Security Analyst Tier 2 SIEM Investigations

About the Role:

Security Analyst Tier 2 SIEM Investigationsprimary role is to provide advanced security analysis and oversight supporting complex incident detection and routine monitoring. Role will offer indepth analysis of highimpact events and play a crucial part in the incident response process ensuring a resilient cybersecurity defense for clients. Effective communication and collaboration with various teams are vital aspects of your role.

About Us:

We are proud to be recognized as a top employer for multiple years in a row we currently hold the distinctions of Canadas Top Small and Medium Employers 2024 Greater Torontos Top Employers 2025 and are Certified Great Place to Work.

At ISA Cybersecurity our mission is to help clients achieve their privacy and security goals and to be proactive in the fight against security threats. ISA is Canadas leading cybersecurityfocused company with three decades of experience delivering cybersecurity services and people you can trust. We provide our clients with comprehensive counsel on complex evolving and multifaceted issues related to cybersecurity and breach incident response.

ISA Cybersecurity also offers a worldclass 24/7 by 365 SOC 2 Type II certified CIOC (cybersecurity intelligence operations center) giving our clients deeper insights and earlier warnings about coordinated cyberattacks. ISA strategically partners with many of the most respected security technology firms in the world. Through these relationships our clients can gain access to a broad portfolio of industryleading cyber solutions best suited to protect their corporate assets and customer data.

In todays volatile world of digital threats we help Canadian companies to better understand their current security posture and how to mitigate risks.

Responsibilities:

• Monitor and analyze network traffic and IDS events from network and hostbased security appliance logs (Firewalls NIDS HIDS Sys Logs) to determine correct remediation actions and escalation paths for each incident
• Investigate intrusion attempts and perform indepth analysis of exploits
• Provide network intrusion detection expertise to support timely and effective decision making of when to declare an incident
• Perform patching and implement countermeasures to defend against newly discovered vulnerabilities and zeroday exploits
• Remediate threats to prevent the exfiltration of data threat actor persistence lateral movement and improve overall security posture
• Develop and maintain monthly and quarterly report documents according to the requirements of clients
• Collaborate with internal and external team members at all levels for effective knowledge sharing and keeping stakeholders informed of potential security risks and impacts introduced by new incidents
• Assist with the development of processes and procedures to improve incident response times and overall CIOC functions
• Host routine meetings with clients to create tune and optimize use cases based on the environment of different clients

Qualifications:

• PostSecondary Education in Cyber Security Computer Science & Computer Engineering
• Advanced understanding of the major networking protocols (IPv4/IPv6/TCP/UDP/DNS/REST API SOAP)
• Proficient foundation of the following operating systems (Windows/Linux/AIX/HPUX/iOS/Android/ Mainframes)
• Proven experience with SIEM WAF IPS and other security technologies
• Strong knowledge of information security concepts (Confidentiality Integrity Availability)
• Excellent communication and interpersonal skills with the ability to interact professionally with clients and team members
• Strong problemsolving and analytical abilities with attention to detail
• Recommended industry & vendor certifications (CISSP CISA CISM CEH GIAC Coding Microsoft IBM Splunk)

Why Join Us

At ISA Cybersecurity we lead with our Why. Our Why is to make people feel safe. This not only applies to the result of services that we provide to our clients but how people feel when interacting with us. Whether youre an employee of ISA or a client we want you to feel safe and supported. Each one of our team members is expected to uphold this leadership quality and embrace it through consistent demonstration of our core values of Explore Persevere Adapt and Uplift.

We are proud to offer a variety of employee friendly programs that enable our team to perform at their best.

Highlights of our programs and policies include:

• Flexible sick and personal days for all employees
• Generous health plan with enhanced mental health resources and programs
• Professional development opportunities and education reimbursement up to $2000 annually for all employees
• Maternity and parental leave topup
• Employee referral bonus of $2000
• Competitive salaries complemented with RRSP matching and bonus programs
• Distance remote working policy
• LinkedIn Learning access for all team members

We also place great value on celebrating the contributions of all employees through the following service recognition programs:

• Service anniversary recognition and generous fiveyear milestone service awards
• Presidents Club recognizing special achievement awards: Team Member of the Year for Sales CIOC and Cyber Services the Rich Uhrich Founders Award that is nominated on by all employees and four Presidents Awards (Risk Taker Lost Without You Money Maker and On the Rise)
• Spot rewards providing opportunities for instant peer recognition

Informationsharing and teambuilding initiatives include:

• Annual kickoff meeting to communicate our strategic priorities
• Informal staff events like pizza lunches or games day
• Quarterly town hall meetings
• Regular team get togethers and client events
• Scheduled employee feedback surveys and goal setting focus groups

Thank you for your interest in joining ISA Cybersecurity. Our team looks forward to reviewing your application. We will be reaching out to you directly if your experience matches our needs.

Accessibility:

ISA Cybersecurity is committed to providing accommodations for applicants with disabilities. If you require specific accommodation because of a disability or medical need please inform ISAs Human Resources team so arrangements can be made for appropriate accommodation to be in place during the recruitment process.