Security Analyst Jobs

Security Analyst - Incident Response (Permanent Position)

Number of Positions: 1 Filled: 0 Duration: -

Location: Markham, ON, CA

Must be eligible to work in Canada

FT perm hybrid position either for the Markham or Toronto locations

Looking for an experienced cybersecurity incident responder who can manage incidents at Tier 3 level and also experienced in investigating cybersecurity incidents using incident response tools. The Cybersecurity Analyst – Incident Response role will also support internal fraud and financial crime investigations where there is a cyber element. This is an on-call rotating position to provide prompt response to mitigate impact. a 24/7.

The incumbent will have experience with Information Technology and solid level knowledge of Information Security principles. The incumbent will also experience in one of more of these areas: triaging IT security risks such as phishing or data loss; conducting threat analysis of existing or emerging cyber risk; and/or, performing threat hunting to identify existing IT security risks related to system, applications, and data.

Required skills:

At least 5 years of experience directly working in cybersecurity incident response, preferably in a large financial services institution.

Strong incident response technical skills, knowledge of network protocols and network communication principles, understanding of vulnerabilities and remediation techniques.

Demonstrated ability to analyze cybersecurity alerts to determine business impact and selecting containment and remediation activities that appropriate recovery.

Maintain effectiveness of incident response tools, including EDR, SIEM, and SOAR, by identifying enhancement opportunities in configuration and alerting rules while practicing and improving practical skills.

Conduct detailed technical investigation of cybersecurity incidents and identified root causes including threat vector, technique and tactics.

Demonstrated ability to establish effective working relationships and collaborative work approaches with both internal and external peers.

Obtained or pursing a recognized cybersecurity incident response or related certification, such as CISCP, OSCP, CIH, CHFI etc.

Experience reviewing, analyzing, discussing, explaining, and reporting cyber threats and results.

Strong interpersonal and communication skills, ability to respond to multiple incidents simultaneously and in a prioritized matter.

Preferred candidates will also have experience in threat hunting OR threat intelligence OR forensics, in addition to cybersecurity incident response.

EDUCATION & CERTIFICATION.

University Degree in Computer Science or Computer Engineering

Certifications in cybersecurity incident response