It Security Analyst - Mitre

Best VS. Average Candidate:

Ideal candidate has experience merging all the requirement: developing use cases to detect security events and has the right working attitude.

Job Details:

Business group: Cyber Security Operations (CSO) team is responsible for protecting the Bank and responding to cyber threats and events. The Cyber Automation & Defense group within CSO is responsible for assessing, implementing, and administering enterprise security controls to safeguard Scotiabank’s informational assets and reduce security risk posture.

Project: Use Case Development - These roles are responsible for Development of security use cases for detection & protection for all security controls under Cyber Security and Use Case Development.

Candidate Value Proposition:

The successful candidate will have the opportunity to work within Scotiabank. We are technology partners who help the business transform how our employees around the world work. You will get to work with and learn from diverse industry leaders, who have hailed from top technology.

Typical Day in Role:

• Works as part of Cyber Automation & Defense (CAD) team and will be responsible for identifying security exposures in the organization’s network and advise on appropriate compensating controls.

• Works with other technology and security teams to develop use cases and implement controls needed to close exposures. The intent of the use cases is to detect and alert for security events.

• Thrives in a fast-paced environment coordinating multiple issues and threats that can be occurring simultaneously

• Solutions for multiple security domains (Security Management, Security Engineering, Identity and Access Management, etc.).

• Works on different types of projects (from large complex to simple)

• Collaborates with various business lines, IT support functions and IS&C Control function

• Analyze security exposures and identify the remedial and compensating factors in the organization’s network.

• Advise on appropriate implementation of compensating controls including priority and success criteria.

• Work with other technology and security teams to implement controls needed to close exposures.

Candidate Requirements/Must Have Skills:

1) 8+ years of hands-on technical working experience in management of security threats and use case development based on MITRE Framework

2) 2+ years’ experience in Google Security Command Centre (preferred) or Microsoft Defender

3) 2+ years’ experience building XDR content, securing databases/AIX/Unix/Linux/Mac

4) 2+ Experience building and running a TTTP framework methodology for pattern and behavior-based content development

5) 2+ years’ combined experience with involving red team (Vulnerability Assessments, Web app assessments), consulting (Compliance, policy creation), SOC and Device Management

Nice-To-Have Skills:

• Bilingual in Spanish is a strong asset

• Experience conducting security research

• Experience with having sized, deployed, maintained, and hardened SIEM and NGFW solutions

Soft Skills Required:

• Has advanced communication (verbal/written/presentation) skills

• Strong problem-solving skills, collaborating across the organization to solve complex problems

• Strong team player – needs someone who can collaborate effectively

Education:

• Post-secondary education in Computer Science or in a related field

• Certifications (CISSP, CISM, CCSP, CRISC) are nice to have