Security Operations Analyst

What you get to do every day!

• Maintain the security infrastructure (Firewalls, IDS/IPS, AV, SIEM, FIM, servers etc)
• Perform firewall operational tasks as approved 
• Monitor systems, software and skills to stay ahead of emerging threats: Lead or participate in security investigations and Assist during Incident Response and Recovery activities.
• Maintain and enforce KUBRA’s IT management control framework that defines the institution’s overall approach to IT risk and control
• Participate in on-call rotation to respond, investigate and resolve Security Incidents
• Track and action alerts to ensure proper response is taken by coordinating the work efforts of internal teams and actions required of external service providers.
• Apply understanding of environment and operational issues to work with external or internal parties for implementation or optimization of specific SIEM use cases to help improve detection and response.
• Maintain the vulnerability security digest and provide updates to relevant parties 
• Monitor threat feeds and provide regular threat intelligence updates.
• Conduct access control reviews on a case-by-case basis to systems and work with internal and external resources to update user control lists and provide reports.
• Assist in remediation tasks related to audits/penetration tests.
• Participate in internal and external table-top exercises related to cybersecurity.
• Assist in development of process and procedure documents for Security Operations.
• Evaluate and provide guidance to exemption requests as per corporate policy and standards, to advise of risk involved.

What kind of person should you be?

• Ability to detail and effectively discriminate relevant logs / security events
• Ability to handle multiple tasks and projects concurrently
• Excellent written and verbal communication skills
• Ability to plan and manage complex security projects, and meet the deadlines
• Excellent organization, time management and problem-solving skills
• Ability to handle pressure under minimum or no direct supervision

What skills do you need?

• A minimum of 2 years of experience in managing a SOC
• A minimum of 2 years of experience in a Security Operations role
• 2+ years of experience in Incident Management and related processes
• Prior experience with Cloud based services (AWS/Azure) is considered a strong asset
• Prior experience architecting information security solutions considered a strong asset
• Knowledge of PCI, SOC, SOX and other standards is preferred
• Degree or equivalent Experience in Computer Information Systems
• Incident Handler certification i.e., E|CIH, GCIH, IHRP, CSIH, CIHE is required
• Other relevant certifications that are considered an asset include MCSE, CCNA, CCNP, GCIH, GCIA, GCFE, GREM, GCFA, GSEC etc.

What can you expect from us?

• Award-winning culture that fosters growth, diversity and inclusion for all
• Paid day off for your birthday
• Annual performance based bonuses
• Access to LinkedIn learning courses
• Continued education with our education reimbursement program
• Flexible schedules
• Free unlimited access to our refreshment stations (fully stocked with tea, coffee and other beverages)
• Two paid days for volunteer opportunities
• Access to Perkopolis retail discounts
• Generous benefit coverage with low premiums (+ a Health Care Spending Account)
• RRSP Matching