Job Description

• Liaise with the various simulation Original Equipment Manufacturers (OEM) and stakeholders to understand and discuss, as relevant to SA&A, the system architecture of the simulators and training systems, their supported and required security controls and operational and maintenance concepts and procedures.

• Draft or review and modify Information System Security Orders for each school including specific Annexes for each of the simulators and training systems.

• Draft or review and modify SA&A related modifications to the Facility Site Plans for all affected buildings housing simulators and training systems. These include Incident Response Plans, Contingency Plans, Awareness and Training Plans, and Continuous Monitoring Plans.

• Support Subject Matter expert in initial draft or review of required Concept of Operations (CONOPS) documents for simulators, training systems, and applications.

• Draft or review and modify System Requirements Traceability documents.

• Review and make recommendations for changes to Operation and Maintenance documentation for the simulators and training systems.

• Populate the SA&A Access Database with security controls for training technologies. Ensure all documentation for applications entered either Pro B SharePoint for SA&A work or TTI Training Tracker for software.

• Perform rework of any SA&A document submissions as directed by the security establishment after their review of the SA&A submissions.

• Develop Evidence Plans used to test and validate that the documented security controls are in place and effective to ensure successful transfer of interim Authority to Operate to Authority to Operate.

• Collect and collate security controls testing evidence. These can include documents such as configuration management plans, operation manuals, computer log files, and screen shots.

• Provide support for status briefings by the NFSA and NFSP ISSOs to their chain of command and other relevant stakeholders.

• Draft Requests for Change as required.

• Maintain horizon knowledge of vendors cyber compliance.

Qualifications

• Has a recognized College Technical Diploma related to position OR Bachelor degree in an IT related or engineering field OR 3 years of technical experience in support of technical IT equipment

• Minimum of 4 out of the 5 experience items listed below:

• Reviewed, analyzed, and/or applied security policies, system IT security assessment & authorization processes, IT security products, safeguards and best practices, and the IT security risk mitigation strategies;

• Identified threats to, and vulnerabilities of operating systems (such as MS, Unix, Linux, and Novell), and wireless architectures;

• Identified personnel, technical, physical, and procedural threats to and vulnerabilities of IT systems;

• Developed reports such as: data security analysis, concepts of operation, Statements of Sensitivity (SoSs), threat assessments, vulnerability assessments, risk assessments, IT security threat, or briefings;

• Conducted SA&A activities such as: developed security test plans, verified that safeguards meet the applicable policies and standards, and verified that security safeguards have been implemented correctly and provide evidence to the security authority;

• Minimum of 4 out of the 6 experience items listed below:

• Liaise with OEMs to determine system architecture, security controls, and operational and maintenance concepts and procedures;

• Draft, review and modify Information System Security Orders (ISSO) for simulators and training systems;

• Draft, review and modify SA&A related modifications to the Facility Site Plans for all buildings housing simulators and training systems such as incident response plans, contingency plans, awareness and training plans, and continuous monitoring plans;

• Draft, review and modify Concept of Operations (CONOPS) documents;

• Draft, review and modify System Requirements Traceability documents;

• Review and make recommendations for changes to operation and maintenance documentation for simulators and training systems.

Additional Information

• Able to obtain and maintain a Canadian Government Secret level Clearance
• Able to go onsite 5 days a week in the Victoria, BC area

Work-Life Balance

We strongly support a healthy and productive work-life balance. This starts with a flexible approach to work, and policies designed to support employees through their day-to-day routines and major life events. For example, we offer a Maternity/Parental Top-Up (up to 52 weeks) and a Reservist Leave Top-Up (up to 180 days).

Belong@ADGA

ADGA continuously strives to integrate advanced Diversity, Equity & Inclusion (DEI) approaches and practices into our work culture. Our employee-based DEI Committee explores activities and invites discussions that foster an environment where all employees feel valued, respected, and heard.

Compensation

Above and beyond our commitment to offer a competitive base salary, ADGA has a company-wide profit-sharing plan for all full-time and part-time employees.

Comprehensive Benefits and Total Rewards

We offer a comprehensive benefit program, providing employees with the choice between base or enhanced plans. Depending on the plan, ADGA pays for Health & Dental, a Health Spending Account, Short-Term Disability, an Employee Assistance Program, and a Telemedicine service. Also offered: discounts on gym memberships, 5,000+ perks through Perkoplis, a Deferred Profit Sharing Plan, and access to a wide range of other employee-centric services and savings programs.