Job Offer: Info Security Analyst
Location: Toronto
Contract Duration: 6 months
Work Mode: Hybrid
Start Date: ASAP
________________________________________
Why Join Us?
Astek is a global leader in technology consulting. With 9,600 experts worldwide, we guide our clients through digital transformation by developing innovative solutions.
In Canada, we excel in IT and engineering. We collaborate with leading companies to tackle major technological challenges, putting innovation, collaboration, and excellence at the heart of our actions.
Join a passionate and committed team ready to bring your ideas to life.
________________________________________
About the Role
On behalf of our client in the Banking industry, Astek Canada is seeking a motivated Info Security Analyst ready to take on new challenges.
________________________________________
Your Responsibilities
As an Info Security Analyst, you will be responsible for:
• Develop security monitoring rules/use cases on SIEM platforms (Splunk, Azure Sentinel, Logscale)
• Identify cyber threats, anomalies and risks from security-relevant data (e.g. login/logoff events, persistent to outbound data transfers, firewall allows/denies, etc.).
• Find suspicious or malicious activity by analyzing alerts, investigating indicators of compromise (IOCs like file hashes, IP addresses, domains, etc.).
• Researching and developing new threat detection use cases based on threat research findings, threat intelligence, analyst feedback and available log data.
• Performing activities within the content life cycle, including creating new use cases, testing content; tuning, and removing content; and maintain associated documentation.
• Working with the other security functions and product SMEs to identify gaps within the existing analytical capabilities.
• Participating in root cause analysis on security incidents and provide recommendations for remediation.
• Acting as the liaison to business units to fulfill audit, regulatory compliance as well as corporate security policy requirements.
• Create and maintain documentation for detection processes.
• Continuously improve detection capabilities based on emerging threats.
________________________________________
Your Qualifications
Education/Experience:
• Experience in SIEM content development (Splunk, Azure Sentinel, Logscale, or similar SIEM platform).
• Understanding various log formats and source data for SIEM Analysis.
• Minimum 5 years of information security experience, preferably engineering or development.
Key Skills:
• Ability to effectively communicate with anyone, from end users to senior leadership – facilitating technical and non-technical communication.
• Strong incident handling/incident response/security analytics skills.
• Deep understanding of technical concepts including networking and various cyber-attacks.
• Solid background with Windows and Linux platforms (security or system administration).
Personal Qualities:
• Analytical and solution-oriented mindset.
• Team collaboration and teamwork skills.
• Autonomy and rigor in managing priorities.
________________________________________
The Astek Advantages
• Personalized CARE plan for our employees.
• Diversity & Inclusion Charter.
________________________________________
Ready to Take on the Challenge?
Apply now by sending your CV and discover a rewarding career at Astek Canada.
