Jr. Cyber Security Analyst

Responsibilities:

• Auditing and reporting on established security operational reports. 

• Monitor MDR and EDR escalations for alerts. 

• Monitor external security rating portals such as BitSight for threat findings and triage issues until resolution.

• Ensuring 2FA/MFA (2-factor or multifactor authentication) policies are enforced and current

• SSL/TLS certificate audits  (public-facing web servers RDP servers and Kubernetes)

• Auditing and reporting on all external and internal web services to ensure they are secure using scanning tools

• Work with external vendors to provide an annual external/internal pentest triage risk assessment and recommendations.

• Work with the development group to ensure best practices are in place for web applications (CORS CSP reverse proxy  SQL injection etc.) and sensitive data (credit card health care data  personally identifiable information)

• Communicate the benefits of cybersecurity diligence to ensure cybersecurity stays on the organizations radar and champion all related efforts going forward.

• Work with the ISO 27001 team to maintain and improve documentation and processes.

• Work with Operations and Infrastructure teams to ensure operational security compliance (Windows Server/Windows updates Sophos AV updates etc.).

Qualifications :

• Post Secondary Education preferably in Computer Science or Information Security

• Experience with Cyber Security Management tools and projects supporting Infrastructure Cloud Applications on-premise applications BCP and DR plans 

• Experience documenting procedures and creating technical specs for internal technology teams 

• SSCP (Systems Security Certified Practitioner) GISF (GIAC Information Security Fundamentals) CompTIA Security

• Knowledge of vital regulatory and compliance knowledge (PIPEDA CCPA GDPR)

• Experience in a variety of security technologies and architecture such as MFA/2FA VPN DLP privileged access management network security data security software security web app security cryptography and software-defined networks

• Knowledge of email security.

• Experience with SIEM technology 

• Advanced Office tools such as Google Suite or MS Office

• Excellent English communication skills both oral and written

• Acute attention to detail with excellent documentation skills

Additional Information :

       What do we offer to you 

• The chance to gain valuable experience
• Competitive Pay
• Full benefits program
• A Profit Sharing Program

We would like to thank all those expressing an interest in this position; however only the candidates selected for an interview will be contacted.

Starting salary is determined by level of skill and experience. 

Remote Work :

No

Employment Type :

Full-time