Cybersecurity Analyst

About The Position

Requirements

• Degree or diploma in Computer Science or a related field. (minimum 3 years)
• Current and valid Class 5 B.C. Driver’s Licence.
• Minimum of 4 years of related experience, including supervisory experience or an equivalent combination of education and experience.
• Solid understanding of networking protocols, operating systems (Windows, Linux), and security concepts.
• Knowledge of scripting languages (e.g., Python, PowerShell).
• Knowledge of security principles and best practices
• Proficiency in utilizing various security assessment tools and frameworks for both IT/OT including but not limited to Kali Linux, Nessus, Burp Suite, CIS benchmarks, MITRE ATT&CK, intrusion detection/prevention systems (IDS/IPS), firewalls, and endpoint protection platforms.
• Experience with Microsoft Security stack (MDO, MDE, MDI, Purview and Sentinel).
• Familiarity with both Red and Blue (Purple) team cybersecurity activities to provide both proactive and reactive cyber incident response.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills, with the ability to explain technical concepts to both technical and non-technical audiences.
• Ability to work independently and as part of a team.
• Strong attention to detail and ability to prioritize tasks.
• Required to obtain enhanced security and criminal record clearance.
• Required to sign attestation of confidentiality.

Nice To Haves

• Familiarity with digital forensics principles and tools is preferred.
• Familiarity with web application security concepts such as OWASP Top 10.
• Familiarity with Cybersecurity Frameworks for both IT/OT such as NIST CSF 2.0, ISO27001/27002 and CIS v8 etc.

Responsibilities

• Conduct regular vulnerability assessments, penetration testing and threat hunting to identify security weaknesses in systems and applications.
• Analyze identified vulnerabilities and threats to assess potential risks to the organization’s data, systems, and operations. Develop and recommend mitigation strategies.
• Monitor network traffic, security logs, and system activity for suspicious behavior and potential security breaches using tool such as ERD, SIEM tools, IDS/IPS, email security, user reports, and others.
• Participate in the investigation of security incidents, including containment, eradication, and recovery efforts. Perform security investigations and post-event analysis ensuring security incidents are thoroughly documented.
• Assist in the development, implementation, and maintenance of cybersecurity policies, standards, and procedures, ensuring alignment with relevant compliance standards (FIPPA, NIST, CIS, and police agency regulations).
• Develop and deliver security awareness training to employees to promote best practices and reduce the risk of human error.
• Stay up to date on the latest cybersecurity threats, vulnerabilities, and attack vectors.
• Install, maintain, and operate security software systems.
• Provide technical guidance and subject matter expertise to the Economic Crime Unit (Cybercrime) investigators.
• Act as a technical consultant and advisor on investigations or community consultations that require a significant technical skill and expertise.
• Provide ongoing training and support to the Economic Crime Unit (Cybercrime) on the use of cybersecurity tools and techniques.
• Provide a consistent civilian perspective and expertise within the Economic Crime Unit (Cybercrime).
• Prepare clear and concise technical reports and documentation and evidence for investigations and incident responses, charge assessment, and prosecution. This position may require attendance in court as a witness.
• Perform security data analysis for risk reduction, threat detection, investigation, and evidence preservation.
• Support investigations and operational decisions with knowledge of criminal law.
• Perform related duties where qualified.

Benefits

• CUPE Local 50 position