Job Description

As the largest high-tech team in Canada, Network and Technology Services builds cutting edge fibre and 5G networks that drive how Canadians connect with each other and the world! Our team is at the forefront of developing Bell\'s leading products and services: Fibe TV and Internet, Wireless, Smart Home, cloud, security and IoT. We enable the delivery of the best content from Crave, TSN/RDS, iHeart Radio and dozens of other leading media properties to our customers any time, on any device.

Introduction

The NTS Security team is a fast-paced and dynamic team within the Network and Technology Services organization. The NTS Security team is a strategic security planning and operational team that is a conduit between the Bell stakeholders and our strategic partners and support teams. The NTS Vulnerability Management Security team is responsible for identifying vulnerabilities, setting vulnerability remediation priorities and supporting the teams in meeting targets by developing and managing a comprehensive and efficient vulnerability management program. Bell is currently seeking a candidate for the position of Specialist, Cyber Security - Vulnerability Management who will report to the Senior Manager, Cyber Security. They will assist in the program management of vulnerability detection, remediation and risk management to improve the security posture of NTS Infrastructure applications, servers and network applications. The candidate will regularly conduct vulnerability assessments and execute VA scan on applications, servers and network applications. They will conduct vulnerability security analysis and assessments, create reports and dashboards to provide insights and directions at both executive and working levels, assist with the creation of action plans, assist with the identification and tracking of risk & remediation, provide advice on mitigation safeguards, establish processes and security best practices and act as a spokesperson on security related subjects.

Key Responsibilities

• Maintain multiple vulnerability programs
• VA & DAST testing scan activities for vulnerabilities detection
• Track and analyze lifecycle and severity trends of security vulnerabilities
• Understand Vulnerabilities and their contexts within the application landscapes
• Prioritizing vulnerabilities discovered along with remediation timeline(s)
• Ensure teams develop actions plans and monitor progress, support teams as required
• Work through complete end-to-end vulnerability detection, analysis to remediation support process
• Manage/update GRC tools
• Update/implement dashboards and monthly reports (closure progress to targets) to ensure teams accountabilities
• Participate collecting, assessing, and cataloging threat indicators
• Meet stakeholder teams on a regular basis to provide results, deep dive analysis, gather status updates and plans, provide directional guidance
• Support with Risk/Exception assessments, initiate projects to proactively address exceptions
• Work with cross functional teams to address long term, systemic issues as identified by Corporate Security testing teams
• Develop long term program plans, follow through to completion and communicate strategy & progress at executive level
• Collaborate and interact with multiple supporting teams (Corporate Security, Testing teams, Security architecture, Enterprise architecture, Network teams, Application development, Security Control owners, etc.)
• Develop, document and maintain remediation processes
• Stay informed on Industry/Security/Vulnerability news and technology trends

Critical Qualifications

• 7+ years of Cyber Security experience, including testing and vulnerability management end to end process
• Experience with web vulnerability scanners (DAST) and VA scanners
• Understanding of Agile and DevSecOps concepts
• Ability to manage time and priorities across multiple projects and duties
• Project Managing Experience
• Think analytically and synthesize technical information from various sources
• High level of personal integrity, judgment and maturity as well as the ability to professionally handle confidential matters
• Excellent skills of verbal and written communications, relationship building, and influencing others.
• Bachelor\'s degree in technology-related field, or in computer science with a specialization in telecommunications, or the equivalent work experience

Preferred Qualifications

• Knowledge of private and public Cloud platforms
• Bilingualism in French and English
• Development experience
• Penetration testing
• A security based professional qualification desirable (e.g. CISSP, CISM, CISA, OPST, CEH, GPEN)
• Knowledge of ISO 2700x, OWASP Top 10, CVSS, CVE, ITIL, PCI-DSS, CSP.
• A track record of results and effectiveness in applications technical support, trouble-shooting and analysis, problem resolution, and service availability and reliability improvement roles.

\xe2\x80\x8b#EmployeeReferralProgram

Adequate knowledge of French is required for positions in Quebec.

Additional Information:
Position Type: Management
Job Status: Regular - Full Time
Job Location: Canada : Quebec : Montreal
Flexible work profile: Mobile
Application Deadline: 04/02/2023

All team members are expected to reside in Canada and within a reasonable commuting distance from their work location to ensure that they are able to come to the office as required, whether the visit is planned or unplanned.

Please apply directly online to be considered for this role. Applications through email will not be accepted.

At Bell, we don\'t just accept difference - we celebrate it. We\'re committed to fostering an inclusive, equitable, and accessible workplace where every team member feels valued, respected, and supported, and has the opportunity to reach their full potential. We welcome and encourage applications from people with disabilities.

Accommodations are available on request for candidates taking part in all aspects of the selection process. For a confidential inquiry, simply email your recruiter directly or to make arrangements. If you have questions regarding accessible employment at Bell please email our Diversity & Inclusion Team at .

Created: Canada, QC, Montreal

Bell, one of

Bell