Cybersecurity Analyst Sr

About The Position

Requirements

• Excellent knowledge of Cybersecurity detects and response methodologies using a wide range of technologies, standards and best practices.
• Strong understanding of the Incident Response lifecycle.
• Strong communication and reporting skills, with ability to document incidents, provide insights, and collaborate across teams.
• Proven capability to identify anomalous behavior, assess threats, and determine impact and root cause.
• Knowledge of the threat landscape, common attack vectors and the use of security tools to monitor the technology infrastructure and computing environment.
• Understanding of complex, enterprise-wide information systems security architecture and how network, application and host-based security controls work.
• University Degree (bachelor).
• 3 years relevant experience in Information Security or Cybersecurity.
• 2 years’ relevant experience in incident respond in SOC environment.
• Experience leading cyber incident respond.
• Experience in threat hunting.

Nice To Haves

• Certifications: OSCP CASP ISACA CDPSE SANS 504: Security Incident Responder GCIH Certified Incident Handler SANS 503: Intrusion Detection SANS 500: Windows Forensic Analysis SANS GREM SANS GXPN InfoSec Security Engineering

Responsibilities

• Ensure computing platform compliance with Cybersecurity policies and directives.
• Use provided tools to perform continual monitoring and analysis of system activity to identify malicious activity and configure mitigations.
• Coordinate with other departments to manage and administer the updating of rules and signatures across the information security stack (e.g. intrusion detection/protection systems, anti-virus, and content blacklists).
• Identity and recommend actions to address vulnerabilities in the computing environment or inconsistencies in existing security processes.
• Conduct research, trend analysis, correlation and reporting across a wide variety of internal and external source data sets (e.g., network, OS, DB and application logs and alerts).
• Provide timely detection, identification, and alerts of possible attacks/intrusions, anomalous activities, and misuse activities, and distinguish these incidents and events from benign activities.
• Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack.
• Analyze identified malicious activity in the computing environment to determine weaknesses exploited, exploitation methods, and effects on system and information.
• Participate or lead Cyber incident detection, investigation, and response.
• Participate in Cybersecurity awareness and training exercises.
• Advise on Cybersecurity policies, industry standards, best practices, and strategies.
• Participate in On-Call and shift rotation when needed.
• Provide summary reports of network events and activity relevant to CDO including trend analysis.
• Monitor external data sources to maintain currency of threat condition and determine and report on security issues may have an impact on Fidelity.
• Support CDO reporting activities.

Benefits

• flexible, hourly compensation model
• hourly rate ranges from $54.00 to $71.00
• compensation package that aligns with provincial pay transparency requirements