Sr. Cyber Security Analyst
Yoush Consulting
Toronto
5d ago

Job Description

Sr. Cyber Security Analyst

  • Yoush Consulting is an Information Technology consulting firm. Yoush Consulting has been recognized by the prestigious Branham300 list of Top 25 Canadian ICT companies in 2014 and 2016;
  • as well as the Top 20 Canadian ICT Movers & Shakers in 2014.

    Our client is one of the largest professional services network of independent accounting and consulting member firms which provide assurance, tax and advisory services to privately held businesses, public interest entities, and public sector entities.

    The Sr. Cyber Security Analyst is a hands-on role that requires a high degree of technical security expertise within the cloud ecosystem (primarily AWS).

    You will be responsible for cyber security related tasks, including the implementation and day-to-day administration of Information Security solutions, and optimizing configurations for effectiveness and to reduce false positives.

    Your primary responsibilities include performing assessments of security architecture, making practical recommendations to reduce risks, and then help realize the change, as well as the prevention and remediation of security vulnerabilities within cloud platforms using existing or new solutions.

    In addition to day-to-day cloud security tasks, you will be responsible for security program maturity efforts and initiatives related to cloud.

    You will work with the Project and Information Security teams to help establish and maintain cloud security processes and ensure that security issues are identified and addressed.

    Lastly, you will be responsible for producing metrics to measure the effectiveness of the program.

    Responsibilities :

  • Provide expertise and support in cloud environment to ensure control activities are designed and implemented appropriately to protect the security, confidentiality, privacy, integrity and availability of data in compliance with organization policies and standards.
  • Proactively stay current with developments in relevant technologies
  • Deploy security solutions in cloud environments
  • Build and deliver systems to identify potential security incidents and serve as subject matter expert on escalated incidents
  • Assists in preparing and presenting the KPI’s to management and stakeholders
  • Report unresolved security exposures, misuse of resources, and noncompliance situations using defined escalation processes.
  • Develop and maintain documentation for security systems and procedures.
  • Monitor system security events and network traffic for unusual or suspicious activity.
  • Investigate and resolve security violations by providing post-mortem analysis to illuminate the issue, and identify causes, possible solutions, and preventative measures
  • Assist with other cyber security related tasks.
  • Qualifications :

  • Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Information Security & Assurance, Information Technology, or related field required.
  • Any recognized security and cloud specific certifications, e.g., CCSP, SSCP, CISSP, CCSK, AWS
  • Minimum 3 years of Cloud Security related experience required
  • Proficient and up to date with AWS security services and pros / cons to implementing each
  • 2+ years of hands on experience with a broad range of security technologies including : Next Generation Firewall (NGFW), Intrusion Prevention System (IPS), Content Filtering devices and proxies, Data Loss Prevention (DLP), Email Security, etc.
  • 2+ years of hands on experience with Amazon Web Services (AWS) including CloudFormation, CloudWatch, Lambda, IAM, KMS, VPC, ELB, EC2, CloudTrail.
  • Experience with a cloud security platform, e.g. Zscaler
  • Experience with CASB (e.g. McAfee Skyhigh, MCAS), AlertLogic, SumoLogic.
  • Experience with the development, deployment, and automation of security solutions in an enterprise cloud-based and on prem environments.
  • Knowledge of network based, system level, and application layer attacks and mitigation methods
  • Experience extracting pertinent security data from monitoring solutions and AWS audit, logs, and reports
  • Knowledge of technical security control environments and compliance frameworks including CSA, ISO 27001 and NIST
  • Understands Python programming language
  • Apply
    Add to favourites
    Remove from favourites
    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form