Cyber Analyst

About The Position

Requirements

• Post-secondary education, or equivalent experience in computer science, information systems, or related fields.
• Minimum three (3) years’ experience in a combination of information security, information risk management, or information systems related roles.
• Experience in security operations, incident response and threat hunting.
• Experience with Python and PowerShell scripting.
• Experience with a modern SIEM (Google SecOps, CrowdStrike etc.)
• Knowledge of and experience in cyber information sharing and analysis networks.
• Ability to work outside of regular working hours based on operational requirements.
• Ability to participate in on-call rotation.
• Occasional overnight travel outside of the Ottawa area is required.
• Eligibility to obtain and maintain a GoC Reliability Clearance and successfully complete enhanced background checks that may be carried out by Payments Canada.

Nice To Haves

• Industry certifications (GCIA, GCIH, OSCP, CISSP, CISA, etc.) are considered assets.
• Experience in secure procurement of security technologies and architecture is considered an asset.
• Familiarity with cloud security (AWS, Azure, GCP) or container security is considered an asset.
• Knowledge of federal government priorities in relation to financial sector policy is considered an asset.
• Knowledge of international issues respecting the financial services sector is considered an asset.
• Familiarity with the Criminal Code of Canada as it applies to cyber issues is an asset.
• Knowledge of the Canadian financial services industry is considered an asset.
• Bilingualism (English and French) is considered an asset.

Responsibilities

• Perform advanced cyber intrusion detection/analysis and forensic review, recommending areas requiring further investigation and remediation.
• Prepare reports and briefing notes to support the Manager, Security Monitoring and Response and Chief Information Security Officer in developing and maintaining trusted relationships with Financial Institutions, Financial Market Infrastructures, regulators, government agencies, utilities, and other relevant organizations.
• Conducting security and risk analysis including IT vulnerability and risk assessments, penetration testing, risk control evaluation, security requirements identification, and verification.
• Working closely with the IT team and management in assisting in the resolution of cyber security events and incidents and recovery.
• Enhance existing, and create new, incident response playbooks.
• Leverage automation and artificial intelligence in the support of detection response.

Benefits

• Flexible, hybrid (remote/office) environment.
• Competitive compensation package, including annual variable bonus and defined contribution pension plan with employer matching percentage (if eligible).
• Comprehensive health and dental benefit coverage, including mental health coverage, life insurance and a health spending account for you and your dependents (Permanent and temporary employees with contracts 12 months and over).
• Paid time off: minimum four weeks paid vacation, sick and personal days, December holiday shutdown and cultural holiday observance days.
• 26 weeks of paid maternity and parental leave top-up (if eligible)
• Rewards and recognition program.
• Access to office gym facilities.
• Internal and external professional development opportunities.
• Fun team and organizational events.
• Monthly all staff forums led by our Executive Leadership Team.