Security Operations Analyst (contract)

KUBRA is looking for a Security Operations Analyst to join our Information Security team!

As a Security Operations Analyst your job will be to enhance and validate the compliance, integrity, and security of KUBRA's systems and services.

This is an 18-month contract opportunity with a hybrid work model based out of our office Mississauga, ON.

What you get to do every day

• Maintain the security infrastructure (Firewalls, IDS/IPS, AV, SIEM, FIM, servers etc)
• Monitor systems, software and skills to stay ahead of emerging threats:
• Participate in security investigations and Assist during Incident Response and Recovery activities.
• Maintain and enforce KUBRA’s IT management control framework that defines the institution’s overall approach to IT risk and control
• Participate in on-call rotation to respond, investigate and resolve Security Incidents
• Track and action alerts to ensure proper response is taken by coordinating the work efforts of internal teams and actions required of external service providers.
• Apply understanding of environment and operational issues to work with external or internal parties for implementation or optimization of specific SIEM use cases to help improve detection and response.
• Maintain the vulnerability security digest and provide updates to relevant parties
• Monitor threat feeds and provide regular threat intelligence updates.
• Conduct access control reviews on a case-by-case basis to systems and work with internal and external resources to update user control lists and provide reports.
• Assist in remediation tasks related to audits/penetration tests.
• Evaluate and provide guidance to exemption requests as per corporate policy and tandards, to advise of risk involved.

What kind of person should you be?

• Ability to detail and effectively discriminate relevant logs / security events
• Ability to handle multiple tasks and projects concurrently
• Excellent written and verbal communication skills
• Ability to plan and manage complex security projects, and meet the deadlines
• Excellent organization, time management and problem-solving skills
• Ability to handle pressure under minimum or no direct supervision

What skills do you need?

• Degree or equivalent Experience in Computer Information Systems Incident Handler certification i.e., E|CIH, GCIH, IHRP, CSIH, CIHE is required
• Other relevant certifications that are considered an asset including MCSE, CCNA, CCNP, GCIH, GCIA, GCFE, GREM, GCFA, GSEC etc.
• 1-2 years experience in a Security Operations role
• 1-2 years of experience in Incident Management and related processes
• Prior experience with Cloud based services (AWS/Azure) is considered a strong asset
• Prior experience architecting information security solutions considered a strong asset
• Knowledge of PCI DSS requirements is preferred

What can you expect from us?

• Award-winning culture that fosters growth, diversity and inclusion for all
• Free unlimited access to our refreshment stations (fully stocked with tea, coffee and other beverages)