Talent.com
CIE_101 Beneva Inc.
IT Security AnalystCIE_101 Beneva Inc. • Montreal, Quebec
IT Security Analyst

IT Security Analyst

CIE_101 Beneva Inc. • Montreal, Quebec
11 hours ago
Job type
  • Full-time
Job description

Description

:

Sous l’autorité du directeur adjoint Cyberdéfense et opérations, en tant qu'analyste sécurité (SOC) vous êtes responsable de l’analyse avancée (niveau 2) des alertes et incidents escaladés par le niveau 1. Vous contribuez à la réponse initiale aux incidents, au soutien des analystes niveau 1, à l’amélioration continue des capacités de détection et à l’intégration responsable de l’intelligence artificielle dans les opérations du SOC.

Vous vous réaliserez dans les fonctions suivantes :

  • Prendre en charge les alertes et incidents de cybersécurité escaladés par le SOC niveau 1.

  • Réaliser des analyses avancées et recommander les actions appropriées.

  • Contribuer à la réponse initiale aux incidents en collaboration avec les équipes concernées.

  • Agir comme point d’escalade technique et soutenir les analystes SOC niveau 1.

  • Participer à l’amélioration continue des processus, des règles de détection et des métriques SOC.

  • Fournir des conseils à la direction concernant son champ d’activités.

Plus spécifiquement,

  • Analyser et qualifier les alertes de sécurité escaladées, notamment les cas d’hameçonnage, de compromission de compte, de logiciel malveillant et de mouvement latéral.

  • Corréler les événements provenant des plateformes SIEM, XDR, EDR, identité, courriel, réseau et infonuagique.

  • Enrichir les alertes à l’aide de journaux, d’indicateurs de compromission et de renseignements sur les menaces.

  • Déterminer le verdict, la criticité, l’impact potentiel et les actions requises.

  • Recommander ou initier les premières mesures de mitigation, de confinement ou d’escalade selon les processus établis.

  • Documenter rigoureusement les investigations, constats, décisions et actions réalisées.

  • Réaliser des analyses techniques de premier niveau sur les journaux et artefacts endpoint et réseau.

  • Soutenir et accompagner les analystes SOC niveau 1 dans le traitement des cas complexes.

  • Contribuer à l’amélioration des règles de détection, des requêtes d’investigation, des runbooks et des playbooks SOC.

  • Utiliser les outils d’intelligence artificielle et d’automatisation approuvés pour soutenir le triage, l’enrichissement et la documentation des investigations.

  • Valider les résultats générés par l’IA avant toute conclusion, escalade ou recommandation.

  • Contribuer à l’identification de cas d’usage IA pertinents pour améliorer l’efficacité du SOC.

Vos talents et qualifications :

  • Baccalauréat en informatique, cybersécurité ou autre domaine pertinent

  • Minimum de 3 à 5 ans d’expérience en cybersécurité, dont une expérience pertinente dans un SOC.

  • Expérience avec les plateformes SIEM, XDR ou EDR, notamment Microsoft Sentinel, Microsoft Defender XDR ou Splunk Enterprise Security.

  • Capacité à lire et rédiger des requêtes d’investigation en KQL ou SPL.

  • Connaissance du cadre MITRE ATT&CK et capacité à l’appliquer dans un contexte d’investigation.

  • Familiarité avec les outils d’IA et d’automatisation appliqués à la cybersécurité, ainsi qu’avec les risques associés tels que les hallucinations, les faux positifs et les enjeux de confidentialité.

  • Connaissance d’un environnement infonuagique (AWS ou Azure).

  • Maîtrise avancée du français, à l’oral et à l’écrit

  • Maitrise fonctionnelle de la langue anglaise tant à l’oral qu’à l’écrit, en raison de la nature des taches, des outils de travail ou d’interactions avec des collègues, partenaires, clients ou fournisseurs anglophones, ou afin de répondre aux objectifs de croissance de l’entreprise

  • Certifications pertinentes souhaitées : SC-200, CySA+, GCIH ou équivalent.

#LI-Hybrid

Create a job alert for this search

IT Security Analyst • Montreal, Quebec

Similar jobs

IT Security Risk Analyst

Onico SolutionsMontreal (administrative region), QC, CA
Permanent

The IT Security Risk Analyst supports the Information Security Risk Management and Governance programs.They work with technology and business stakeholders to identify Information Security risks, co... Show more

 • Promoted

IT Security and Operations Leader

Dialogue Technologies Inc.Montreal (administrative region), QC, CA
Full-time

Lead IT security initiatives as an IT Operations & Security Advisor.Focus on advanced support and project management within a flexible hybrid work framework.You will play a crucial role in ensuring... Show more

 • Promoted

Expert Analyst in Healthcare IT Infrastructure and Security

CIUSSS de l'Ouest-de-l'Île-de-MontréalMontreal-Ouest
Full-time +1

Shape the future of healthcare IT as an Expert Analyst specializing in infrastructure and security systems.Manage high-availability systems and ensure robust network operations tailored to healthca... Show more

 • Promoted

IT Security and Operations Advisor

Portage Ventures GP Inc.Montreal (administrative region), QC, CA
Full-time

Become an IT Security and Operations Advisor at Dialogue, Canada’s foremost virtual health provider.Leverage your skills in operational efficiency and security management while working in a hybrid ... Show more

 • Promoted

Mercury IT Analyst - Remote Position

MercuryMontreal (administrative region), QC, CA
Remote
Full-time

Join Mercury as an IT Analyst in a remote capacity, safeguarding systems and enhancing operational trust.Engage in IT support while implementing innovative security processes.In this role, you will... Show more

 • Promoted

Strategic IT Risk & Governance Analyst

ALLTECH CONSULTING SVC INCMontreal (administrative region), QC, CA
Full-time

A consulting firm based in Canada is seeking an experienced individual to manage technology risk initiatives effectively.The role involves developing strong relationships with stakeholders, monitor... Show more

 • Promoted

Cyber Security Analyst

MindlanceMontreal
Full-time

This range is provided by Mindlance.Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.Subject Matter Expert - Recruitment at Mindlance.Job Role: I... Show more

 • Promoted

Cybersecurity Analyst Role Focusing on Security Monitoring and Awareness

NOVIPROMontreal (administrative region), QC, CA
Full-time

Exciting opportunity for a Cybersecurity Analyst to join a security-focused team remotely.Play a crucial role in identifying vulnerabilities and enhancing the security framework through best practi... Show more

 • Promoted

Senior Security Architect in Cyber at Morgan Stanley

Morgan StanleyMontreal (administrative region), QC, CA
Full-time

Elevate security governance at Morgan Stanley as a Senior Security Architecture Specialist, blending remote and on-site collaboration.Your role will focus on translating compliance into actionable ... Show more

 • Promoted

Remote Senior SOC Analyst for Threat Detection and Incident Management

TreantlyMontreal (administrative region), QC, CA
Remote
Full-time

Shape cybersecurity efforts as a Senior SOC Analyst, proficient in threat detection and incident response.Lead remote operations to tackle complex security challenges while mentoring junior analyst... Show more

 • Promoted

Lead Application Security Analyst

National Bank of CanadaMontreal (administrative region), QC, CA
Full-time

A career as a DevSecOps lead on the Asset Protection team at National Bank means serving as a specialist in application security, vulnerability management and DevSecOps practises.This position allo... Show more

 • Promoted

Security Analyst

Prosperity Workforce SolutionsMontreal (administrative region), QC, CA
Temporary

We are seeking a highly skilled.This temporary position will focus on fine-tuning threat detection models, ensuring best practices in endpoint protection, and improving the utilization of our secur... Show more

 • Promoted

IT Security & Strategy Leader

Global Partner SolutionsDorval, QC, CA
Full-time

A leading organization in technology and cybersecurity is seeking an IT Manager to provide strategic and operational leadership for its IT systems.The successful candidate will implement cybersecur... Show more

 • Promoted

Lead Application Security Manager at Workleap

ShareGateMontreal (administrative region), QC, CA
Full-time

Take the lead as an Application Security Manager at Workleap, focusing on security integration in Microsoft 365 products.Your coding and security skills will be key to our innovative solutions.In t... Show more

 • Promoted

MONTREAL [Hybrid] - CSIRT Security Analyst Level 2

QUANTEAM (Groupe RAINBOW PARTNERS)Greater Montreal Metropolitan Area, Canada
Full-time

As the founding entity of RAINBOW PARTNERS, Quanteam is a consulting firm specializing in Banking, Finance, and Financial Services.Guided by our core values of closeness, teamwork, diversity, and e... Show more

 • Promoted

Senior Analyst, Security Compliance

P2PMontreal (administrative region), QC, CA
Full-time

Our Krakenites are a world-class team with crypto conviction, united by our desire to discover and unlock the potential of crypto and blockchain technology.Kraken is a mission-focused company roote... Show more

 • Promoted

Security Analyst

360 IT ProfessionalsMontreal (administrative region), QC, CA
Full-time

IT Professionals is a Software Development Company based in Fremont, California that offers complete technology services in Mobile development, Web development, Cloud computing and IT staffing.Merg... Show more

 • Promoted

Remote Security Strategy Lead - Applications and IT

Targeted TalentMontreal (administrative region), QC, CA
Remote
Full-time

A leading security consultancy in Ontario seeks an Information & Application Security Manager to lead their cybersecurity strategy and oversee IT, applications, and infrastructure security.This han... Show more

 • Promoted

Remote Information Risk & Security Analyst

DexianMontreal (administrative region), QC, CA
Remote
Full-time

A leading IT services firm is seeking an Information Control Testing Specialist to manage information risk and ensure compliance with security policies.You will work on global initiatives, conduct ... Show more

 • Promoted

Infrastructure Operations and Security Analyst

Canada Mortgage and Housing CorporationMontreal (administrative region), QC, CA
Full-time

Take charge of enterprise infrastructure operations as an Infrastructure Operations and Security Analyst.Combine expertise in virtualization and backup to enhance system performance in a hybrid set... Show more