Security Analyst
The Security Analyst is responsible for our client’s computer, network and cyber security. The Security Analyst administers all aspects of information security and is responsible for the identification, investigation and resolution of security events; as well as for conducting vulnerability audits and taking timely action to remediate findings. The Security Analyst is involved in the design, configuration and implementation of security solutions. They are also accountable for the creation and maintenance of standards, baselines, guidelines and procedures. The Security Analyst is expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures and guidelines and to actively work towards upholding and further developing those goals to improve the Information Security maturity level.
Responsibilities
- Identify security threats from normal traffic throughout the day
- Respond to security incidents and provide timely resolutions
- Defend corporate IT infrastructure against unauthorized access, modification, destruction and DDoS attacks.
- Implement, configure firewall equipment
- Monitor, respond to and rectify security incidents
- Proactively implement industry best practices on security
- Perform vulnerability and network scanning assessments
- Define, implement, maintain and enforce security policies, standards and procedures
- Define, review and update of security policies and standards
- Regular review and updates of security procedures
- Continuous improvement on security procedures
- Conduct annual security awareness training
- Conduct internal / external security audits including but not limited to CSAE 3416 SOC II, customer security questionnaires
- Lead role in security audits around finance
- Lead role in annual SOC II audits
- Lead role in conducting customer security questionnaires and audits
- Lead role in the security area for responses to Request for Proposal (RFPs)
- Training (self and others) and transfer of knowledge to other IT staff for ongoing improvement in systems and application securities
Qualifications
- 5 years of relevant experience in systems security
- Hands on experience managing/supporting/configuring Cisco firewalls
- Working knowledge of variety of security technologies in areas of: End Point Protection, Malware Protection (Network), Patch Management, URL filtering, Identity and Access management (IAM), etc.
- Proven ability to conduct research into Information Security issues and security products as required.
- CCNA certification (as a minimum)
- CISSP
- Proven analytical and problem-solving abilities
- Ability to effectively prioritize and execute tasks in a high-pressure environment
- Excellent written, oral, and interpersonal communication skills
- Proven ability to conduct research into Information Security issues and security products as required
- Proven ability to present ideas in business-friendly and user-friendly language
- Highly self-motivated; able to work with minimal supervision
- Keen attention to detail
- Team-oriented and skilled in working within a collaborative environment
Position Location: Brampton, ON