Skip Navigation

Sr. IT Security Incident Response Analyst
Ottawa, ON

Back To Job Board

Direct Hire


As the Senior Incident Response Analyst, you are responsible for daily monitoring, triage and investigation of alerts and potential incidents ensuring timely awareness and action as determined necessary. Work with cross functional teams internally and with vendors in leading/assisting with recovery from Cyber Security incidents.

 

RESPONSIBILITIES

  • Ensuring the readiness of the organization to respond to a Cyber incident
  • The development of process, procedures and policies related to Cyber incident response
  • Investigate contain and respond to cyber incidents
  • Act as an escalation point for all detection alerts by third-party managed services
  • Monitor and analyze  security event logs and interprets reports
  • Perform incident response investigations, containment and root cause analysis activities across multiple platforms including Windows, Linux/Unix. Cloud-Services, and others
  • Investigate, respond, escalate and lead/participate in the research, analysis, root cause identification and resolution of security incidents
  • Utilize tools to conduct investigations and examine endpoint, network, and Cloud-Services based evidence
  • Develops and contributes to the development and refinement of security operational procedures, processes, and technical standards.
  • Develop and continuously improve incident response methods and countermeasures; lead table-top exercises
  • Produce high-quality written and verbal communications, recommendations, and findings to stakeholders
  • Work with other members of the IT Security, Infrastructure, Application, and Service Delivery teams as well as business partners to implement response and remediation plans related to security incidents
  • Provide reports and metrics on security operations, monitoring, and response activities
  • Maintaining awareness of current cyber security tools, trends and threat landscape

 

 

Experience/Education Required
  • Diploma or degree in Cybersecurity, Information Technology, Information Security or similar or equivalent experience
  • 5+ years of Cyber Security experience including conducting incident response investigations
  • Demonstrated working knowledge and experience of security threats, vulnerabilities, and identifying indications of compromise 
  • Able to thrive within a team environment as well as on an individual basis
  • Experience with various security tools such as, IDS/IPD, EDR, Malware defenses, event log viewers, Vulnerability scanning and remediation
  • Advanced Information Security certifications preferred
  • Excellent analytical abilities and a strong ability to think creatively when approaching issues

Desirable:

  • Demonstrated experience facilitating table-top exercises
  • Threat hunting experience preferred
  • Experience administering and supporting Windows operating systems, both workstations and server 
  • Understanding of Windows and O365 Security and event log analysis
  • Knowledge of Industry standard security frameworks such as NIST, ISO, COBIT, CIS


Back To Job Board

Submit Your Resume

"*" indicates required fields

First Name*
Last Name*
Max. file size: 20 MB.
Drop your resume and other files here or upload here
This field is for validation purposes and should be left unchanged.