IT Senior Security Analyst

Scope of Position

This role is key in the identification of risks and threats, protection of information and assets, detection and monitoring of events and anomalies, and response to and recovery from, cyber events.

The successful candidate will also play a key role in the implementation of new security solutions, maintenance of various security tools and technologies.

The IT Senior Security Analyst is expected to be fully aware of the enterprise's security goals and to actively work to support these goals.

Major Responsibilities

• Participate in strategic and tactical planning for IT Security to drive standards and architecture elements of the security program
• Maintain up-to-date baselines for the secure configuration and operations of all in-place devices, including Firewall, IPS, Application Control, web filtering, Messaging Gateway, SIEM, DLP, IAM and Endpoint Protection
• Monitor server logs, firewall logs, intrusion detection logs, web filtering, and antiviral systems for security events or threats.

Investigate security breaches and other cyber security incidents

• Perform tests and uncover network vulnerabilities and misconfiguration, track and monitor the remediation activities
• Demonstrate expertise in the planning and design of enterprise security architecture and create and maintain inventory of security technology
• Lead third party review of technology systems including the existing and upcoming cloud services
• Perform risk and control design assessments of infrastructure and systems as well as cloud-based solutions. Recommend remedial actions, and work with system owners and business partners to develop plans and timelines to address risks
• Develop and / or implementation of standards, policies, procedures, and security solutions
• Recommend and implement improvements to security tools, configurations, processes and policies, and research additional security solutions or enhancements to improve overall security posture
• Demonstrate expertise in the design and execution of vulnerability assessments, penetration tests and security audits
• Help implement and enhance Threat Modelling capability with SDLC and application development efforts
• Develop on-going technology risk reporting, monitoring key trends and defining metrics to measure control effectiveness
• Conduct BIA's and DR planning. Ensure DR configurations are updated to reflect production environment
• Stay up to date knowledge of security threats and new leading-edge technology

Qualifications

Education / Certifications / Experience

• Post-secondary diploma or degree in the field of computer science
• Minimum 5-7 years of practical experience and demonstrated ability to carry out the functions of the job
• Relevant security certification such as CISSP, CCSP, Security+, CEH, CompTIA Security, etc.
• Understanding of security standards and frameworks such as ISO27001, NIST and CIS, etc.
• Strong knowledge of technical configurations from various operating systems and security solutions (Windows, Linux, VMware, IDS / IPSDLP, VCM, SIEM, WAF, VPNs, EPP, encryption, etc.)
• Demonstrated experience in security architecture for both applications and infrastructure
• Excellent problem-solving and analytical skills to identify and resolve security issues effectively
• Strong understanding of cloud security concepts and experience securing cloud-based infrastructure is an asset
• Proven project management and organizational skills, specifically managing multiple, concurrent projects

Competencies

• Critical thinking skills
• Detail oriented
• Well developed troubleshooting,
• Analytical and problem-solving skills
• Ability to communicate effectively, both orally and in writing with a variety of audiences
• Self motivated and directed
• Team oriented and experience working within a collaborative environment

Work Conditions

• Overtime may be required to meet project deadlines
• On-Call on rotation

Working at Alterna

Alterna offers a fast-paced, impactful work experience in an organization that cares about doing good. For over 110 years, Alterna has been creating financial services that transform lives for the better, all while giving back to our community.

We are incredibly proud of our corporate culture, where everyone works together towards a common goal, the financial wellbeing of our members and customers.

This commitment has earned us several prestigious employer awards, including the National Capital Region's Top Employers award for seven years running.

• Although we appreciate all applicants, preference will be given to candidates who most closely meet the qualifications, key skills, and competencies outlined above.
• Alterna is compliant with the Ontarians with Disabilities Act. If you have a disability, please contact the recruiter to let us know how we can accommodate you
30+ days ago