Sr Cyber Security Analyst

About The Position

Requirements

• 7+ years of professional experience working in cybersecurity or information security roles, including 3+ years performing senior-level responsibilities such as incident response leadership, technical decision-making, and ownership of complex initiatives.
• Proven record of implementing and scaling enterprise-level cybersecurity solutions.
• Hands-on experience conducting third-party cybersecurity risk assessments, including vendor control reviews and use of Third-Party Risk Management (TPRM) platforms and assessment tools, within regulated environments handling sensitive data (e.g., healthcare, financial services, or similar industries).
• Ability to effectively communicate with technical and non-technical stakeholders in written, oral, and presentation formats.
• Knowledge of cybersecurity frameworks and models, including NIST CSF, ISO 27001, and a deep understanding of Zero Trust model, with in-depth understanding of vulnerabilities and threats (CVE, MITRE ATT&CK, OWASP).
• Advanced expertise in security operations technologies, including SIEM (event correlation, enrichment, tuning, validation), endpoint security solutions such as, next-generation AV, EDR, UEM, privilege management, Data Loss Prevention, and modern Identity and Access Management solutions (OAuth2, SAML 2.0), including Active Directory and Microsoft Entra ID environments.
• Hands-on experience with network security technologies such as firewalls, IDS/IPS, network threat protection, URL filtering, DDoS mitigation, and email security platforms.
• Familiarity with cloud security fundamentals across AWS, GCP, and Microsoft Azure, as well as Windows, MAC, and Linux operating systems in physical and virtualized environments, including working knowledge of PKI.
• Practical experience with administration of Network Access Control technologies.

Nice To Haves

• Relevant security certifications such as CISSP, CISM, or Microsoft AZ-500 and familiarity with third-party risk and cloud assessment frameworks such as SIG or CAIQ.
• Experience operating in healthcare, pharmacy, or other highly regulated environments.

Responsibilities

• Act as a cybersecurity subject matter expert, owning projects from initiation through successful implementation, while collaborating with technical and non-technical departments to ensure adherence to established cybersecurity standards.
• Integrate, enhance, and tune existing cybersecurity technologies to address inherent and residual risk, including improvements to logging coverage, policy configuration, and control effectiveness; deploy logging, alerting, and auditing configurations to support 24/7 monitoring (SOC); and review and tune native network, endpoint, and cloud technologies based on best practices.
• Understand cybersecurity maturity and contribute to governance, compliance, and audit activities by providing evidence and technical input for assessments and audits.
• Identify, prioritize, and drive remediation of security vulnerabilities in partnership with infrastructure and development teams, validating completion.
• Research technologies to identify, recommend, and deploy best-in-breed third-party security solutions.
• Research emerging threats, attack vectors, and techniques.
• Assist in the assessment of third-party vendors by evaluating cybersecurity risk, reviewing security controls, and providing technical input to support risk decisions.
• Help define, document, and test incident response playbooks.
• Triage and respond to cybersecurity events, alarms, and incidents in partnership with the 24/7 security operations team (SOC), and provide technical guidance and mentoring to peers, less experienced analysts, and project stakeholders.

Benefits

• Flexible Benefits: For eligible roles, enjoy flexible medical and dental coverage that fits your needs.
• Defined Work Schedule: Offers a healthy work-life balance with predictable hours.
• Supportive Culture: Be part of a respectful, inclusive workplace where collaboration, connection and shared purpose drive everything we do.
• Stability and Growth: Join a well-established Canadian company with a strong foundation for job security and opportunities to grow your career.
• Appreciation in Action: We recognize great work through peer-nominated awards, team shout-outs and everyday moments of appreciation.
• Celebrations and Community: From cultural events to team socials and holiday fun, we make time to connect, celebrate and enjoy the moments that bring us together.