Information Technology Security Analyst

Job Posting Title:IT Security Analyst - 3

Description:Hiring Manager: Principal, Cybercrime Strategic Support

Location Address: Hybrid - – preference for candidates in GTA – for occasional meetings in office – mostly remote role

Contract Duration: 1 year Possibility of extension

Number of Positions: 2

Schedule Hours: 9am-5pm Monday-Friday; standard 37.5 hrs/week

Reason: New Team

Story Behind the Need

Business group:IS&C – Cyber Security Operations/Cybercrime & Security Investigations Services – cyber-crime related; from external and internal sources; HM is existing Director getting a new team; several teams in the group: discovery team which is legal component of cybercrime (if there is action or suit against the bank, team pulls data from email repository) – other team investigates malware; THIS team will be looking to do employee offboarding, security monitoring, and potential for other items to be tacked on - called the Cyber Crime Operational Resilience Team.

Project: 2 Contractors required to support employee offboarding. They will manage intake and workflow to ensure employee access and enhanced monitoring is performed.

Candidate Value Proposition:

The successful candidate will have the opportunity to be responsible for the accurate and timely disposition of internal resources while maintaining a high level of professionalism in a fast-paced environment; opportunity to WFH / mostly remote; flexible for work life balance.

Typical Day in Role:

• Identify security issues and risks, and develop mitigation plans • Participate in security compliance efforts using analytics-driven, awareness-driven, and intelligence-driven analysis methodologies to detect and mitigate threats across the enterprise.

• Take initiative on tasks and problem solving to provide solutions to issues as they may arise • Adhere to industry standards, methodologies and techniques when gathering, processing, handling and/or storing digital evidence • Develop and interpret security policies and procedures • Develop, support, maintain and continuously improve required instance reporting and interpret security policies and procedures • Continue to improve processes including feedback to areas under review • Develop and deliver training materials and perform general security awareness and specific security technology training • Evaluate and recommend new and emerging security products and technologies • Develop and implement processes and technologies to reduce costs and minimize business impact while strengthening security • Design, implement, support, and evaluate security-focused tools and services including project leadership roles • Role will start out being more focused on soft skills and more operational, with strong time management

Candidate Requirements/Must Have Skills:

1) 5+ years of experience as an IT Security Analyst

2) 2+ years’ experience and technical knowledge combination of: security engineering, system and network security, authentication and security protocols, cryptography, and/or application security.

3) 1+ experience with design, implementation, support, and evaluation of security solutions

Nice-To-Have Skills:

1) Experience in infrastructure or application-level vulnerability testing and auditing

2) Experience in leading projects

3) Knowledge of Data Management and Classifications

Soft Skills Required - *NOTE strong emphasis on soft skills for this role* • Ability to work independently to assess and analyze information and in a team environment to troubleshoot and provide feedback and/or assistance, as required.

• Excellent communication skills: Proficiency in technical and business writing and communication in English • A strong and consistent approach to critical thinking, data analytics and problem solving while maintaining both a creative and detailed orientation to job and team accountabilities • Ability to work extremely well under pressure while maintaining a high level of professionalism • Ability to prioritize and collaborate with other teams as well as your own

Education:

• Bachelor's degree in a technical field such as computer science, computer engineering or equivalent experience in a related field.

• Professional certifications and membership of associations in the field of information/cyber security preferred, but not required, such as: Global Information Assurance Certification (GIAC), Systems Security Certified Practitioner (SSCP), Certified Information Systems Security Professional (CISSP)

Best VS. Average Candidate:

• Best Candidate will have previous security experience with a well-rounded technical background in addition to excellent English language skills with both technical and business writing experience/skills.Need STRONG Soft skills.

• An average candidate will have some technical knowledge, with some hands-on experience and good technical and business writing experience/skills.

Candidate Review & Selection

2 rounds – MS Teams Video Interviews – standard, behavioral, knowledge based questions 1st round – with HM Panel with other Directors – 30 minutes 2nd round with HM and Panel – 30 minutes

Hiring Manager’s availability to interview:ASAP