper insights and higher risk assurance for 100% of their data. With MindBridge Ai Auditor, the world’s first AI-powered auditing solution, organizations across multiple industries are augmenting human capacity to restore confidence in their financial data.
MindBridge is committed to promoting diversity and inclusion within our workforce; achieving it is an important competitive advantage in the global marketplace. The Company has a strict policy of equal opportunity in hiring, developing, promoting and compensating employees. The company seeks to attract, retain and reward employees who perform their work to the highest standards, basing promotions on qualification and merit. MindBridge is passionate and committed to creating a diverse and inclusive environment. We are an equal opportunity employer and as such qualified applicants will receive consideration without regard to race, national or ethnic origin, colour, religion, gender, gender identity or expression, sexual orientation, mental or physical disability, age, or veteran status.