Security Operations Analyst

How You’ll Contribute

• Maintain the security infrastructure (Firewalls, IDS/IPS, AV, SIEM, FIM, servers etc)
• Perform firewall operational tasks as approved 
• Monitor systems, software and skills to stay ahead of emerging threats: Lead or participate in security investigations and Assist during Incident Response and Recovery activities.
• Maintain and enforce KUBRA’s IT management control framework that defines the institution’s overall approach to IT risk and control
• Participate in on-call rotation to respond, investigate and resolve Security Incidents
• Track and action alerts to ensure proper response is taken by coordinating the work efforts of internal teams and actions required of external service providers.
• Apply understanding of environment and operational issues to work with external or internal parties for implementation or optimization of specific SIEM use cases to help improve detection and response.
• Maintain the vulnerability security digest and provide updates to relevant parties 
• Monitor threat feeds and provide regular threat intelligence updates.
• Conduct access control reviews on a case-by-case basis to systems and work with internal and external resources to update user control lists and provide reports.
• Assist in remediation tasks related to audits/penetration tests.
• Participate in internal and external table-top exercises related to cybersecurity.
• Assist in development of process and procedure documents for Security Operations.
• Evaluate and provide guidance to exemption requests as per corporate policy and standards, to advise of risk involved.

Strengths That Shine in This Role

• Ability to detail and effectively discriminate relevant logs / security events
• Ability to handle multiple tasks and projects concurrently
• Excellent written and verbal communication skills
• Ability to plan and manage complex security projects, and meet the deadlines
• Excellent organization, time management and problem-solving skills
• Ability to handle pressure under minimum or no direct supervision

Skills That Matter in This Role

• A minimum of 2 years of experience operating and working in a functional SOC environment
• A minimum of 2 years of experience in a Security Operations role
• 2+ years of experience in Incident Management and related processes
• Prior experience with SIEM, EDR, IAM and SOAR
• Prior experience with Cloud based services (AWS/Azure)
• Knowledge of PCI, SOC, SOX and other standards
• Incident Handler certification i.e., E|CIH, GCIH, IHRP, CSIH, CIHE is required
• Other relevant certifications that are considered an asset include MCSE, CCNA, CCNP, GCIH, GCIA, GCFE, GREM, GCFA, GSEC etc.
• Degree or equivalent Experience in Information Security

Why You’ll Love Working Here

• Thrive in an award-winning culture that champions growth, embraces diversity, and fosters inclusion for all. See our awards →
• Enjoy generous benefit coverage with low premiums, plus a Healthcare Spending Account and Wellness Spending Account
• Invest in your future with RRSP matching
• Take time to recharge with paid vacation and sick days, and enjoy a paid day off for your birthday
• Make a difference with two paid volunteer days to support causes you care about
• Keep learning with free access to LinkedIn Learning and our education reimbursement program for continued development
• Feel appreciated through our employee recognition programs
• Support your mental health with a free premium Headspace membership
• Stay refreshed with unlimited access to fully stocked beverage stations
• Save more with exclusive Perkopolis retail discounts