Security Incident Analyst
11d ago

SITAis the world’s leading specialist in air transport communication andinformation technology. Nearly every passenger flight relies on SITAtechnology.

We work with our air transport owners and members to providetechnology solutions that make a difference at a community level.

We innovatecollaboratively, while developing and managing solutions over the world's mostextensive network. At SITA, you will find a dynamic work environment withmultidisciplinary and multicultural teams interacting in different projects.

Our Montreal centre, located on Sherbrooke street, corner McGill college islooking for a Security Incident Analyst . Do you want to join our team?

PURPOSE To develop & maintain information security handling solutions & processes. The successful candidate will directly interact with business stakeholders to prevent and / or coordinate response to cyber-

threats. KEY RESPONSIBILITIES As a member of the Information Security Practice, you will be responsible for leading, managing & coordinating all aspects of information security incident response with the stakeholders.

The stakeholders include a broad range of roles within the organization from operational support personnel through to the top tiers of management.

  • Coordinate and drive efforts among multiple business units during response activities and post-mortem activities- Provide expertise and technical analysis leadership during major investigations-
  • Provide analytical skill for detecting and investigating cybersecurity incidents- Lead the activities necessary for the immediate, short-

    term rapid resolution of incidents to minimize risk exposure- Proactively research & monitor security-related information sources to aid in the identification of threats-

    Routinely develop and update incident response process to ensure response activities align with best practices and provide comprehensive mitigation of threats-

    Provide advanced technical skills to support stakeholders in identifying and eliminating security risks, threats, and vulnerabilities-

    Perform regular process compliance checks with the various process owners within SITA- Ensure supporting systems are maintained in compliance to information security standards EXPERIENCE -

    5 years of experience of information security incident handling or compliance, including the development, implementation and operation technical security solutions that support the role.

  • 3 years of experience in IT Security management including the ability to articulate between sr. leadership & technical teams on information security subjects.
  • 5 years of IT and security experience with exposure to a broad range of security topics and technologies, including networking, firewalls, Windows, Linux, AIX.
  • 3 years of experience in applying industry standard information security frameworks such as PCI, NIST, ISO2700 would be an asset-
  • Experience of working in the airport and / or airline industry would be an asset KNOWLEDGE & SKILLS -Strong analytical and technical abilities to assess, classify, and investigate security events.

  • Proven knowledge of SIEMs & log collection systems (McAfee, Arcsight, Splunk, Elastic, AlienVault, QRadar)-Up to date knowledge of existing and emerging threats, with a deep technical understanding of common attack vectors, such as malware behavior, botnet pattern, vulnerabilities & exploits.
  • In-depth knowledge and understanding of Internet and networking principle and protocols.-In-depth knowledge and understanding of a variety of OS platforms, including Desktop Windows, Server Windows, AD, linux, AIX.
  • Strong & articulate communicator CORE COMPETENCIES - Adhering to Principles & Values- Creating & Innovating- Customer Focus-
  • Results Orientation- Teamwork- Communication- Impact & Influence EDUCATION & QUALIFICATIONS -Has successfully completed a Bachelor's degree in Computer Science, Computer Engineering, Information Technology or can demonstrate equivalent work experience in a network security profession-

    Professional Security Certifications are an asset : SANS / GIAC GCIH, ECIH, CSIH

    Mar 16, 2018, 9 : 53 : 11 AM

    My Email
    By clicking 'Continue', I agree to neuvoo's Privacy & Terms and agree to receive relevant email job alerts. (cancel anytime) See here
    Application form