Top Benefits
About the role
Why WestJet:
Every WestJet journey has the potential to enrich lives; a career with us is no exception.
WestJet arrived on the Canadian airline scene in 1996 and changed the industry for the better. We made air travel more affordable for Canadians and now we're going global.
Join us, this is where your career story takes off.
Overview of role:
The Assessor is accountable to ensure that information security risks in a Project, Control Domain, and/or Third Party Relationship(s) (of moderate scope and complexity) are identified, assessed, and reported and appropriate controls are agreed upon to remediate identified control deficiencies.
Key deliverables / responsibilities include:
-
Works with unique expertise and knowledge in Information Security and uses skills to identify Information Security related risks and controls to achieve organizational goals in creative and effective ways
-
Work closely with portfolio personnel, stakeholders, and senior management to identify Information Security & Privacy related risks and controls, in projects / initiatives / supplier arrangements.
-
Provide consultation to Strategic Sourcing, legal personnel, and any other stakeholders in the negotiation of Information Security related contractual clauses with suppliers.
-
Interpret and analyze organizational impact based on information security and related audit reports (viz. SOC1, SOC2, AUP, etc.).
-
Complete risk assessments of moderately complex new or existing technology / processes / supplier arrangements.
-
Provide Information security subject matter expertise on design and controls to business and suppliers during findings remediation
-
Raise Information Security exceptions and acceptances (as required) to ensure these are accurate and are supported by sound resolution plans.
-
Escalate potential or unresolved Information Security issues to management for resolution, as appropriate
-
Review and provide recommendations to Information Security policies, standards, guidelines/ processes.
-
Work to develop / advise in the implementation and improvement of systems and processes to support continual improvement in Compliance in the business.
-
Act as a subject matter expert in the application of laws and regulations, industry frameworks and standards related to IT Compliance.
-
Performs information control reviews to include system development standards, operating procedures, system security, programming controls, communication controls, backup and disaster recovery, and
-
system maintenance.
-
Produce metrics and analytics for management to gain insight for planning, design and to facilitate the identification of improvement opportunities.
-
Develop an in-depth knowledge of established processing catalog, privacy access and obfuscation request processes
Experience and qualifications:
-
Bachelor's Degree and 5+ years of Information Security experience preferred, or an equivalent combination of training and experience
Information security certification (e.g. CISSP, CRISC, CEH, SANS, ISO 27001) is desired -
Intermediate knowledge of Information Security risk, ITGC Controls, supplier due diligence, etc. is required
-
Thorough working knowledge of and demonstrated ability to apply common frameworks and models used for Information Security Risk and Compliance, such as ISO 27001, NIST CSF, COSO and CobiT
-
Strong knowledge of regulations and frameworks such as SOC2, SIG / AUP, GDPR, PIPEDA and PCI DSS
-
Intermediate knowledge of industry standards on Policies, Standards and Guidelines relating to information security risk
-
Sufficient knowledge and understanding of network security, application security, data security and cloud security domains is desired
-
Requires excellent problem-solving skills and good interpersonal and communication skills including influencing others
-
Possess intermediate consulting and analysis skills
-
Possess intermediate project management and time management skills
The benefits of being a WestJetter:
WestJet provides all WestJetters with a competitive total rewards package. On top of that, we offer:
-
A fun and friendly culture with colleagues who work together to win
-
Travel privileges for you and your family, effective from your start date
-
Savings and Benefit programs that are flexible to meet your specific needs
Think we are a fit? Apply now!
About WestJet Group of Companies
Together with WestJet's regional airline, WestJet Encore, we offer scheduled service to more than 100 destinations in North America, Central America, the Caribbean and Europe and to more than 175 destinations in over 20 countries through our airline partnerships.
Our Safety Promise
At WestJet, the safety and security of our people and our guests is a core value and at the heart of what we do. As safety and security is a shared responsibility, it is expected that you will use safe work practices to ensure your well-being and the safety of others.
WestJet recognizes that the use of Alcohol and Drugs can adversely impact a safe work environment and the well-being of others including guests, suppliers and the public, as well as place WestJet's operations at risk. All roles that are identified as safety sensitive are required to pass a Pre-Employment Alcohol and Drug Test as per WestJet's Alcohol and Drug Policy.
Our Commitment to Diversity and Inclusion
We embrace what makes us each unique, and what makes us uniquely WestJet – and that is our people. WestJet is committed to creating an inclusive workplace that celebrates our differences by way of diversity, equity, and inclusion. As an equal opportunity employer, we want to you bring your full self to work and feel appreciated for your contributions.
At WestJet, we welcome unique skills, experiences, and backgrounds - if you’re passionate and excited about this role, we encourage you to apply even if you do not meet every single qualification in the posting. We are committed to inclusivity, equity, and accessibility in the selection process. If you require an accommodation during the recruiting process, please let our Talent Acquisition team know.
We thank all applicants for their interest in WestJet; however, only those candidates who are selected will be contacted.
For more information about everything WestJet, please visit WestJet.com.
#LI-RM1
About WestJet
We took to the skies in 1996 with just over 200 employees and three aircraft operating service to five destinations. Today, The WestJet group of companies offers scheduled service to more than 100 destinations in North America, Central America, the Caribbean, Asia and Europe with a team of over 14,000 people and nearly 200 aircraft. In addition to our flagship Boeing 737s, our fleet also includes Boeing 787 Dreamliners and the De Havilland Dash 8-400.
We have been recognized for three consecutive years as Best Airline in Canada (2017-19) and awarded among travellers' favourite Mid-Sized Airlines in North America (2019). In 2024 we were recognized as one of Canada’s best employers by Forbes magazine.
We are committed to enriching the communities we serve. By working alongside local organizations and our national charitable partners, we are actively engaged and investing in the initiatives that matter most to our guests and our people.
At WestJet, we have a proud legacy as a leading Canadian employer, and we are working to remain a top talent destination. Browse our Jobs section to see current opportunities, and check out our Life section to learn more about our growth plans, culture, leadership and more.
Top Benefits
About the role
Why WestJet:
Every WestJet journey has the potential to enrich lives; a career with us is no exception.
WestJet arrived on the Canadian airline scene in 1996 and changed the industry for the better. We made air travel more affordable for Canadians and now we're going global.
Join us, this is where your career story takes off.
Overview of role:
The Assessor is accountable to ensure that information security risks in a Project, Control Domain, and/or Third Party Relationship(s) (of moderate scope and complexity) are identified, assessed, and reported and appropriate controls are agreed upon to remediate identified control deficiencies.
Key deliverables / responsibilities include:
-
Works with unique expertise and knowledge in Information Security and uses skills to identify Information Security related risks and controls to achieve organizational goals in creative and effective ways
-
Work closely with portfolio personnel, stakeholders, and senior management to identify Information Security & Privacy related risks and controls, in projects / initiatives / supplier arrangements.
-
Provide consultation to Strategic Sourcing, legal personnel, and any other stakeholders in the negotiation of Information Security related contractual clauses with suppliers.
-
Interpret and analyze organizational impact based on information security and related audit reports (viz. SOC1, SOC2, AUP, etc.).
-
Complete risk assessments of moderately complex new or existing technology / processes / supplier arrangements.
-
Provide Information security subject matter expertise on design and controls to business and suppliers during findings remediation
-
Raise Information Security exceptions and acceptances (as required) to ensure these are accurate and are supported by sound resolution plans.
-
Escalate potential or unresolved Information Security issues to management for resolution, as appropriate
-
Review and provide recommendations to Information Security policies, standards, guidelines/ processes.
-
Work to develop / advise in the implementation and improvement of systems and processes to support continual improvement in Compliance in the business.
-
Act as a subject matter expert in the application of laws and regulations, industry frameworks and standards related to IT Compliance.
-
Performs information control reviews to include system development standards, operating procedures, system security, programming controls, communication controls, backup and disaster recovery, and
-
system maintenance.
-
Produce metrics and analytics for management to gain insight for planning, design and to facilitate the identification of improvement opportunities.
-
Develop an in-depth knowledge of established processing catalog, privacy access and obfuscation request processes
Experience and qualifications:
-
Bachelor's Degree and 5+ years of Information Security experience preferred, or an equivalent combination of training and experience
Information security certification (e.g. CISSP, CRISC, CEH, SANS, ISO 27001) is desired -
Intermediate knowledge of Information Security risk, ITGC Controls, supplier due diligence, etc. is required
-
Thorough working knowledge of and demonstrated ability to apply common frameworks and models used for Information Security Risk and Compliance, such as ISO 27001, NIST CSF, COSO and CobiT
-
Strong knowledge of regulations and frameworks such as SOC2, SIG / AUP, GDPR, PIPEDA and PCI DSS
-
Intermediate knowledge of industry standards on Policies, Standards and Guidelines relating to information security risk
-
Sufficient knowledge and understanding of network security, application security, data security and cloud security domains is desired
-
Requires excellent problem-solving skills and good interpersonal and communication skills including influencing others
-
Possess intermediate consulting and analysis skills
-
Possess intermediate project management and time management skills
The benefits of being a WestJetter:
WestJet provides all WestJetters with a competitive total rewards package. On top of that, we offer:
-
A fun and friendly culture with colleagues who work together to win
-
Travel privileges for you and your family, effective from your start date
-
Savings and Benefit programs that are flexible to meet your specific needs
Think we are a fit? Apply now!
About WestJet Group of Companies
Together with WestJet's regional airline, WestJet Encore, we offer scheduled service to more than 100 destinations in North America, Central America, the Caribbean and Europe and to more than 175 destinations in over 20 countries through our airline partnerships.
Our Safety Promise
At WestJet, the safety and security of our people and our guests is a core value and at the heart of what we do. As safety and security is a shared responsibility, it is expected that you will use safe work practices to ensure your well-being and the safety of others.
WestJet recognizes that the use of Alcohol and Drugs can adversely impact a safe work environment and the well-being of others including guests, suppliers and the public, as well as place WestJet's operations at risk. All roles that are identified as safety sensitive are required to pass a Pre-Employment Alcohol and Drug Test as per WestJet's Alcohol and Drug Policy.
Our Commitment to Diversity and Inclusion
We embrace what makes us each unique, and what makes us uniquely WestJet – and that is our people. WestJet is committed to creating an inclusive workplace that celebrates our differences by way of diversity, equity, and inclusion. As an equal opportunity employer, we want to you bring your full self to work and feel appreciated for your contributions.
At WestJet, we welcome unique skills, experiences, and backgrounds - if you’re passionate and excited about this role, we encourage you to apply even if you do not meet every single qualification in the posting. We are committed to inclusivity, equity, and accessibility in the selection process. If you require an accommodation during the recruiting process, please let our Talent Acquisition team know.
We thank all applicants for their interest in WestJet; however, only those candidates who are selected will be contacted.
For more information about everything WestJet, please visit WestJet.com.
#LI-RM1
About WestJet
We took to the skies in 1996 with just over 200 employees and three aircraft operating service to five destinations. Today, The WestJet group of companies offers scheduled service to more than 100 destinations in North America, Central America, the Caribbean, Asia and Europe with a team of over 14,000 people and nearly 200 aircraft. In addition to our flagship Boeing 737s, our fleet also includes Boeing 787 Dreamliners and the De Havilland Dash 8-400.
We have been recognized for three consecutive years as Best Airline in Canada (2017-19) and awarded among travellers' favourite Mid-Sized Airlines in North America (2019). In 2024 we were recognized as one of Canada’s best employers by Forbes magazine.
We are committed to enriching the communities we serve. By working alongside local organizations and our national charitable partners, we are actively engaged and investing in the initiatives that matter most to our guests and our people.
At WestJet, we have a proud legacy as a leading Canadian employer, and we are working to remain a top talent destination. Browse our Jobs section to see current opportunities, and check out our Life section to learn more about our growth plans, culture, leadership and more.