Job Description

Security Operations Analyst -MON19708
Description


BOMBARDIER
Bombardier is a global leader, creating innovative and game-changing planes. Our products and services provide world-class transportation experiences that set new standards in passenger comfort, energy, efficiency, reliability and safety. We are a global organization focused on working together with a team spirit.
The Security Operations Analyst will be responsible for providing security incident response subject matter expertise while collaborating on numerous security projects and operational improvement initiatives. This position will support the operational activities of Bombardier while helping to develop the team’s internal investigative skillset, processes and operational playbooks. In addition, this position will be responsible for continuously identifying gaps and managing the improvements in security response process, technologies, and monitoring. Working closely with internal architecture, engineering and project management teams, the incumbent will ensure operational and defensive requirements are identified and communicated early in the project life cycle. In your role, you will …

• Support security incident response actions to ensure proper assessment, containment, mitigation and documentation
• Manage the security monitoring enrollment process to ensure adequate coverage and effectiveness of all new and existing cloud and premise-based applications, services and platforms
• Manage the health of security monitoring log sources and other ingestion sources to help optimize uptime and fidelity of data
• Act as a liaison between security operations, engineering, security architecture, network & system operations, and functional project teams to ensure effective project implementation that meets incident response requirements
• Ensure that incident response requirements are captured and delivered by the security program.

Qualifications


As our ideal candidate,

• You have a Bachelor's degree in Mathematics, Statistics, Computer Science, Information Science or relevant field of study
• You have relevant experience required (i.e. directly linked to the requirements of the position/role)
• You have 3+ years’ experience in incident response or security operations
• You have 3+ years of related experience in cybersecurity or computer network defense
• You have proven subject matter expertise in relevant areas, such as incident response, incident handling, intrusion analysis or security engineering
• You have comprehensive understanding of common attack vectors
• You have strong working knowledge of Windows and Linux operating systems
• You have strong working knowledge of logging components and capabilities
• You have experience working with a multitude of service providers
• You have demonstrated experience in a large-scale incident response team or security operations center
• You have advanced technical knowledge associated with various operating systems, network services and applications
• You have experience defining practical use cases
• You have strong working knowledge of common security tools (SIEM, EDR, VM, proxies, WAF, NetFlow, IDS or forensics tools)
• You have direct experience handling security incidents and associated incident response toolset
• You have experience defining practical use cases
• You have strong working knowledge of common security tools (SIEM, EDR, VM, proxies, WAF, NetFlow, IDS or forensics tools)
• You have direct experience handling security incidents and associated incident response toolset
• You have strong interpersonal and communication skills, with an ability to navigate complex organizations and build and maintain relationships with all stakeholders.
• You have the ability to integrate into a multidisciplinary team, with various backgrounds (risk, IT, security, compliance, governance, legal, rail, aerospace…) and assume different roles within your expertise.
• You have a high-level view of business processes and services supporting them.
• You have relevant security related certifications: GCIA, GSEC, GCIH, GCED, GCFA, GREM, GCFE (an asset)

Bombardier is an equal opportunity employer and encourages persons of any race, religion, ethnicity, gender identity, sexual orientation, age immigration status, disability or other applicable legally protected Characteristics to apply.
We thank all applicants for their interest, however, only those under consideration will be contacted. Please continue to monitor our website and apply for additional positions for which you are qualified and may be of interest to you.
Join us at https://bombardier.com/en/careers/career-opportunities
Your ideas move people.


Job IS/IT Security
Primary Location CA-QC-Montreal Dorval
Organization Aerospace
Schedule Full-time
Employee Status Regular
Job Posting 19.08.2022, 12:29:31 PM
Unposting Date Ongoing