Senior Cybersecurity Event Analyst

Winnipeg, MB, Canada

Job Description

If you are talented and experienced as a Senior Cybersecurity Event Analyst, Aplin has the right opportunity for you! Our Manitoba-based client is seeking a Senior Cybersecurity Event Analyst who is responsible for coordinating, reporting, analyzing, and investigating information security events, alerts, and incidents.

This is a permanent, full-time opportunity available to candidates in the Manitoba area.

Perks & Benefits:

  • Comprehensive Benefit Program
  • Competitive Salary
Responsibilities:
  • Reviews, triages, and categorizes incoming events and incidents received from the SEM Service, IT Service Desk, or within the company's CIS, and determines priority based on established criteria
  • Uses QRadar, direct system logs, and packet analysis toolsets to gather appropriate data correlating to the event, including how data passes through devices
  • Works with various stakeholders including the CIS, IT Infrastructure teams (Database Analysts, Personal Technology Analysts, Network Analyst, etc.), third-party organizations, Application Services, Knowledge Management Services, etc., to gather missing information, and works with the SEM to clarify requests and provide analyzed data responses
  • Conducts investigations to confirm what information can be gathered and how it can be collected, by communicating with operational support teams and/or product vendors
  • Continuously reviews the QRadar events and industry security information for new security exposures
  • Works within the CIS to plan for the activation of new use cases or project requirements for SIEM event monitoring
  • Develops the processes to operationalize new security products and tools within the SEM team, providing ongoing operational support as required
  • Defines reporting requirements and metrics to manage security cases and produces reports for senior management and team tracking
  • Performs regular reviews and updates procedures to ensure documentation is current and effective for training team members
  • Documents key performance indicators (KPIs) focusing on continuous process and delivery improvement of the team
  • Increases knowledge of security threats and related investigation best practices, and translates those practices into day-to-day activities, processes, and procedures
  • Conducts performance evaluations, with input from management, using regular feedback to enhance employee development and improve performance
  • Identifies staff training and development needs ensuring that current development plans are created and followed
Qualifications:
  • Technical Diploma or University degree in Computer Science or related field or a current senior professional certification from a recognized educational institution or company relevant to networking, or security certification such as CISSP, CySA+, or for a related technology platform
  • 7 years of experience in the IT industry, including:
  • 4 years in support of the networking or related technology platforms
  • 4 years of progressive project and/or leadership in the same or related technical support discipline
  • Processes and procedure documentation experience is an asset
  • Security investigation experience is an asset
  • Working knowledge of packet analysis, with an advanced understanding of how IP traffic traverses a network
  • Advanced knowledge of various technology platforms, for obtaining investigation data
  • Working knowledge of routing and switching, and security devices such as firewalls, application distribution controllers, intrusion prevention devices, web proxies, and related impacts
  • Ability to coordinate and support IT Security audit and compliance processes
  • Ability to support the maintenance of security performance measurement and reporting frameworks
  • Working knowledge of a sample of the following technologies is an asset: IBM QRadar, BlueCoat Web Proxy, Check Point Firewalls, Cisco Switches and Routers, F5 ADC, Riverbed Network Analysis Toolset, Active Directory, and Syslog
  • Working knowledge of the security controls within Microsoft 365, Microsoft Azure, and other Cloud platforms
  • Knowledge of the ITIL Incident and Change Management process is an asset
  • This position may be required to work overtime
  • This position participates in rotating on-call support
Aplin, one of Canada's Best Managed Companies, is an employment agency that finds top talent for exceptional organizations across North America. There are no fees to apply to our jobs or engage with our recruiters to find a new career. Companies hire us to help them grow their teams. Visit our website to learn more:

Beware of fraud agents! do not pay money to get a job

MNCJobz.com will not be responsible for any payment made to a third-party. All Terms of Use are applicable.


Related Jobs

Job Detail

  • Job Id
    JD2075361
  • Industry
    Not mentioned
  • Total Positions
    1
  • Job Type:
    Full Time
  • Salary:
    Not mentioned
  • Employment Status
    Permanent
  • Job Location
    Winnipeg, MB, Canada
  • Education
    Not mentioned