Sr Security Operations Analyst

Position Title – Sr Security Operations Analyst 
Location – Etobicoke/Hybrid
Estimated Duration: 2 Months

Reporting to the Sr. Manager, Security Architecture and Operations, the Senior Security Operations Analyst is responsible for supporting operational activities related to the execution of the information security roadmap.
 
The Senior Security Operations Analyst role requires an individual with a strong technical background, as well as an ability to work with IS and business management. The Senior Security Operations Analyst will also be responsible for working with business and IT stakeholders to balance real-world risks with business drivers such as speed, agility, flexibility, and performance.

Expertise in developing and managing security projects is essential for success in this role. In addition, the Senior Security Operations Analyst must be able to prioritize work efforts — balancing operational tasks with longer-term strategic security efforts. Other project management tasks will include task prioritizing and project status reporting. Vendor relationship management is also an important aspect of the position.

Key Responsibilities

• Manage the process of gathering, analyzing, and assessing the current and future threat landscape, as well as providing the Sr. Manager, Security Architecture and Operations with a realistic overview of current risks and threats in the enterprise environment.
• Mentor and provide coaching to a team of information security professionals, including recommending personal and technical development resources for team members.
• Work with our internal Communications and Learning teams to provide security awareness and training for a wide range of audiences, which ranges from senior leaders to field staff.
• Participate as a member of Change Advisory Board (CAB) meetings to identify and raise security concerns related to proposed IT changes a ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications and software.
• Oversee security aspects of public cloud environment to ensure there is full visibility into the ongoing operations and that its security architecture aligns with industry best practices.
• Work with the Sr. Manager, Security Architecture and Operations and IT and business stakeholders to define metrics and reporting strategies that effectively communicate successes and progress of the security program.
• Recommend and coordinate the implementation of technical controls to support and enforce defined security policies.
• Research, evaluate, design, test, recommend or plan the implementation of new or updated information security hardware or software, and analyze its impact on the existing environment; provide technical and managerial expertise for the administration of security tools and ensure that they are optimally configured to address security risks.
• Work with the vendor that provides our outsourced managed detection and response (MDR) service provider by raising and escalating potential security incidents.
• Oversee the day-to-day activities of threat and vulnerability management, identify risk tolerances, recommend treatment plans, and communicate remediation status.
• Ensure audit trails, system logs and other monitoring data sources of key systems are being ingested by the SIEM and appropriate alerts have been configured to identify potential threats.
• Engage external consultants to conduct security penetration tests of systems, networks and applications, and manage the remediation of identified risks.

 
Required Knowledge and Experience

• A minimum of seven years of IT experience, with five years in an information security role.
• A bachelor's degree in information systems or equivalent work experience; an MBA or MS in information security is preferred.
• CISSP and/or CCSP certifications are desirable.
• A minimum of 2 years experience in administration/management in Amazon Web Services (AWS) is required.
• Strong leadership skills and the ability to work effectively with business managers, IS operations staff with the capability to develop and guide information security team members and work with minimal supervision.
• Excellent verbal, written and interpersonal communication skills.
• Hands-on experience with security technologies and tools such as SIEM, IPS, EDR, MDM, web content filters and email security gateways is a must.
• A strong understanding of the business impact of security tools, technologies and policies.
• Experience with common information/security management frameworks, such as International Standards Organization (ISO) 2700x, IT Infrastructure Library (ITIL) and National Institute of Standards and Technology (NIST).
• Strong project management skills and experience in creating and managing project plans, including budgeting and resource allocation.
• Strong analytical skills to analyze security requirements and relate them to appropriate security controls.
• A strong understanding of Windows and Linux operating systems, and network protocols.
• Extensive experience in vulnerability management including coordinating application and network security penetration testing as well as understanding the results from vulnerability scans and working directly with infrastructure and application teams to remediate.