Senior Cyber Security Analyst

About The Position

Requirements

• 5 – 8+ years of hands-on cyber security experience in security operations, engineering or SOC environments.
• Degree (or equivalent diploma or certifications) in Computer Science or Information Systems.
• Proven experience managing and optimising enterprise security tools, including SIEM, EDR, email security, and PAM.
• Knowledge of information security principles, best practices, and industry standards (e.g., ISO 27001, NIST, CIS Controls).
• Advanced understanding of networking, AWS and Azure cloud computing platforms and Windows operating systems.
• Understanding of network security, cloud security, application security, basic use of encryption, firewalls, and intrusion detection/prevention systems.
• Familiarity with regulatory requirements related to data protection and privacy (e.g., GDPR, CCPA).
• Analytical mindset with the ability to assess risks, analyse security incidents, and implement appropriate measures.
• Strong communication skills with the ability to engage technical and non-technical stakeholders.
• Proactive approach to staying updated with the latest cybersecurity trends, threats, and technologies.

Nice To Haves

• Industry certifications such as CISSP, CISM, or CISA are preferred.
• Scripting and automation skills (PowerShell, Python) considered an asset.

Responsibilities

• Develop and execute DIRTT’s cybersecurity strategy.
• Monitor and respond to cybersecurity threats and incidents.
• Own vulnerability management process and remediation tracking.
• Manage cyber security vendor relationships and tools.
• Administering, maintaining, and supporting all cybersecurity hardware and software.
• Work closely with internal teams and external agencies to investigate security events.
• Classifying and prioritizing the risk of new vulnerabilities to DIRTT.
• Help develop and deliver cybersecurity awareness training programs to educate employees about potential cyber threats and best practices.
• Contribute to cybersecurity policies, standards, and procedures.
• Foster a culture of security consciousness throughout the organization.
• Conduct periodic security audits and risk assessments to identify weaknesses and areas of improvement.
• Support audits and compliance initiatives (SOX, ITGC, etc.).
• Implement corrective actions and measures to address identified vulnerabilities.
• Ensure third-party services meet security standards and contractual obligations.
• Stay up-to-date with emerging threats and technologies in the cybersecurity landscape.

Benefits

• A competitive base salary plus a variable pay (bonus) program.
• Eligibility to participate in DIRTT’s Employee Share Purchase Plan.
• For in-office roles: continental breakfast, coffee, tea, soda, daily hot cafeteria lunch, and snacks to keep you energized.
• Comprehensive health benefits, including medical, dental, and vision coverage, designed to keep you and your family healthy.
• Disability and insurance benefits to protect you and your loved ones, including short- and long-term disability, life insurance, dependent coverage, and voluntary options with certain benefits varying by location.
• Mental health and wellbeing support, including an Employee Assistance Program (EAP).
• A thorough and supportive onboarding program designed to set you up for success.