Job Description

GlassHouse Systems (GHS) is an enterprise systems, and managed services solutions provider that develops, designs and deploys solutions for leading enterprises in Canada and the US. For almost 32 years, GHS has delivered an enterprise level of service and support to clients. Recognized with industry-leading awards each year, GHS translates this differentiation into positive client experiences.


As a Senior Security Advisor at GlassHouse Systems (GHS), you will play a key customer-facing role within our Managed Security Services Provider (MSSP) practice. Acting as a trusted cybersecurity advisor, you will engage directly with clients to assess risk, define security strategy, and guide implementation of industry-leading solutions.



Requirements:



. This position requires employees to work from the GHS Toronto office a minimum of three days per week.

Experience leading and managing IT Risk, Governance, Security and Audit framework Experience with computer security procedures and protocols and experience with Security Information Event Management tools (SIEM), Intrusion Detection & Prevention Systems (IDS/IPS), Next Gen Firewalls, Network Behavior Analysis tools, Endpoint Detection and Response products, and Network Detection and Response products Consultancy and Project Management experience - Build and develop strong peer-to-peer relationships with our delivery, pre-sales, sales and post-sales teams. Drive the documentation and adoption of agreed standards within our deployments. 10+ years required of successful career progression in cybersecurity related technologies and domains. Must be able to present to large audiences at our customer meetings and events and be recognized as a technology leader Ability to quickly evaluate options, make decisions and execute within an intense technology environment with multiple stakeholders.

NICE TO HAVE:

Proficient in a wide range of technologies Knowledgeable as to industry "best practices" in day-to-day operation of a large, multinational IT organization BA/BS in Information Security, or a related field, in combination with experience Accreditation - Attain and maintain relevant accreditation(s) in one or more of the key security-related areas

including but not limited to:


o Certified in Risk and Information Systems Control (CRISC)


o Certified Information Systems Security Professional (CISSP)


o Certified Information Security Manager (CISM)


o Certified Cloud Security Professional (CCSP)


o Certified Information Systems Auditor (CISA)


o Information Systems Security Architecture Professional (ISSAP)


o Information Systems Security Engineering Professional (ISSEP)


o Certificate of Cloud Security Knowledge (CCSK)



Responsibilities:



Assist in the development and implementation of security standards, guidelines, and best practices, ensuring alignment with industry standards such as NIST, CIS and ISO 27000 series. Adapt these standards to address the unique security challenges of customers. Support the development and maintenance of the Cybersecurity Policy Framework, considering specific security profiles and risk tolerances of various customers. Conduct Threat and Risk Assessments (TRAs) on various business units and initiatives. Critically, these assessments must reflect the specific threats and vulnerabilities faced by each business unit, while considering both their individual risk appetite and the enterprise risk appetite of the organization. Provide input to risk mitigation strategies and remediation plans. Support the implementation and maintenance of data privacy and protection policies and procedures, ensuring compliance with relevant regulations like PIPEDA (Canada). Assist in conducting data protection impact assessments and data breach response activities. Contribute to the development, maturing, and implementation of a third-party risk management program, assessing and managing risks associated with all third-party relationships, including vendor security assessments. Participate in security response planning and contribute to the development and maintenance of incident response procedures. Contribute to the development and execution of cybersecurity Tabletop Exercises for business units to enhance their preparedness for cyber incidents. Work with business units to integrate cybersecurity considerations into their business resilience plans. Help guide them in establishing and operating adequate plans to ensure business continuity in the face of cyber threats. Support the assessment of vendor products and services from a security perspective, providing recommendations related to purchase and merger & acquisition activities. Own and positively develop the relationships with senior executives and key technical decision makers and influencers within the target customers.

- Engage with customers as a trusted advisor, listening and understanding their challenges and requirements - both technical and business, and clearly articulate and communicate to the sales team, and document them.

Research and develop appropriate working solutions and value proposition, engaging with the respective solution principal and services partner (including our MSS team and professional services), to address customer requirements. Present and articulate our value proposition to customers at all levels within the organization both technical and business audience (including C-levels). Demonstrate a strong knowledge of the solutions and services offered Be a trusted advisor who provides sound security advice to customers and help them establish business case, including TCO and ROI justification, and shapes requirements Act as a trusted adviser to customers through building knowledge of their environments


Personal attributes:


Strong leadership skills Strong verbal communication skills and excellent technical writing skills Strong team player and enjoys working in a fast-paced team atmosphere Ability to manage multiple priorities, commitments and projects Ability to communicate complex ideas verbally and through documentation Must be able to grasp highly technical concepts quickly, develop content, and independently document features for target audiences


Disclaimer:

What you'll get:

Competitive salary


Health benefits (medical, vision, dental)


Life insurance


Pension plan


Professional development


Amazing company culture


Free parking


Gym on-site

Join a team of professionals led by a diverse set of leaders from across the industry.

GlassHouse Systems commitment:

We believe that a diverse team is the key to innovation and growth. We are an equal opportunity employer that values diversity at our company and encourages all candidates to apply. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.


GlassHouse Systems will accommodate individuals with disabilities through each stage of the recruitment process. Please advise us of any needs when your interview is booked and we will do our best to meet your needs.


Please note that all candidates have to be legally eligible to work in Canada.


Any offer of employment will be conditional upon a criminal record check.


GlassHouse Systems thanks all candidates for their interest, however only those selected to continue in the process will be contacted.