KUBRA is looking for a Security Operations Analyst to join our Information Security team!
As a Security Operations Analyst your job will be to enhance and validate the compliance, integrity, and security of KUBRA's systems and services.
This is an 18-month contract opportunity with a hybrid work model based out of our office Mississauga, ON.
What you get to do every day
- Maintain the security infrastructure (Firewalls, IDS/IPS, AV, SIEM, FIM, servers etc)
- Monitor systems, software and skills to stay ahead of emerging threats:
- Participate in security investigations and Assist during Incident Response and Recovery activities.
- Maintain and enforce KUBRA’s IT management control framework that defines the institution’s overall approach to IT risk and control
- Participate in on-call rotation to respond, investigate and resolve Security Incidents
- Track and action alerts to ensure proper response is taken by coordinating the work efforts of internal teams and actions required of external service providers.
- Apply understanding of environment and operational issues to work with external or internal parties for implementation or optimization of specific SIEM use cases to help improve detection and response.
- Maintain the vulnerability security digest and provide updates to relevant parties
- Monitor threat feeds and provide regular threat intelligence updates.
- Conduct access control reviews on a case-by-case basis to systems and work with internal and external resources to update user control lists and provide reports.
- Assist in remediation tasks related to audits/penetration tests.
- Evaluate and provide guidance to exemption requests as per corporate policy and tandards, to advise of risk involved.
What kind of person should you be?
- Ability to detail and effectively discriminate relevant logs / security events
- Ability to handle multiple tasks and projects concurrently
- Excellent written and verbal communication skills
- Ability to plan and manage complex security projects, and meet the deadlines
- Excellent organization, time management and problem-solving skills
- Ability to handle pressure under minimum or no direct supervision
What skills do you need?
- Degree or equivalent Experience in Computer Information Systems Incident Handler certification i.e., E|CIH, GCIH, IHRP, CSIH, CIHE is required
- Other relevant certifications that are considered an asset including MCSE, CCNA, CCNP, GCIH, GCIA, GCFE, GREM, GCFA, GSEC etc.
- 1-2 years experience in a Security Operations role
- 1-2 years of experience in Incident Management and related processes
- Prior experience with Cloud based services (AWS/Azure) is considered a strong asset
- Prior experience architecting information security solutions considered a strong asset
- Knowledge of PCI DSS requirements is preferred
What can you expect from us?
- Award-winning culture that fosters growth, diversity and inclusion for all
- Free unlimited access to our refreshment stations (fully stocked with tea, coffee and other beverages)