IT Security Analyst

This is a fully remote position, open to applicants in Canada.

📋 Description

• Conduct operational evaluations of IT security systems and monitor essential consoles such as Microsoft Exchange Online Protection (EOP), Microsoft Sentinel, Microsoft 365 Defender, Microsoft Azure, Abnormal AI Security, Proofpoint TRAP, IBM QRadar (SOAR), and CrowdStrike Falcon for alerts, following up on these alerts and collaborating with other IT Security Analysts and IT Security Operations Leads as necessary.

• May engage in the investigation of suspected security breaches to ascertain root causes, impacts, and remediation strategies.

• Address incidents reported by users via Stantec's IT ticketing systems.

• Support IT Security administrators with the management and operational configuration of IT Security systems and controls when assigned.

• Learn to document all security incidents and near misses reported in our incident response system (IBM QRadar (SOAR)).

• Additional responsibilities as assigned.

⛳️ Requirements

• Fundamental understanding of computer security principles, including Identity & Access Management, Network Security, Application Security, and Incident Management.

• Basic knowledge of networking concepts and protocols (such as DNS, SMTP, FTP, SSL, etc.).

• Excellent written and verbal communication abilities.

• Exhibits a strong “customer orientation” mindset towards service management.

• Ability to learn and utilize our tools, consoles, and applications necessary for daily job functions (e.g., Microsoft Exchange Online Protection (EOP), Microsoft Sentinel, Microsoft 365 Defender, Microsoft Azure, Abnormal Security, Proofpoint TRAP, IBM QRadar (SOAR), CrowdStrike Falcon).

• Self-motivated – Demonstrates initiative, is solution-oriented, and can work with minimal supervision.

• Aware of the challenges and advantages of functioning within geographically and culturally diverse, global virtual teams, and willing to collaborate with others, which may require working outside of standard business hours.

• Shows diligence in maintaining detailed documentation of activities and actions taken during incidents to ensure accountability.

• Encourages innovation and continuous process enhancement.

• Demonstrates expertise in a technical domain and the capability to address problems using logical, systematic, sequential approaches.

• Preference for candidates with current or past involvement in information and/or Cybersecurity program-related activities.

🏝️ Benefits

• Health, dental, and vision plans.

• Wellness program.

• Health care spending account.

• Wellness spending account.

• Group registered retirement savings plan.

• Employee stock purchase program.

• Group tax-free savings account.

• Life and accidental death & dismemberment (AD&D) insurance.

• Short-term and long-term disability plans.

• Emergency travel benefits.

• Tuition reimbursement.

• Coverage for professional membership fees.

• Paid time off.