Cyber Security Analyst
Position Summary
The Cyber Security Analyst will provide a focused resource towards the operationalization of the City of Kingston's Cyber Security Program, policies, procedures, and standards. The scope of work will include the entire Information Systems & Technology department, and the overall technology usage within the corporation.
KEY DUTIES & RESPONSIBILITIES:
Deploy, manage, and maintain various cyber security systems and their corresponding or associated software, including web application firewalls, intrusion detection and prevention systems, EDR (anti-virus and anti-malware software), identity and access management platforms, SIEM systems, and other cyber security related systems.
Monitor logs and alerts from various systems for anomalous or suspicious activity. Interpret activity, make recommendations, take actions to resolve.
Keep current with emerging security alerts and issues.
Assess, test, and deploy new security solutions and technologies.
Recommend, schedule (where appropriate), and apply fixes, security patches, incident response procedures, and any other measures required in the event of a security breach or identified high-risk cyber security vulnerability.
Design, implement and test disaster recovery plans for operating systems, databases, networks, servers, and software applications.
Perform and test system backups and recoveries including DR testing.
Assist with the development of business continuity plans for various business units within the organization.
Assess the need for any security reconfigurations (minor or significant), improvements or upgrades and execute them, as required.
Design, perform, and/or oversee penetration testing of systems to identify system vulnerabilities, and implement recommendations.
Lead Threat/Risk Assessments and Privacy Impact Assessments and recommend/implement changes or improvements.
Design, implement and test Incident Response plans and playbooks.
Administer security awareness training and testing programs.
Manage, administer, and audit authentication, authorization, and accounting (AAA) systems and processes.
Design, implement, and report on security system and end user activity audit requests.
Assist with the development, implementation, maintenance, and enforcement of policies, procedures, and associated standards for information system security administration and information system access based on industry-standard best practices.
Develop, manage, and maintain cyber security system and process documentation and provide guidance to other members of the department.
Provide input on security requirements to be included in technology related RFP's, Statements of Work (SoW's) and other procurement documents.
Conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts.
Other duties as assigned.
Qualifications,Competencies
Diploma or degree in a systems/network administration, information technology or related computing sciences program.
5 years of recent and relevant experience in systems support/administration in a large networked, client/server computing environment.
Possess, or working towards attaining, information security certification (CompTIA Security+, CISM, ISC2 Certified in Cybersecurity etc).
Certification in Cybersecurity, Networking, Microsoft products, Linux, ITIL, or other technical services preferred.
Recent and relevant municipal government experience preferred.
Must demonstrate corporate competencies: Customer Focus, Results Orientation, Integrity, and Teamwork.
Skills, Abilities,Work Demands
Demonstrated ability to manage small to moderate sized projects (multi-task and multi-resource initiatives).
Demonstrated knowledge of application systems infrastructure administration practices and strategies.
Knowledge of information technology and security architecture.
Demonstrated ability to organize time, work and resources to accomplish objectives efficiently.
Must have excellent communication, negotiation and conflict resolution skills with the ability to influence others.
Strong, effective customer service and interpersonal skills.
Ability to work in a team environment, liaise with key stakeholders and to function effectively with minimal supervision.
Advanced computer skills including MS Office.
Strong time and project management skills with the ability to multi-task.
Strong problem-solving skills with the ability to gather and interpret information.
Strong analytical and research skills with the ability to formulate solutions to complex issues.
Requirement for occasional after-hours and weekend service delivery to reduce impacts on clients.
Requirement for compensated on call service coverage (rotational).
Required to obtain and maintain a satisfactory criminal record check.