Job Type:
RegularInvest in Yourself, Join AGROPUR. Are You Ready?

Under the supervision of an Information Security Manager or Director, the IT Security Analyst plays a key role in developing and implementing a comprehensive information security program. Collaborating closely with security teams, business units, and service providers, the analyst ensures that risks are accurately identified and appropriate technical controls are deployed to meet specific security requirements. The incumbent also defines processes and standards to maintain security configurations.

At Agropur, We Invest in You:
· Recognition of years of service for vacation calculations;
· Flexible remote work policy (50%);
· Flexible group insurance plan, including telemedicine services;
· Employee assistance program;
· Opportunities for career development;
· Company-matched retirement plan;
· Bright offices surrounded by nature, offering various services (free indoor parking, gym, daycare, etc.).

What This Role Entails:

Information Security Governance and Control Implementation (40%)
· Collaborate with business units and risk management teams to identify security requirements using methods such as risk and business impact assessments.
· Coordinate and finalize documentation related to information security governance.
· Lead phishing simulations and report on key performance indicators.
· Organize annual Cybersecurity Awareness Month activities.
· Ensure all employees complete information security training.
· Develop strategies and plans with leadership to enforce security requirements and mitigate identified risks.
· Participate in critical IT projects to ensure security concerns are addressed throughout the project lifecycle.
· Contribute to enhancing the security awareness program to reduce human risks.
· Ensure employees and third parties understand and comply with all information security policies.
· Create a framework to measure compliance indicators with security policies.

Risk Assessments (40%)
· Manage and maintain strong working relationships with stakeholders responsible for information risk management within the organization.
· Conduct risk assessments on existing or new processes, services, and technologies in collaboration with business counterparts.
· Provide advisory guidance to stakeholders to support informed risk management decisions.
· Assist in the development of common risk assessment and control tools, defining parameters, and analyzing results.
· Facilitate the implementation of appropriate controls to manage information risks.
· Lead risk assessments, analyze audit findings, and formulate risk mitigation strategies.

Information Security Solution Design (10%)
· Contribute to the development of security architecture, policies, and standards.
· Participate in enterprise and solution architecture communities to provide security guidance.
· Research and evaluate new security threats and alerts, recommending corrective actions.

Audit Support (10%)
· Maintain a close relationship with internal and external audit teams.
· Receive audit findings and manage the collection of responses and remediation plans with stakeholders.
· Participate in security governance processes to define effective and efficient control recommendations.
· Oversee and manage audit finding remediation, including defining requirements for full remediation and providing feedback on audit responses.

What You Need to Join Our Team:

Education and Experience:
· Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field.
· Over 5 years of in-depth experience in information security, particularly in risk analysis and understanding business functions and processes.
· Experience with information security management frameworks (NIST CSF, ISO, COBIT, etc.).
· Information security certification (e.g., ISACA, ISC2, or equivalent).
Knowledge and Skills:
· Ability to identify and assess the severity and potential impact of risks and communicate risk assessment results clearly to stakeholders.
· Strong understanding of organizational mission, values, and objectives, and consistent application of this knowledge.
· Competence in managing multiple tasks simultaneously while being aware of internal and external organizational information.
· Innovative thinking to generate new ideas and solutions.
· Commitment to providing quality service and promptly meeting business needs.
· Ability to effectively influence others to change opinions, plans, or behaviors.
· Strong prioritization and problem-solving skills.
· Ability to engage with stakeholders at all levels of the organization.
· Bilingualism (French and English) required.
·
We’re ready, are you? Join AGROPUR.
Agropur welcomes people from all backgrounds and walks of life. We are proud to be an employer with a diverse community and are committed to providing a respectful and inclusive experience for all employees and applicants. We will therefore work with candidates who request accommodation. Please note that an adequate knowledge of French is required for positions in Quebec.