Intermediate Cyber Security Analyst with Cloud Security Operations experience - 2799

Intermediate Cyber Security Analyst with Cloud Security Operations experience - 2799

Duration: 6 months (possibility of extension)

Location: Hybrid (Markham - 3 days a week)

We are seeking a resourceful and forward-thinking Cybersecurity Analyst who will be primarily responsible for day-to-day basic Cybersecurity Operational tasks. These would require general knowledge in Data Loss Prevention (DLP) triaging, working on Endpoint Detection and Response platform, Cybersecurity Incidents triaging and good communication skills. This person will work closely with Incident Response, DLP, Vulnerability management, Engineering, Risk, Infra, Business, legal and People Function teams. The role is part of our Canadian Cybersecurity Operations team and will be primarily based out of our Markham office.

Responsibilities:

• Work on Change management requests pertaining to the team

• Daily triaging IR and DLP incidents

• Work on vulnerability reports and track issues pertaining to the vulnerabilities

• Track, record, monitor any security issue

• Ensure health checks and periodic testing of DLP, EDR tools, SIEM and other tools

• Be aware of the latest threats in Cybersecurity

• Be more proactive in day-to-day operations

• Able to transfer knowledge when required

• Provide support on ad-hoc project work

• Assess summarize and escalate potential breaches to leadership

• Assisting partners and staff with related queries

• Assist with the development of other operational/project documentation

• Provide support to other teams within the broader Risk Management Group, as needed

• Other related duties as assigned

Must Haves:

• At least 4-6 years of experience working in an enterprise IT environment, including 3+ years with primary focus in Cybersecurity

• Experience with CNAPP (Cloud-Native Application Protection Platform) Tools (Security hub / lacework / Wiz / etc.) and Cloud Security Operations

• Experience with Endpoint Detection and Response tools (CrowdStrike / Sentinel / Defender / etc.)

• Practical knowledge of IR and DLP incidents triaging

• Knowledge of EDR capabilities

• Good documentation creation skills

• Good, practical knowledge of general information technology including topics such as operating

systems (Windows, UNIX, etc)

Nice to Have:

• Insurance industry specific background would be an asset

Tools:

• SIEM, EDR, Vulnerability Management, DLP, Endpoint Management Solution