Senior Specialist- Cyber Security Incidents (B28181992)

Location: Toronto, Ottawa and Montreal, ON, Canada
Date Posted: 09-02-2018
Our client is currently seeking a candidate for the position of Senior Cyber Security Incident Handler – Information Security Response.  Reporting to the Senior Manager, Information Security Response, the candidate is responsible for the development, coordination and response during and before cyber security incidents across client's enterprise network, business units and subsidiaries.
The cyber incident handler will identify threats, initiate response and coordinate enterprise wide recovery.
 Job Duties/Accountabilities:
  • As a key member of client's CIRT (Cyber Incident Response Team), participate in the response to cyber threats and incidents and engage directly with operational teams, stakeholders and leadership
  • Respond to incidents and coordinate stakeholders in the identification, containment, impact assessment and remediation of cyber threats
  • Perform and conduct network forensics, endpoint and application log analysis to identify and contain cyber threats
  • In collaboration with client SOC and analysts leveraging SIEM, determine use case improvements for SIEM log correlation and for security analytics
  • Develop methods to leverage Cyber Threat Intelligence in the identification and triage of threats
  • Develop new automation opportunities through the orchestration of incident response processes and playbooks for managing cyber threats
  • Lifecycle management of cyber incidents including ticket resolution, reporting of key metrics and creation of reporting dashboards and analytics
  • Analyse security information and artifacts such as scan results, logs, and files in all phases of incident response. Participate and define incident handling methodologies to proactively manage security risk
  • Document analysis results, identify security risks, produce reports and present to technical and executive stakeholders. Track incident risks to closure with GRC and participate in on going GRC use case development
  • High degree of initiative, dependability and ability to work with little supervision
Critical Qualifications/Competencies:
  • Bachelor’s degree in technology-related field, or in computer science with a specialization in telecommunications, or the equivalent
  • Seven (7) years’ experience in information security
  • In depth knowledge of TCP/IP, Firewall/IPS/HIPS, Forensics, Vulnerability management, SIEM log correlation
  • Knowledge of Malware mitigation techniques, Network security, Advanced malware protection mechanisms and Breach Detection response technology
  • The following certifications are an asset: GCIA, GCIH, CISSP, EnCE
  • Sound document writing skills
  • Good knowledge of common office tools
  • Ability to communicate in French is an asset
  • Existing Secret clearance or ability to obtain is preferred
this job portal is powered by CATS