Security Analyst - Jobs in Regina, Saskatchewan, S4R 7X4

Job Description

The Security Analyst(s) are envisioned to participate in all projects to which they are assigned and perform work including, though not necessarily limited to:

• Handling the security queue in the ServiceNow application used to manage security incident tickets and comply with incident response plans and processes to address potential threats
• Analyzing the potential impact of new threats and communicate risks to relevant business units
• Responding to computer security incidents according to the security incident response policy and provides guidance to first responders for handling information security incidents
• Coordinating efforts among multiple business units during security incident response efforts
• Engaging stakeholders to fulfill their requests (e.g. decommission request, assets decommission executions, etc.). Coordinate with other peers in CSRMB to research needs and trends to anticipate security problems or incidents
• Assessing security incidents and taking prompt actions in terms of engaging required stakeholders and performing root cause analysis of the incident. Stay updated on information security-related attacks and trends
• Analyzing cyber security incidents to solve issues and suggest improvement in incident response procedures.
• Supporting the execution and monitoring of phishing simulation exercises, including user targeting, response tracking, and reporting;
• Responding to and resolving Privilege Access Management (PAM) related activities and service requests within defined Service Level Agreements (SLAs) using ServiceNow.
• Demonstrated working experience with network security and protocols (TCP/IP, VPN, firewalls, IDS/IPS).

• Demonstrated working experience with security tools and platforms (e.g. SIEM systems like Sentinel, antivirus, vulnerability scanners).
• Demonstrated working experience with incident response and handling with an ability to detect, investigate, and mitigate security threats.
• Demonstrated working experience with scripting and automation skills (e.g. Python, PowerShell, Bash).
• Certifications in networking and/or cybersecurity such as CompTIA Network+/Security+, Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), GIAC Security Essentials (GSEC) are considered assets.
• Demonstrated working experience with penetration testing and ethical hacking is considered an asset.
• Bachelor #39;s Degree in a related field (e.g. Computer Science, Information Technology, Cybersecurity) is considered an asset.