Security Analyst

Job Title: Security Analyst
Job ID: 82238
Location: Regina, Saskatchewan

Overview:
Our government client has an immediate need to hire several Security Analyst resources on a 2-year contract (with the option of 1 x 1 yr extension), reference number RFR-0698, for their Regina, SK location. The position requires regular onsite meetings so candidates must be local to the Regina area or willing to relocate for the duration of the contract.


What you will be doing:

• Handling the security queue in the ServiceNow application used to manage security incident tickets and comply with incident response plans and processes to address potential threats;

• Analyzing the potential impact of new threats and communicate risks to relevant business units;

• Creating and maintaining operational reporting artifacts (e.g. Risk Management Decision Item (RMDI), incident reporting, human resource (HR) investigations, lost/stolen reporting, etc.);

• Compiling and analyzing data for management reporting and metrics;

• Coordinating with CSRMB to create security awareness campaigns. Research proactively regarding needs and trends to anticipate and identify potential security problems/incidents;

• Responding to computer security incidents according to the security incident response policy and provides guidance to first responders for handling information security incidents;

• Coordinating efforts among multiple business units during security incident response efforts;

• Engaging stakeholders to fulfill their requests (e.g. decommission request, assets decommission executions, etc.). Coordinate with other peers in CSRMB to research needs and trends to anticipate security problems or incidents;

• Assessing security incidents and taking prompt actions in terms of engaging required stakeholders and performing root cause analysis of the incident. Stay updated on information security-related attacks and trends;

• Proactively coordinating with appropriate stakeholders across GOS during a security incident – management, security, operations, and others. Provides timely and relevant updates to appropriate stakeholders and decision-makers;

• Analyzing cyber security incidents to solve issues and suggest improvement in incident response procedures. Creates detailed reports and documentation of all incidents and procedures to the CSRMB, executive government, and leadership of GOS on a routine basis;

• Supporting the execution and monitoring of phishing simulation exercises, including user targeting, response tracking, and reporting; and

• Responding to and resolving Privilege Access Management (PAM) related activities and service requests within defined Service Level Agreements (SLAs) using ServiceNow

What you must have:

• Candidate must demonstrate experience working in the IT sector within the cybersecurity or networking fields within the past five (5) years.

• Demonstrated working experience with network security and protocols (TCP/IP, VPN, firewalls, IDS/IPS).

• Demonstrated working experience with security tools and platforms (e.g. SIEM systems like Sentinel, antivirus, vulnerability scanners)

• Demonstrated working experience with operating systems and platforms (Windows, Linux).

• Demonstrated awareness of compliance and regulations such as ISO 27001 and NIST security frameworks, privacy legislation, etc.

• Demonstrated working experience with scripting and automation skills (e.g. Python, PowerShell, Bash).

• Certifications in networking and/or cybersecurity such as CompTIA Network+/Security+, Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), and GIAC Security Essentials (GSEC) are considered assets.

Thank you for your interest in this opportunity. If you are selected to move forward in the process, we will contact you directly. If you do not hear from us, we encourage you to continue visiting our website for other roles that may be a good fit.


For more information about TEEMA and to consider other career opportunities, please visit our website at www.teemagroup.com