Senior IT and Security Analyst

POSITION SUMMARY:

The Senior IT & Security Analyst will be expected to,

• Design and implement security automation and orchestration (SOAR) capabilities to enhance incident response and security monitoring.
• Define, enforce, and oversee the implementation of security requirements across various SaaS platforms, including Salesforce and Workday, ensuring robust identity and access management (IAM), data encryption, secure API integrations, and compliance with industry security frameworks such as ISO 27001, SOC 2, and NIST CSF.
• Assist with security risk assessments for technology systems and third-party vendor solutions.
• Continuously tune and monitor IT security controls including but not limited to:
  • Intrusion Detection/Prevention System
  • Malware Protection System
  • File Integrity System Management
  • Endpoint Anti-Malware Management
  • Remote Access Systems and VPN
  • Security Incident response
  • Data Loss Prevention
  • Network Security (Wired & Wireless)
• Maintain detailed knowledge and awareness of cybersecurity trends and the development of new vulnerabilities and threats.
• Improve cybersecurity processes and documentation.
• Participate in new systems planning, design, and implementation.
• Participate in designing/implementing security controls/processes for new systems
• Participate in regular vulnerability and patching activities
• Participate in Threat Risk Assessments (TRA's)
• Perform the role of SOC SME Threat hunter
• Document IT & security controls/processes where applicable
• Cyber Security Incident Management Response
• Assist in auditing users & systems
• SPLUNK/LogScale SIEM expertise
• Maintain workstation and server security hardening standards
• Assist in troubleshooting security related network issues with network support team
• Must be available for afterhours implementations, testing and support
• Other tasks as required

REQUIREMENTS:

• Working knowledge of and experience applying common information security standards (ISO 27001, NIST 800-53a, NIST CSF, CIS Controls).
• Logging and monitoring systems experience with a SIEM system (Splunk/LogScale preferred).
• Broad knowledge of IT architecture and technologies, including identity and access management, cloud hosting, network, and database administration.
• Advanced Scripting skillsets (PowerShell, Python, etc)
• Vulnerability management and remediation
• Experience with the Jira suite of applications
• Excellent troubleshooting skills
• Excellent verbal and written communication skills
• Work in a demanding team environment, prioritizing tasks and escalating/communicating issues as required
• Superb analytical skills: Ability to think "outside-the-box" to resolve problems
• Post-secondary degree in an IT-related field or equivalent work experience.
• 10+ years' experience
• CISSP, CEH, OSCP, CCSP, SSCP or other information security certifications are highly desired.
• IT environment auditing experience, either internal or external.
• Experience desired deploying apps within Splunk and administrating the Splunk platform.
• Experience with data normalization and data modelling within the Splunk environment.
• Experience in creating and managing Splunk DB connects Identities, Database connections, Database inputs, outputs, lookups, and access controls.
• Experience with regex.
• Knowledge of advanced search and reporting commands.
• Understanding of system log files and other structured and non-structured data.
• Understand methods of collection, logging, windows filtering, and tuning / baselining data
• Familiarity with Kali Linux, Metasploit, Burp and other similar tools.

ABOUT US:

At SE, we love what we do. Every day, we bring hope and happiness to clients, homes, and communities across Canada. We treat each person with dignity and love, like our own family; we build empathy; and we do the right thing. We are always inspired to make a difference. As a not-for-profit social enterprise, we share knowledge, provide the best care, and help each client to realize their most meaningful goals for health and wellbeing. We are an inclusive workplace offering competitive pay, benefits, pension, and work life balance. We're a great place to work, and we hope you'll join our team.

In the interest of the health and safety of our patients/clients, employees, and greater good of public health, SE Health requires those that wish to work for this organization to be fully vaccinated against COVID-19. Fully vaccinated means a person has received both doses of the COVID-19 vaccine and it has been 14 days since the last dose.

SE Health is committed to the success of all its employees. If you feel you need accommodations because of illness or disability, please do not hesitate to contact the Talent Acquisition team at careers@sehc.com at your earliest convenience.