Sr. Cyber Security Analyst to lead the execution of various planned cyber security projects for a Financial client [ONSITE EDMONTON]

Our client is looking for a Sr. Cyber Security Analyst to lead the execution of various planned cyber security projects for a Financial client. [note: this is a salaried role; onsite in Edmonton]

Overview:

Collaborating closely with the Cyber Security and IT teams, under the supervision of the Cyber Security Lead, the role involves analyzing, developing, and implementing both new and existing controls, systems, processes, and procedures, and ensuring their effectiveness by monitoring the evolution of related controls by participating in the Risk Appetite and Risk Assessment process.

Must Have's:

• 5+ years of experience in a Cyber Security Analyst or related role
• Experience in infrastructure security solutions such as: Firewalls, Intrusion Detection/Prevention Systems, Network Security, Password Management, Data Encryption, and Access Control
• Experience with administering an IAM solution (e.g. Okta, Ping, SailPoint)
• Experience with administering a PAM solution (e.g. CyberArk, BeyondTrust)
• IT security-related certification from a reputable issuing body (CEH, CISSP, CISM)
• Experience in a past role as a Systems Administrator
• Deep experience with networking, network security, IPS/IDS systems

Nice to Have's:

• Strong understanding of Azure or AWS
• Firewall management experience (Palo Alto, SonicWall, Checkpoint)
• A bachelor’s degree in computer science is preferred. However, candidates with an IT-related diploma will also be considered with additional experience

Responsibilities:

• Carry out cyber security projects/initiatives in a diverse set of domains, showcasing independence in project implementation under the guidance of the Cyber Security Lead, and ensuring effective communication with stakeholders and the team throughout.
• Maintain and monitor security appliances such as Endpoint Protection, IPS/IDS, EDR, SIEM, and other security solutions.
• Work on furthering the implementation and evolution of our Least Privileged Access model and related projects/tasks that are ongoing.
• Monitor the effectiveness of security controls by evaluating related KPIs and Risk Appetite indicators, addressing any weaknesses or improving control effectiveness.
• Identify, assess, and report key risks relating to the confidentiality, integrity, and availability of information within Santander Consumer Canada.
• Coordinate with a third-party who performs some of the NIST Cyber Security Framework functions. Execute and monitor the controls related to Protect and Detect, and carry out the Respond function when needed. Work on any projects that the vendor assigns.
• Audit changes to the environment, and the existing infrastructure, to enforce uniform cyber security standards throughout. Keep senior management informed on any deficiencies or eligible improvements.
• Complete regular reporting on security posture, and risk indicators such as Second Line of Defense and Gap Analysis reports.
• Establish new policies, and enforce existing ones, such as Data Loss Prevention (DLP), Third Party Risk Management, Cloud Security, and other industry standard policies.
• Maintain up-to-date knowledge on emerging industry threats, industry related cybercrime, and active threat actors.
• Participate in the remediation findings from of Penetration Testing or Vulnerability Scanning.
• Contribute to cloud security by advising on cloud security best-practices, and offering improvements to the cloud architecture. A strong understanding of Azure or AWS is an asset, but not required.
• Work with the Information Technology department to support any special requests or projects handed down from the Cyber Security Lead or the CIO.

***networking, network security, IPS/IDS systems. As one who configures/creates the policies for them, not only audits or assesses them. Sr. Level but the CCIE or CCDE level