Description & Requirements
About Maximus
At Maximus, we share an authentic desire to do something meaningful to help others succeed. We apply our deep operational expertise, technology innovation, and digitally enabled citizen engagement in new ways and help governments solve complex problems.
Maximus has been reinventing the way government agencies engage with citizens and are sought out by governments to solve complex problems by supporting various Healthcare Administration, Employment and Citizen service programs worldwide in the United States, Australia, Saudi Arabia, Singapore, South Korea and the United Kingdom.
Our mission is to affect fundamental change in the lives of every individual with whom we engage and at every touchpoint. But ultimately, what we do is improve people's lives. And that is a testament to the ingenuity, commitment, and compassion everyone brings to their role at Maximus and their dedication to connecting citizens with the services they need from Government agencies.
We welcome and encourage applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process
Position Summary
We are seeking a highly skilled and experienced Senior Security Analyst specializing in Incident Response to join our security team. The successful candidate will play a key role in safeguarding our systems, networks, and data. The position requires a strong understanding of cybersecurity best practices, government compliance requirements, and hands-on experience in identifying, analyzing, and responding to security threats.
Your typical week at Maximus
- Lead and coordinate the response to cybersecurity incidents, including detection, investigation, containment, eradication, recovery, and post-incident analysis.
- Monitor and analyze security alerts and reports from various sources (SIEM, IDS / IPS, M365, firewalls, endpoint protection, etc.) to identify potential threats or vulnerabilities.
- Conduct analysis of affected systems to determine the cause and extent of security breaches.
- Provide security expertise for cloud environments (e.g., Azure, AWS, and Google Cloud)
- Collaborate with internal teams, including IT, legal, and compliance, as well as external stakeholders, such as law enforcement and third-party security vendors, to resolve incidents.
- Monitor and assess the security posture of Microsoft 365 and other cloud-based services, implementing best practices to ensure data protection and compliance.
- Develop, maintain, and continuously improve the incident response plan, ensuring alignment with federal and provincial security policies and standards
- Perform root cause analysis and recommend corrective actions to prevent future incidents.
- Create detailed incident reports and provide regular updates to management and government clients.
- Conduct threat hunting activities to identify suspicious behavior and unknown threats before they can escalate.
- Stay current on the latest cybersecurity threats, vulnerabilities, and regulatory requirements.
- Train and mentor junior security analysts on incident response processes, techniques, and best practices
What you offer us
Knowledge Skills and Abilities
Knowledge of security frameworks : Strong understanding of industry security frameworks such as NIST Cybersecurity Framework (CSF) and ISO / IEC 27001 : 2022.Technical skills : Proficiency in security technologies (IDS / IPS, firewalls, EDR), forensic tools, and scripting languages (Python, PowerShell).Communication skills : Excellent verbal and written communication skills, with the ability to effectively communicate technical concepts to non-technical stakeholders.Problem-solving : Strong analytical skills with a proven ability to think critically in high-pressure situations.Additional Requirements :
Willingness to participate in an on-call rotation for after-hours incident response.Ability to work independently and in a team-oriented environment.Other
Must hold or be eligible for a Government of Canada security clearance at the Secret level.Education and Experience
Minimum 5-7 years of experience in cybersecurity, with at least 3 years in incident response roles.A Degree / Diploma, or other related education in Computer Science, Information Security, or equivalent combination of education and experience.Certifications : Relevant cybersecurity certifications such as CISSP, GCIA, GCIH, CEH, OSCP, or CISM are strongly preferred.What we offer you
We value your work, which enables us to continuously raise the bar on how we can best serve citizens worldwide. Maximus Canada offers the following :
Competitive market-based salariesComprehensive employer-paid benefitsGenerous paid time off packageGroup Retirement Savings PlanHybrid and remote work environments in CanadaAnnual paid bonus based on overall company performanceEmployee appreciation eventsMaximus Global Core Values
Accountability - Accepting responsibility to solve problems and rise to each challengeCollaboration - Partnering to instill trust and working as oneCompassion - Empowering humanity by applying empathy and insight to every interactionCustomer Focus - Cultivating an authentic desire to help others succeedInnovation - Embracing change and championing new ways forwardRespect - Valuing the work we do, who we do it with, and the people we serveWe will be accepting applications until 11 : 59 on February 05, 2025.
Please note that while all applications are appreciated, only those candidates selected for an interview will be contacted.
No agencies please)
EEO Statement
Maximus is passionate about our employees and place their well-being at the center of our people strategy. We are committed and proud to build a workforce that reflects the communities we serve. We value diversity, equity and inclusion and invite all interested individuals to apply and encourage applications from people with disabilities, Indigenous, ethnic and cultural origins, sexual orientations, veterans and gender identities recognizing that this is paramount for the growth and success of our organization.