About the role:
Our Federal Government client has a current need for a Senior IT Security TRA Analyst to perform the following duties REMOTELY (Off-site work):
- Review the security requirements traceability matrix (SRTM) and evidences
Set clear expectations per control (or group of controls) of the SRTM as to what is required to confirm these controls are in place and functioning as expected.
Develop/update/maintain the Security Requirements Traceability Matrix (SRTM) and the Security Assessment Report.
Security Requirements Traceability Matrix (SRTM)
Evaluate, against the Government of Canada Security Control Profile for GC Services, the current posture of tenant. This will require grading (PASS, FAIL) for each requirement.
Set clear expectations per control (or group of controls) as to what is required to confirm these controls are in place and functioning as expected.
Security Assessment Report
- Prepare a final Security Assessment Report summarizing the findings following SRTM evaluation.
Work in line with the following:
TBS’s DSM - Directive on Security Management
TBS’s PGS – Policy on Government Security
CSE’s ITSG-33 Guidance
CSE’s Top 10 IT Security Actions
Evaluation to be conducted against the Government of Canada Security Control Profile for cloud-based GC Services (4. GC Cloud PBMM Security Control Profile).
Clearance: Secret (mandatory)
10 years’ relevant experience in Security Assessment & Authorization (SA&A) and TRA work
5+ years’ direct experience performing SA&A work for Azure and working in cloud environments
5+ years’ direct experience in the assessment of evidence and writing of formal Security Assessment reports (ITSG-33 based).
5+ years’ project experience & direct working knowledge of the GC standards, policies and guidelines and the principles of security and privacy by design.
5+ years’ experience reviewing the following documents:
Statement of Sensitivity,
Statement of acceptable risk
Business Needs for Security,
Statement of Acceptable Risk
Experience in the development of the following:
IT security controls (ITSG33 based) and applicable safeguards;(based on business requirements)
Assessment of mitigation strategies;
Identification of residual risk.
5+ years’ experience working as a TRA Analyst with experience developing and updating TRAs
Experience understanding and applying GC IT Security policies
5+ years’ experience undertaking developing interpreting and applying IT C&A/SA&A methodology and policies instruments.
Type of Assignment:
Become a part of the Calian team and join over 3,000 professionals working on projects that span Canada, U.S. and international markets. Our capabilities are diverse enabling us to offer professionals career opportunities within business and technology services in health, training, engineering and IT services as well as within the design, manufacturing and maintenance of complex systems to the communications and defence sectors. Founded in 1982, Calian is a Canadian company that is publicly traded on the Toronto Stock Exchange (CGY).
Calian values diversity and is an equal opportunity employer. Calian is committed to being responsive to the diverse needs of its members, employees, and others, by striving to prevent and remove systemic barriers. All qualified individuals are encouraged to apply and we welcome applications from women, visible minorities, Indigenous Peoples, persons with disabilities, persons of diverse sexual orientation, gender identity or expression and others who may contribute to diversity of our organization. We thank all applicants for their interest; however, only candidates under consideration will be contacted. We will provide accommodations during the recruitment process upon request.
The federal government has implemented a mandatory vaccination policy for public servants and all contractor personnel who access Government of Canada workplaces. As an employee or independent contractor of Calian performing work for federal government customers of Calian, you will be subject to this mandate.
Calian has a duty to provide and maintain a safe workplace and is contractually obligated to adhere to government mandates, policies and directives. Your employment / independent contractor agreement with Calian will require that you obey all workplace health, safety and security rules and regulations established by Calian or the customer.
Every Calian employee and independent contractor working on Calian customer worksites will be required to complete an attestation before you are employed by Calian, stating that you are Fully vaccinated (full series of a Health Canada-approved vaccine, 14 days have passed since your last dose). This is a mandatory requirement and failure to complete the attestation will result in you being non-compliant for the position and we will therefore be unable to move forward in the hiring process.
Le gouvernement fédéral a mis en place une politique de vaccination obligatoire pour les fonctionnaires et tout le personnel des entrepreneurs qui ont accès aux lieux de travail du gouvernement du Canada. En tant qu'employé ou entrepreneur indépendant de Calian effectuant des travaux pour des clients de Calian appartenant au gouvernement fédéral, vous serez soumis à ce mandat.
Calian a le devoir de fournir et de maintenir un lieu de travail sûr et est contractuellement obligé d'adhérer aux mandats, politiques et directives du gouvernement. Votre contrat d'emploi ou d'entrepreneur indépendant avec Calian exigera que vous respectiez toutes les règles et réglementations en matière de santé, de sécurité et de sûreté sur le lieu de travail établies par Calian ou le client.
Chaque employé de Calian et chaque entrepreneur indépendant travaillant sur les chantiers des clients de Calian devra remplir une attestation avant d'être employé par Calian, indiquant que vous êtes entièrement vacciné (série complète d'un vaccin approuvé par Santé Canada, 14 jours se sont écoulés depuis la dernière dose). Il s'agit d'une exigence obligatoire et si vous ne remplissez pas l'attestation, vous ne serez pas conforme pour le poste et nous ne pourrons donc pas avancer dans le processus d'embauche.
Submit Your Resume
Mandatory fields are marked *