Security Analyst

Security Analyst

Key Responsibilities

Security Monitoring & Incident Response

Partner closely with a managed security service / SOC provider to oversee threat monitoring, investigations, incident response activities, and security reporting.

Review and analyze security events, alerts, and logs to identify suspicious activity and potential risks.

Take ownership of security incidents from initial triage through containment, remediation, and post-incident review.

Administer identity and access management across enterprise systems and applications.

Assist in maintaining secure configurations across on-prem, network, and cloud-based environments.

Risk Management & Compliance

Design, implement, and maintain security controls, tools, and procedures to minimize organizational risk.

Lead and support vulnerability management activities, including identification, prioritization, and remediation tracking.

Perform security reviews, risk assessments, and internal audits to ensure alignment with security policies and regulatory frameworks.

Contribute to the development, implementation, and enforcement of security standards and policies.

Governance & Continuous Improvement

Produce clear security documentation, metrics, and reports for technical and non-technical stakeholders.

Work collaboratively with IT, engineering, and business teams to embed security best practices into new systems and initiatives.

Support security awareness and training efforts to reduce human-related security risks.

Monitor threat intelligence sources to stay ahead of emerging threats and attack trends.

Continuously evaluate and recommend improvements to security processes, tooling, and technologies based on industry best practices and lessons learned.

Qualifications

Post-secondary education in computer science, information security, or a related discipline, or equivalent professional experience (approximately 5+ years).

Formal security training and / or industry certifications (e.g., Security+, CISSP, GIAC) are considered an asset.

Strong technical foundation across core IT domains, including networking, virtualization, containers, cloud platforms, and infrastructure technologies.

Self-driven, proactive, and able to work independently while collaborating effectively with cross-functional teams.