As a Cyber Vendor Assurance Security Consultant (Security Cnslt II) you\'ll be keeping TELUS Health safe and protected by providing Cyber oversight across a diverse Global supplier portfolio. You\'ll support all of the key elements involved in the end-to-end Cyber Vendor Assurance program, focusing on ensuring the confidentiality, integrity, and availability of our suppliers. The role requires extensive collaboration with internal and external stakeholders to identify vulnerabilities and promote a collaborative security culture.
Responsibilities
- Assessing responses to a defined set of Information Security controls, ensuring quality and completeness of returns.
- Reviewing and assessing vendor responses to identify risk and vulnerabilities.
- Proposing supporting remediation activities, liaising with key stakeholders to ensure timely escalation and remediation.
- Maintaining and producing detailed reporting, contributing to key risk indicators and team management information.
- Articulating non‑conformities both written and verbally.
- Advising on risk articulation, materiality and required actions to remediate, using a communication style that reflects a diverse stakeholder audience across a global environment.
- Collating and assessing various Cyber intelligence sources to provide greater insight into the vendor’s underlying security posture.
- Sharing knowledge and mentoring to colleagues, supporting queries and providing guidance in relation to Cyber Vendor Assurance.
- Attending meetings and workshops, acting as a delegate for the Senior Manager when required.
- Actively contributing to the ongoing development of the Cyber Vendor Assurance team through constructive challenge, providing solutions, innovation and continual improvement.
Qualifications
- Reinforce TELUS Health’s Customers First values in ensuring positive security outcomes for both external customers and internal stakeholders.
- 4+ years of applied and practical Cyber Vendor Assurance experience.
- Demonstrated expertise and application of knowledge, including technical and softer skills required to manage a diverse vendor assurance portfolio.
- Strong understanding of security frameworks such as ISO 27001 / 27036 and the ability to identify vulnerabilities and opportunities for control enhancement.
- Adept at reviewing vendor security policies and standards to ensure appropriate scope and adequacy.
- Clear understanding of information security principles, including risk management, organization of information security, vulnerability identification, data loss prevention, and supply chain associated risks.
- Strong stakeholder management and interpersonal skills, with the ability to engage and develop relationships across a broad range of geographies and sectors.
- Strong organisational skills, with the ability to coordinate and self‑manage an independent portfolio of work to ensure high quality and timely delivery.
- Pragmatic and balanced outlook relative to risk and impact, applying sound judgement.
- Strong communication skills (verbal and written).
- Strong analytical skills, attention to detail and the capability to identify omissions, gaps and areas of focus.
- Ability to accommodate travel and time away from home if required.
Nice to Haves
- Procurement knowledge, reflective of the supplier lifecycle.
- Operational Risk experience.
- Bi‑lingual (English + one other language).
TELUS Health is empowering every person to live their healthiest life. Guided by our vision, we are leveraging the power of our leading edge technology and focusing on the uniqueness of each individual to create the future of health. As a global‑leading health and well‑being provider — encompassing physical, mental and financial health — TELUS Health is improving health outcomes for consumers, patients, healthcare professionals, employers and employees.
We live in and work in a rapidly evolving digital world where cyber security is critical. Protecting information and ensuring the reliability of network and services is paramount. The TELUS Health CSO team strives to always be a step ahead, tackling the toughest cyber security challenges head‑on with top talent and cutting‑edge technology. The team is committed to providing excellence in securing our internal and customers\' data and systems, ensuring world‑class reliability of security networks and systems, and improving our overall cybersecurity posture.
We are committed to fair employment practices and all qualified applicants will receive consideration for employment. We offer accommodation for applicants with disabilities, as required, during the recruitment process. The health and safety of our team, customers and communities is paramount to TELUS. Accordingly, we require anyone joining our TELUS Health Care Centres to be fully vaccinated for COVID‑19.
By applying to this role, you understand and agree that your information will be shared with the TELUS Group of Companies\' Talent Acquisition team(s) and/or any leader(s) who will be part of the selection process.
