Security Analyst (Soc Analyst)

Position Summary

As a member of the IT Security Operations Team the Information Security Analyst is responsible for providing information technology security operations services including monitoring information technology security and cyber security events and responding to events and threats identified within the organization. The Information Security Analyst will also be responsible for testing and auditing information technology security controls and identifying vulnerabilities within newly developed technology solutions and those already deployed.

The Information Security Analyst will also support the company in the implementation and operationalization of its information technology security roadmap focused on safeguarding the organization’s data, computer networks, on premise and cloud systems through risk management processes. The Information Security Analyst will contribute to IT Security Operations continual improvement efforts focused on maturing information security standards and best practices for the company.

The IT Security Operations team provides 24x7x365 support and therefore candidates must be able to participate in an outside of business hour on call rotation.

Key Responsibilities

• Understanding threat intelligence feeds and incorporate them into security platforms and tools
• Responding to events generated by The company’s security platforms and tools
• Performing threat hunting in cloud and on-prem networks to detect and isolate threats
• Promoting and facilitating security awareness and training for all The company teammates
• Assist in the development of company-wide best practices for information technology security
• Maintaining up-to-date understanding of IT prevailing security threats, countermeasures, security tools and network technologies
• Developing and maintaining incident response play books and standard operation procedures
• Correlating highly technical information from multiple sources to determine the validity, risk from information technology security platforms and technology system logs

Qualifications

Education and Experience

• Experience with leading information security standards and best practices
• Minimum five (5) years of IT operations experience with progressive responsibilities
• Degree or diploma in Information Technology Security or Computer Science
• Minimum three (3) years information security or other IT infrastructure security experience
• Ability to review and test protection of systems and applications.
• Ability to understand and communicate business risks in relation to technology risks
• CEH, GEVA, GPEN, OSCP or OSEP equivalent certification(s) an asset

Technical

• Strong experience with common information security tools and platforms
• Direct experience with information security infrastructure, systems and controls including:

- SIEM

- EDR

- EPP

- XDR

- SWG

- Windows Conditional Access