Job Description

attacks. In order to do so, you must have JavaScript enabled in your web browser otherwise this site will fail to work correctly for you. See details of your web browser for how to enable JavaScript.
Current Opportunities
Attention Safari users: This site requires cookies to function. Please click to accept the cookie. Cookies will be used strictly for the functioning of the site.
Toggle navigation
Job Details
Senior Information Security Analyst - (00499.5)
Share this job as a link in your status update to LinkedIn.
Application Restrictions
Open to both Internal and external
Job Type
Support Staff (CUPE)
Posting In effect from
2/12/2025
Closing Application Date
16/12/2025
Closing date for internal CUPE applicants
16/12/2025
Applications will be reviewed commencing the "closing date for internal CUPE applicants" and may continue until the position is filled.
Internal CUPE applicants must submit their application by 4pm on the "closing date for internal CUPE applicants" for their Seniority to be recognized. Applications received after the "closing date for internal CUPE applicants" will be considered alongside external applicants.
Full/Part Time
Full Time
Support Type
Ongoing
Anticipated Start Date
6/1/2026
Position End Date (If Applicable)
The Hours of work are subject to change depending upon departmental requirements
Schedule
The hours of work will be Monday to Friday, 7 hours a day, 8:00 am to 4:00 pm (subject to change depending upon departmental requirements)
Schedule Description
DUTIES
The Senior Information Security Analyst is responsible for proactively safeguarding Thompson Rivers University's (TRU) digital assets. This role involves designing and implementing security solutions, identifying vulnerabilities, ensuring compliance, and rapidly responding to security incidents while maintaining the highest standards of organizational security.
MAJOR DUTIES & RESPONSIBILITIES * Represents TRU in provincial and federal cyber security initiatives and conferences such as BCNET, CANHEIT, and REN-ISAC.

• Investigates and advises the Director, Information Security on latest security practices, current security landscape, and emerging threats. Recommends enhancements to the organization's security posture.
• Designs, implements, and maintains security solutions that protect the organization's systems, networks, and data against threats, breaches, and unauthorized access.
• Regularly conducts vulnerability assessments and penetration tests to identify and rectify potential security weaknesses.
• Coordinates incident response efforts by utilizing skills of identification, containment, eradication, and recovery and participating in post-incident reviews.
• Ensures the proper deployment, configuration, and maintenance of security tools and platforms by working with external contractors, auditors and performing internal assessments of the effectiveness of our tools.
• Monitors systems for signs of intrusions, taking immediate corrective action as needed which may involve system isolation, intruder containment and direct adversary engagement.
• Conducts and contributes to risk assessments, providing recommendations for risk mitigation.
• Creates and maintains comprehensive documentation related to security architectures, procedures, and protocols.
• Leads or participates in security-related projects, including liaising with coworkers and contractors.
• Engages in continuous professional development, including security certifications, bootcamps, and attending/presenting at conferences.
• Stays updated with the latest in cybersecurity threats, trends, and technologies.
• Maintains a strong sense of ethics and integrity, ensuring all actions align with company policies and professional standards.
• Provides mentorship to intermediate and junior security team members, fostering a culture of continuous learning and growth.

REPORTS TO
Director, Information Security
QUALIFICATIONS
EDUCATION:

• 4-Year University degree in Computer Science or related field

EXPERIENCE:

• 5 years' experience in information technology with a minimum of 3 years' recent experience in a full-time information security role including:

• 3 years of experience working with security systems and tools, including firewalls, IDS/IPS, SIEM systems, post-mortem forensics, and encryption technologies
• 3 years of securing cloud platforms (e.g., AWS, Azure, Google Cloud) using their respective security, tools, controls, and best practices
• Experience and/or training in computer network penetration testing and purple team tactics

SKILLS, KNOWLEDGE OR ABILITIES RELATED TO THE JOB

• Understanding of authentication mechanisms such as CASB, SAML, OAuth, Shibboleth and directory services such as Windows AD and LDAP
• Knowledge of secure coding practices, threat modelling, and security testing methodologies
• Understanding of cryptographic protocols and tools, including when to use them
• Knowledge of designing security architectures that protect against threats and accommodate business needs
• Awareness of legal and security standards (e.g., FOIPPA, PCI-DSS, ISO 27001, NIST)
• Proficient with scripting/programming languages (e.g., Python, PowerShell, Bash)
• Excellent oral and written communication skills
• Ability to explain complex security topics in an understandable manner to non-technical stakeholders
• Ability to conduct vulnerability assessments using various tools and techniques
• Ability to manage one's own time effectively, balancing multiple tasks and responding promptly to emerging challenges
• High-pressure environment (responding swiftly to security breaches and making prompt recommendations)
• May be required to come in after-hours on short notice in case of security breach or critical incident

WORKING CONDITIONS

• Sitting at desk and computer for long periods of time
• Travel by foot to office, lab or classrooms in various campus locations in all weather conditions
• Exposure to unclean conditions in client areas, e.g. under desks, keyboards, dust within computers
• Ability to lift weights exceeding 20 kg

The salary for the above position is determined by the Collective Agreement with the Canadian Union of Public Employees, Local 4879, as it presently exists.
Pay Band
$34.52 - $38.35 ( CUPE Grade 10 (90% - 100%) )
Salary rate
Location
BC CA (Primary)
# of Hires Needed
1
Organizational Unit
Thompson Rivers University -> Information Technology Services -> Information Security
Diversity and Inclusion Commitment:
Thompson Rivers University is strongly committed to hiring based on merit with a focus on fostering diversity of thought within our community. We welcome those who would contribute to the further diversification of our staff, our faculty and its scholarship including, but not limited to, women, Indigenous, Black and People of Colour, persons with disabilities and persons of any sexual orientation or gender identity. Please note that all qualified candidates are encouraged to apply, however applications from Canadians and permanent residents will be given priority.
NOTE: To learn more about Thompson Rivers University or living in Kamloops or Williams Lake please visit our . External Candidates invited to interview will be required to bring a copy of their transcripts to the interview.

Skills Required