Canada- Security Analyst I

PointClickCare•Mississauga, ON

3d•Remote

About The Position

At PointClickCare, our mission is to help providers deliver exceptional care, starting with our people. As a leading health tech company, we empower our employees to innovate and shape the future of healthcare. We have the largest long-term and post-acute care dataset and a Marketplace of over 400 integrated partners, serving millions of lives. We reinvest significantly in R&D to ensure our employees have the resources to innovate. Recognized by Forbes as a top private cloud company and one of Canada's Most Admired Corporate Cultures, we offer flexibility, growth, and meaningful work. We empower our people to be architects of a smarter, human-first healthcare future, accelerated by AI. Employees harness AI as a catalyst for creativity, productivity, and decision-making, enhancing collaboration and improving outcomes. Our hiring practices uncover AI expertise, and we invest in training to nurture innovation. This role involves planning and carrying out security measures to protect PointClickCare’s networks, data centers, cloud deployments, endpoints, and systems, including our Software as a Service environment. The Information Security Analyst will contribute to enhancing security operations, cyber defense, and vulnerability management through automation, tool evaluation, and AI solutions. This role will also act as a lead on specific projects and technologies, ensuring effective implementation and management of security tools to improve PointClickCare's security posture.

Requirements

Proven experience with security software, such as: SIEM, Vulnerability Scanning, Advance Endpoint Protection (Anti-virus/Anti-Malware), Privilege Access Management, Data Loss.
Working technical knowledge of IT technical environments with a strong understanding of IP, TCP/IP, network administration protocols, Access Control methods, WAFs, Firewalls, and virtualized access control solutions (e.g., Network Security Groups).
Understanding/working knowledge of Windows, Active Directory, Group Policy, DNS, and Apple operating systems.
Comfortable working alongside agentic AI systems in day-to-day security operations — including triaging alerts, reviewing AI-generated findings, and validating autonomous response actions before or after execution.
Basic understanding of how large language models (LLMs) function, including prompt construction, context management, and interpreting model outputs critically rather than accepting them at face value.
Ability to write simple skills or playbooks that extend agentic security platforms — such as defining investigation steps, enrichment logic, or response actions in structured formats (YAML, JSON, or platform-native DSLs).
Exposure to MCP (Model Context Protocol) or similar tool-integration frameworks; able to configure or write basic integrations that connect AI agents to external security tools (e.g., SIEMs, ticketing systems, threat intel feeds, EDR platforms).
Familiarity with security automation concepts — including trigger/condition/action logic, API-based integrations, and basic scripting (Python preferred) to build lightweight connectors or transform data between tools.
Able to recognize when an AI agent's output or behavior is anomalous, incorrect, or requires human escalation — demonstrating sound judgment in human-in-the-loop workflows.
Ability to work independently, engage leadership as needed, and be proactive in advancing company security posture.
Extensive working knowledge of information security and vulnerabilities/threats, security best practices, tools, and techniques, including encryption.
Experience working with Python and PowerShell.
Experience in managing/administering Linux OS variants, PowerShell, bash/shell scripting, python.

Nice To Haves

Experience working with Python and PowerShell
Experience in managing/administering Linux OS variants, PowerShell, bash/shell scripting, python

Responsibilities

Primary point of contact to facilitate daily monitoring, assessing, and reporting of security incidents from the SIEM platform.
Manage processes relating to the installation, maintenance, and operation of security infrastructure including SIEM, anti-virus, DLP, PAM, IAM, etc.
Perform ad hoc threat risk assessment (TRA) on infrastructure and systems as well as cloud-based solutions and facilitate remediation tasks with other operational teams.
Work independently and with the team to determine new methods of automating existing workflows (e.g., through the use of AI tools, automation frameworks, and workflow management solutions).
Assist with ongoing Vulnerability Management program to perform routine vulnerability scans and working closely with SaaS Operations and Corporate Technology teams to coordinate remediation of identified findings.
Assist with the evaluation of security tools and processes in conjunction with Director, Security Operations.
Recommend improvements to security tools, configurations, processes, and policies.
Report monthly security KPIs, change requests, incidents, and threats/events.
Provide advice and apply experience to help tune alerting to reduce false positives.
Actively assist with Security Incident Response process and support security investigations by documenting findings and root causes as and when needed.
Research and assess new threats and security alerts and determining relevance to company environments and staff.
Work closely with key business groups across the organization to develop and maintain a proactive company-wide security presence.
Act as a technical lead in security-related projects/initiatives such as new security solutions to improve the overall security posture of PointClickCare.
Assist with periodic security audits on current PointClickCare infrastructure, and work with appropriate team(s), such as Security, Corporate Technology, SaaS Operations and other departments to remediate any vulnerabilities found.
Participate in security investigations and compliance reviews, as requested by the GRC team.
Complete other duties as assigned.