Senior Cybersecurity Event Analyst

Senior Cybersecurity Event Analyst

Share This Job

Winnipeg, MB

Information Technology

Permanent

01/09/2022

AA109509825

To Apply for this Job Click Here

Location: Winnipeg, MB, Canada

Job Type: Permanent

Date: 8/25/2022

Job ID: AA109509825

Category: Information Technology

If you are talented and experienced as a Senior Cybersecurity Event Analyst, Aplin has the right opportunity for you! Our Manitoba-based client is seeking a Senior Cybersecurity Event Analyst who is responsible for coordinating, reporting, analyzing, and investigating information security events, alerts, and incidents.
 
This is a permanent, full-time opportunity available to candidates in the Manitoba area.
 
Perks & Benefits:
  • Comprehensive Benefit Program
  • Competitive Salary
Responsibilities:
  • Reviews, triages, and categorizes incoming events and incidents received from the SEM Service, IT Service Desk, or within the company’s CIS, and determines priority based on established criteria
  • Uses QRadar, direct system logs, and packet analysis toolsets to gather appropriate data correlating to the event, including how data passes through devices
  • Works with various stakeholders including the CIS, IT Infrastructure teams (Database Analysts, Personal Technology Analysts, Network Analyst, etc.), third-party organizations, Application Services, Knowledge Management Services, etc., to gather missing information, and works with the SEM to clarify requests and provide analyzed data responses
  • Conducts investigations to confirm what information can be gathered and how it can be collected, by communicating with operational support teams and/or product vendors
  • Continuously reviews the QRadar events and industry security information for new security exposures
  • Works within the CIS to plan for the activation of new use cases or project requirements for SIEM event monitoring
  • Develops the processes to operationalize new security products and tools within the SEM team, providing ongoing operational support as required
  • Defines reporting requirements and metrics to manage security cases and produces reports for senior management and team tracking
  • Performs regular reviews and updates procedures to ensure documentation is current and effective for training team members
  • Documents key performance indicators (KPIs) focusing on continuous process and delivery improvement of the team
  • Increases knowledge of security threats and related investigation best practices, and translates those practices into day-to-day activities, processes, and procedures
  • Conducts performance evaluations, with input from management, using regular feedback to enhance employee development and improve performance
  • Identifies staff training and development needs ensuring that current development plans are created and followed
Qualifications:
  • Technical Diploma or University degree in Computer Science or related field or a current senior professional certification from a recognized educational institution or company relevant to networking, or security certification such as CISSP, CySA+, or for a related technology platform
  • 7 years of experience in the IT industry, including:
    • 4 years in support of the networking or related technology platforms
    • 4 years of progressive project and/or leadership in the same or related technical support discipline
  • Processes and procedure documentation experience is an asset
  • Security investigation experience is an asset
  • Working knowledge of packet analysis, with an advanced understanding of how IP traffic traverses a network
  • Advanced knowledge of various technology platforms, for obtaining investigation data
  • Working knowledge of routing and switching, and security devices such as firewalls, application distribution controllers, intrusion prevention devices, web proxies, and related impacts
  • Ability to coordinate and support IT Security audit and compliance processes
  • Ability to support the maintenance of security performance measurement and reporting frameworks
  • Working knowledge of a sample of the following technologies is an asset:   IBM QRadar, BlueCoat Web Proxy, Check Point Firewalls, Cisco Switches and Routers, F5 ADC, Riverbed Network Analysis Toolset, Active Directory, and Syslog
  • Working knowledge of the security controls within Microsoft 365, Microsoft Azure, and other Cloud platforms
  • Knowledge of the ITIL Incident and Change Management process is an asset
  • This position may be required to work overtime
  • This position participates in rotating on-call support
Job ID: AA109509825
 
If you are interested in this position and meet the qualifications, apply today! We thank all applicants; however, only those who are authorized to work in Canada or are selected for an interview will be contacted.
 
Aplin, one of Canada’s Best Managed Companies, is an employment agency specializing in finding top talent for exceptional organizations across North America. There are no fees to apply to our jobs or engage with our recruiters to find a new career. Companies hire us to help them grow their teams. Visit our website to learn more: www.aplin.com

To Apply for this Job Click Here

Easily manage your email preference and unsubscribe at any time. Aplin does not share your personal data with any third party, and our recruiters do not present your resume to any of our clients without first obtaining your permission.

Leave a Comment

You must be logged in to post a comment.