Sr. Security Analyst to assist in day-to-day security operations activities, monitoring, upgrades, and improvements for a healthcare client
S.i. Systèmes
Ottawa, ON-
Nombre de poste(s) à combler : 1
- Salaire À discuter
-
Emploi Contrat
- Publié le 26 novembre 2024
-
Date d'entrée en fonction : 1 poste à combler dès que possible
Description
Our valued Healthcare client is seeking a Sr. Security Analyst to assist in day-to-day security operations activities, monitoring, upgrades, and improvements.
Initial 3-month contract opportunity. Candidates with the ability to work in a hybrid model in North York or Ottawa, ON will be prioritized however remote options will also be considered.
Responsibilities:
- Administer and maintain security systems and infrastructure (e.g., firewalls, VPNs, vulnerability scanning tools, web proxies, SIEMs, endpoint security solutions, etc.), and security services within the AWS cloud environment (AWS GuardDuty, Security Hub, Trusted Advisor, IAM Access Analyzer, CloudWatch Anomaly Detection, etc.)
- Performing ongoing security monitoring of events reported by security systems, SIEMs, and cloud security monitoring services, and assess, respond to, and resolve security events (incidents, vulnerabilities, threats, and overall risk).
- Respond to security incidents involving malware events on employee laptops, including isolating the laptop, containing the threat, communicating to the affected employee, analyzing the source of the threat, and adjusting existing controls as necessary to prevent recurrence.
- Conduct vulnerability and risk assessments, perform root cause analysis of security incidents, provide recommendations for improvements, and implement the recommendations as appropriate.
- Leverage the security and IT infrastructure to assist the incident response team in resolving critical technical incidents by combining your expertise in both event analysis through SIEMs and network packet captures of network traffic traversing across firewalls, routers, proxies, load balancers, and hosts.
- Continuously improve and advance the organization's IT infrastructure by assessing overall risk and mitigation effectiveness in face of evolving network attacks and threat vectors, as well as changes in industry best practices.
Must have skills:
- 5+ years experience with Firewall Administration / Management
- 3+ years experience SIEM (Security Incident & Event Management) Administration / Management
- 5+ years experience with Incident Response
- 3+ years experience with Threat Hunting and Vulnerability Scanning
- 3+ years experience with VPN Administration
- 5+ years experience with Malware investigation & analysis
- 3+ years experience with Microsoft Defender for Endpoint
- 3+ years experience with AWS Security Services (AWS GuardDuty, Security Hub, Trusted Advisor, IAM Access Analyzer, CloudWatch Anomaly Detection, etc.)
Exigences
non déterminé
non déterminé
non déterminé
non déterminé
D'autres offres de S.i. Systèmes qui pourraient t'intéresser