Senior Cyber Security Analyst - Jobs in Victoria Park

Job Description

Precision Drilling has a hybrid opening for a Cyber Security Analyst eager for fresh challenges and development toward potential future career growth as our business continues to innovate and grow. Summary:The Senior Cyber Security Analyst will have primary responsibility for implementing, managing, and supporting security solutions and procedures within Precision. The successful candidate must have a strong working knowledge of threatamp; vulnerability management, security event monitoring, risk analysis, and incident response. The selected individual will also support other IT teams by providing subject matter expertise and ensuring security best practices are implemented across the IT environment. Responsibilities:

• Manage the existing security technology stack, including EDR/XDR, EPM, PAM, Email Security, Firewall, Web Filtering, Traffic Inspection, IDS/IPS, vulnerability scanners, and logging agents
• Oversee and collaborate with the Managed Detectionamp; Response (MDR) provider to ensure effective 24/7 monitoring of the IT environment and serve as an escalation point for all ticketed security incidents
• Responsible for initial incident response and investigations and supporting resolution of issues or outages affecting the IT environment
• Perform threat and vulnerability management, working with IT infrastructure teams and other business units to ensure that vulnerabilities are addressed promptly and that related processes for patch management and configuration monitoring are effective
• Manage identity security features of the identity provider(s), including Multi-Factor Authentication, Conditional Access, OAuth, and SAML integrations
• Assess for cybersecurity controls maturity and effectiveness, performing internal security assessments of IT systems as required
• Actively participate in information technology audits, collaborating with internal and external audit teams and responding to recommendations
• Contribute to the organizational cybersecurity awareness program, presenting to stakeholders, end users, and occasionally management audiences
• Provide input and guidance into processes for cybersecurity risk management and governance
• Collaborate with ITamp; vendor management to ensure that new software and services meet the organization #39;s security requirements
• Review changes being made to systems for potential security impacts
• Provide security subject matter expertise to other business units and project groups, ensuring that best practices for security are followed at every stage of project execution
• Paid On-Call required
• Engages regularly with Senior-level business leaders to ensure top-of-mind IT security
• Participates in quarterly presentations to Senior Leadership, Executives, and/or the Board of Directors
• Supervises vendor performance and contractor resources and ensures they perform competently, and that Precision Drilling receives services aligned with contractual terms and conditions
• Builds and maintains strategic relationships with various departments, external businesses, and partner agencies
• Preparation and/or review of technical solution costs (i.e., high-level project budgets, SOWs, RFQs)

Knowledgeamp; Skills:

• Attention to detail in all areas of work
• Excellent time management skills and the ability to prioritize tasks and make decisions with minimal supervision
• Strong organizational, analytical, and execution skills
• Communicates unambiguously and listens effectively
• Ability to present technical material to various stakeholders clearly and concisely
• Strong desire to learn, improve, and assist others
• Ability to explore and research new ideas and contribute innovatively to existing processes or solutions
• Documenting and updating technical procedures, standards, and policies

Education:

• 5+ years of cybersecurity experience at the enterprise level
• Must have one of the following certifications: CISSP, CCSP, CISA, or CISM

Experience:

• Must have strong networking and systems administration fundamentals
• Strong experience working with and/or implementing technologies including but not limited to Microsoft 365, Microsoft Azure, Entra ID, Active Directory, EDR/XDR, EPM, PAM, Email Security, Firewall/NGFW, Web Filtering, Vulnerability Scanners, and logging infrastructure
• Understanding of key cloud computing, virtualization, and containerization technologies
• Experience with security governance frameworks such as NIST, CIS Controls Framework, or ISO 27000 series
• Exposure to the Oilamp; Gas industry and OT/IACS environments is preferred
• Experience with application security of enterprise SAP products such as S/4HANA and SAP Business Technology Platform (BTP) is also beneficial