Must be able to lead cyber incident response activities and coordinate remediation actions across multiple teams.
Must have working knowledge of threat actor tactics and techniques.
Must be able to perform digital forensics on Thales devices as part of the incident response process as well as investigations.
Must be able to help assess current security monitoring posture and engage vendors to drive improvements in their service.
Must be able to support investigations with HR and Legal teams and present findings to stakeholders around access management, security investigations and actions requiring data gathering and analysis.
Must be able to work with stakeholders to partner on remediating vulnerabilities in systems.
Must have experience with deploying and monitoring Endpoint Detection & Response tools across workstations and servers.
Must be able to help define technical security requirements and recommendations on new IT and business projects.
Must be able to identify cybersecurity risks and recommend/deploy controls to mitigate risks or reduce to an acceptable level.
Responsible for being a technical lead and work with IS/IT teams on topics such as EDR/XDR, E-Mail security, tool configuration and deployment, system defense hardening, etc.
Responsible for providing input to help mature all Security Monitoring and Incident Response processes.
Responsible for providing security engineering solutions and support during incidents, proactively considering the prevention of similar incidents from occurring in the future.
Responsible for developing a plan to mature the Security Monitoring program and engage with vendor on process improvements.

Requirements

Bachelor’s degree in computer information systems, programming, engineering or a related field with a minimum of 5+ years of relevant work experience in information technology and security, responding to security incidents and performing investigations, or an equivalent combination of education and experience.
5 to 7 years of experience in Cybersecurity domains.
3 to 5 years of experience in responding to Security events with ability to document remediation steps and lessons learned.
Strong knowledge of core IT and Security infrastructures including Active Directory, Microsoft Windows security controls, SIEM, AV, IPS, vulnerability scanners etc.
Must be able to work with minimal direction in an office without any team members in the same location.
Strong communication, negotiation and analytical skills.

Benefits

Company paid Extended Health, Dental, HSA, Life, AD&D, Short-term Disability, Cancer Care Program, travel insurance, Employee Assistance Plan and Well-Being program.
Retirement Savings Plans (RRSP, DCPP, TFSA) with a company contribution and a match to a DCPP, with no vesting period.
Company paid holidays, vacation days, and paid sick leave.
Voluntary Life, AD&D, Critical Illness, Long-Term Disability.
Employee Discounts on home, auto, and gym membership.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills

cyber incident responsedigital forensicssecurity monitoringvulnerability assessmentEndpoint Detection & Responsetechnical security requirementscybersecurity risk mitigationsecurity engineeringsystem defense hardeningincident response processes

Soft skills

leadershipcommunicationnegotiationanalytical skillsstakeholder engagementteam collaborationproblem-solvingindependent workpresentation skillsdocumentation