Cloud Security Analyst

Cloud Security Analyst

Harris Corporate IT - Remote Canada and United States

Harris Corporate IT is seeking a Cloud Security Analyst to join our team!

This person will participate in evaluating, developing, and implementing security tools, standards, procedures, and guidelines for multiple platforms in private and commercial cloud environments as needed.

As the Cloud Security Analyst, you will utilize your wide area of expertise in access control management, cybersecurity, vulnerability management, risk management, incident management, security frameworks and other areas to provide security support for the Harris group of companies.

What your impact will be :

• Responsible for cloud security controls, processes and architecture consultation, design and monitoring.
• Performs vulnerability scanning for network devices, applications and databases to identify vulnerabilities.
• Analyzes and assesses security incidents and escalates incidents by following incident plan.
• Monitors activities and events to detect, classify and act upon anomalous behavior appropriately in a timely manner.
• Develops and maintains standard practices and procedures for appropriate response to identified threats.
• Manage and analyze security information and event management (SIEM) tools and services to identify and respond to events as appropriate.
• Assesses potential risks and vulnerabilities to develop baselines and assist with response to deviations.
• Responsible for overall access control management including but not limited to auditing current access controls to identify potential risks, making recommendations for improvement in security and tracking remediation.
• Responsible for conducting risk assessments against various regulatory compliance such as HIPAA, PCI, etc.
• Responsible for the installation, maintenance and monitoring of security tools to protect systems and data.
• Performs risk and security assessments of applications, databases, and servers and supporting network technologies, such as routers, switches, access points.
• Works with IT teams to solve information security system problems and issues in a timely and accurate manner.
• Develops and executes corrective action and remediation plans for identified issues, risks or vulnerabilities.
• Assess emerging technologies against security architecture to determine where they fill gaps, overlap with existing solutions or extend capabilities.
• Participate in annual security audits, incident response exercises, security reporting, audit and compliance support.
• Work with Information Security Officer to provide security incident escalation support and remediate security issues.
• Performs reviews and assessments of security controls before hardware / software is migrated to production.

What we are looking for :

• Minimum of 5 years experience as a System Administrator (Unix / Windows) or Network Administrator
• Minimum of 3 years experience in a security operations center and / or system administration role
• Minimum of 2 years experience in cloud services security.
• Experience in access control and identity management for on premise and cloud environments.
• Knowledge of Azure Platform and Infrastructure services.
• Familiarity with Infrastructure as Code tools (Terraform, AzureARM, Ansible, etc).
• Experience with Python and PowerShell.
• Experience with monitoring tools such as Azure Sentinel, AWS CloudWatch / Google Cloud Monitoring, Splunk etc.
• Hands on experience managing various security tools (e.g. Web Content Filtering, Anti-Malware, Firewalls, Intrusion Protection, etc.)
• Ability to write security requirements and design documents
• Ability to analyze system data, including, but not limited to, security and network event logs, web, anti-virus, DLP, syslogs, IPS and firewall logs
• Knowledgeable about security controls and processes, vulnerabilities, regulatory and legal changes, and security standards that may impact information security
• Bachelor’s degree in Computer Science, Information Systems, Network Security Engineering or related major or equivalent work experience.

What will make you stand out :

• CISSP, CCSP, CCNA, MCSE certifications would be considered an asset
• Experience with cloud container technologies such as Docker and Kubernetes
• Bilingual - speaking both English & French would be considered an asset

What we offer :

A competitive compensation package

A casual work environment

Full range of employee benefits 401(k), Health Insurance (medical, dental, vision, life, short and long-term disability, AD&D)

Paid Vacation