Sr. Analyst, Information Security
About The Position
CIBC’s Security Operations Centre (SOC) manages the lifecycle of Information Security, especially Incident Response. As a Sr. Analyst, Information Security on the SOC team, your responsibilities will include triaging information security alerts and events, security risk and impact assessments, escalating risk or impact events for further investigation, and finally, documentation and reporting. You will ensure that the monitoring of information security alerts are being identified, tracked, and remediated. In this role you will be responsible for monitoring security alerts, performing triage, and escalating risk or impacting events through the SOC’s incident response process. At CIBC we enable the work environment most optimal for you to thrive in your role. You’ll have the flexibility to manage your work activities within a hybrid work arrangement where you’ll spend 1-3 days per week on-site, while other days will be remote. This role requires you to work on-site & remote from home in a rotational multi-day / 12 hrs shift support environment that can include working holidays.
Requirements
- Strong understanding or experience in an Information Security Operations role including aspects of Cyber Security Frameworks (NIST), CIA Triad, and basic risk assessment methodologies.
- Good understanding of security threats (e.g. malware, network threats, etc.).
- Experience in various network and computer security investigation tools (SIEM, NIDS, Firewalls, etc.).
- Working knowledge of log analysis and networks.
- Degree/diploma in Information Technology.
Nice To Haves
- Previous experience in a SOC or NOC is an asset.
- Certified in Comptia Security+, SSCP (Systems Security Certified Practitioner) or related Microsoft designations.
- Any previous experience with SOAR, SIEM or OSINT tools or familiarity with Cloud technologies would be an asset.
Responsibilities
- Perform triage of all information security alerts sent to the SOC through both technical monitoring and other notification mechanisms (telephone, email).
- Provide a basic level risk assessment of the security alerts.
- Understand the parameters for escalation and execute quickly on those parameters.
- Ensure all SLA/SLO expectations are met.
- Upon completion of alert triage, have an ability to effectively and thoroughly document the technical, risk, impact, and outcomes of the triage to support both investigation escalation and management reporting.
- Assist in process documentation currency to ensure up to date triage functions.
- Have a strong ability to work in a dynamic team environment (both onsite/in-office and remote) to ensure effective SOC operations to with a goal of information security risk reduction.
Benefits
- Competitive salary
- Incentive pay
- Banking benefits
- Benefits program
- Defined benefit pension plan
- Employee share purchase plan
- Vacation offering
- Wellbeing support
- MomentMakers, our social, points-based recognition program.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
Associate degree
