Job Description

Cybersecurity Analyst

Alcool NB Liquor / Cannabis NB

Essential role information

Title:

Cybersecurity Analyst

Language requirement:

Spoken and written competence in English

Location: Reporting to the Retail Operations Center in Fredericton, NB - remote work is possible

Closing:

July 28, 2025

Who we are

As one of Atlantic Canada's Top Employers for 2025, ANBL is proud of the people-first culture we've built together with our team members and the passion our team brings to work every day.

Alcool NB Liquor (ANBL) is a provincial Crown corporation responsible for the purchase, importation, distribution, and retail activity for all beverage alcohol in the province. We are passionate about our purpose of giving back to New Brunswickers by responsibly enhancing occasions, providing a superior service experience to our customers, spending time in our communities, and fostering strong relationships with our industry and vendor partners.

Cannabis NB (CNB), our sister company, also a provincial Crown corporation, manages retail cannabis sales for the province, providing a range of safe, legal products. The core focus of our retail model is ensuring the thriving cannabis industry developing in New Brunswick is safe and responsible. At CNB, our goal is to deliver a world class customer experience built on good information, a safe high-quality product offering and a highly trained and engaged team. Our mandate is public education and protection, and everyone at Cannabis NB is committed to it.

Every year, we return 100% of profits to the Government of New Brunswick to benefit of all New Brunswickers. As a provincial Crown corporation, we serve the public and licensee community through a network of corporate retail stores and private retail operators. Our mandate is to responsibly manage a successful business for the people of New Brunswick and to deliver the best value for your investment in us.

Corporate Social Responsibility at ANBL

At ANBL, we take our social responsibility seriously. With our Corporate Social Responsibility Strategy to guide us, we are committed to:Responsible selling through our CHECK 30 program, which specifies that customers who look younger than 30 will be asked for valid photo identification. Food security through our partnership with Food Depot Alimentaire to help get more food to the New Brunswickers who need it. Helping New Brunswickers get home safely through our Safe Ride program, providing FREE transportation at ANBL-sponsored events.


None of these efforts would be possible without the more than 800 team members who are the lifeblood of our organization and choose ANBL as their employer.

What's in it for you?

Being part of the ANBL team means being part of an organization that values its employees, where everyone has a voice and uses it in the best interest of the organization and our people. We are all proud of what we contribute to the betterment of our province, and we take that responsibility seriously.

In addition to offering a market competitive salary, we ensure that our employees can enjoy work-life balance by offering a comprehensive benefits package, including medical, dental and a generous pension plan. Employees also have access to a Health Spending Account or Wellness Subsidy, and opportunities to utilize flexible work arrangements, such as remote or hybrid work.

At ANBL we value the growth of our employees both personal and professional. We offer various types of external and internal development activities, including a robust internal Leadership Development Program.

About the Cybersecurity Analyst role

We are seeking a Cybersecurity Analyst who will be responsible for protecting ANBL and CNB's information systems and data from cyber threats. Reporting to the Infrastructure and Cybersecurity Manager, the Cybersecurity Analyst, collaborates with stakeholders to ensure that security is factored into the evaluation, selection, installation, configuration, and maintenance of hardware, software, and applications. They assess risks, manage compliance initiatives, and support cybersecurity strategies, projects and programs ensuring the organization's security measures are effective, compliant, and up to date. This role is accountable to further develop and promote best practices for cybersecurity and creating a culture of security awareness throughout the organization.

Responsibilities include

Perform regular vulnerability assessments, track remediation efforts and report on risk levels Detect, analyze and respond to real-time threats using security tools (SIEM, EDR, firewall logs). Conduct threat research to understand the latest cyber threat landscape. Lead or support security incident response efforts, including investigation, root cause analysis and corrective actions. Review firewall rules on a periodic basis, and provide guidance to IT technical peers around firewall rule guidance Collaborating with IT Teams to ensure security controls are factored into infrastructure design & performing risk assessments for new technologies as required Administer core cyber security tools (endpoint protection, email security, vulnerability scanners) Maintain and enhance system and application security polices Work with IT teams and vendor partners to enforce least privileged access, support MFA initiatives, and monitor access for anomalies. Oversee endpoint security and hardening by ensuring proper configuration, patching and protection of all endpoints and supporting infrastructure Create a culture of security awareness throughout the organization by delivering user focused training and phishing simulation programs to strengthen cyber hygiene

Technical stack

Windows, Mac and Linux operating systems, Office 365, Azure Experience with, VPN, as well as Microsoft suite of security tools, including security and information event management system (SIEM) Microsoft Defender suite of products, including Defender XDR, Defender for Endpoint, Defender for M365(Cloud), defender for Identity and Defender for Server. Experience with Privileged Access Management (PAM) tools. Experience with Microsoft Sentinel, Splunk, Azure Security Center, Microsoft MFA. Business application systems, including e-Commerce, warehouse management software, POS, data warehousing, EDI. Mobile Device Management and Apple IOS Devices

What do you need to be successful?

Postsecondary education in Computer Science, Cybersecurity or similar While a formal degree or diploma is preferred, we value practical experience and are open to considering candidates with equivalent experience in lieu of educational qualifications. Minimum of 3 years of cybersecurity experience preferred, including hands-on work with endpoint security and SIEM tools Thorough understanding of relevant industry security standards and protocols, including, NIST Cybersecurity Framework, and ITIL Frameworks Experience with PCI/DSS Certification and annual attestation of compliance Demonstrated ability to identify risks associated with business processes, operations, technology projects and other security programs. Strong understanding of Identity and Access Management best practices and solutions Strong skills in intrusion and malware detection and prevention, antivirus software, encryption technologies, and web security (filters) Experience performing vulnerability scanning Experience enhancing or developing business continuity planning and disaster recovery procedures. Excellent written and communication skills.

Would be an asset if you had:

Certifications such as Security +, Certified Information System Security Professional (CISSP) or CySA+ Experience with retail environment, point of sale technologies and standards. PCI DSS Internal Security Assessor (ISA) Certification Payment Card Industry Professional Certification (PCIP) Certified Information Systems Auditor (CISA) Experience with Microsoft Dynamics 365 ITIL Certified Microsoft Security Administrator Associate certification, or other certifications from the Microsoft security engineer certification path in areas such as Azure, Security Operations, and Information protection.

Key Competencies

Manages complexity:

Makes sense of complex, high quantity, and sometimes contradictory information to effectively solve problems. For example, asks questions to encourage others to think differently and enrich their analyses of complex situations. Accurately defines the key elements of complex, ambiguous situations

.

Effective Communication:

Develops and delivers multi-mode communications that convey a clear understanding of the unique needs of different audiences. For example, tailors communication content and style to the needs of others. Pays attention to others' input and perspectives, asks questions, and summarizes to confirm understanding.

Ensures Accountability:

Holds self and others accountable to meet commitments. For example, measures and tracks team's and own performance, and helps the team learn from success, failure, and feedback. Adheres to, and enforces, goals, policies, and procedures.

Optimizes Work Processes:

Knows the most effective and efficient processes to get things done, with a focus on continuous improvement. For example, uses metrics and benchmarks to monitor accuracy and quality. Takes steps to make methods productive and efficient. Promptly and effectively addresses process breakdowns.

Strategic Mindset:

Sees ahead to future possibilities and translates them into breakthrough strategies. For example, keeps up to date on current and future industry trends and market forces and considers these when making decisions. Clearly identifies and prioritizes efforts and initiatives to have the greatest strategic impact on the organization.

Collaborates:

Builds partnerships and works collaboratively with others to meet shared objectives. For example, encourages coworkers and external partners to work together as a team, and makes sure they get credit for doing so. Encourages people to share their honest views, responds in a non-defensive way when they do.

Language competencies

Bilingualism in both official languages is an asset, but not required

Work location:

The Retail Operations Centre is located in Fredericton, New Brunswick. The successful candidate must be based in New Brunswick, remote work is possible. Regular travel to the Retail Operations Center in Fredericton will be required for meetings, planning sessions, and critical incidents

Note

Only candidates with legal authorization to work in Canada will be considered Accommodations may be provided to candidates upon request, in all aspects of the selection process.

How do I join the Team?

Share your resume with us through our online application system.