Job Closed

This listing is no longer active.

IT Security Analyst

Security AnalystSecurity AnalystFull TimeRemoteSeniorTeam 10,001+Since 1954H1B SponsorCompany SiteLinkedIn

Location

Canada

Posted

70 days ago

Salary

$63.3K - $88.6K / year

Seniority

Senior

Bachelor Degree3 yrs expEnglishAzureCyber SecurityDNSSMTP

Job Description

IT Security Analyst

Stantec

• Help monitor Stantec’s systems for signs of intrusion • Work closely with the IT Security team to investigate, contain, and remediate security incidents • Perform operational reviews of IT security systems and monitor key consoles • Participate in the investigation of alleged security breaches to help determine root cause, impact, remediation • Respond to incidents reported by users through Stantec's IT ticketing systems • Assist IT Security administrators in management and operational configuration of IT Security systems and controls • Document all security incidents and near misses reported in our incident response system • Other duties as assigned

Job Requirements

  • Basic understanding of computer security concepts including Identity & Access Management, Network Security, Application Security, and Incident Management
  • Basic understanding of networking concepts and protocols (such as DNS, SMTP, FTP, SSL, etc.)
  • Strong written and verbal communication skills
  • Demonstrates an outstanding “customer orientation” personality towards service management
  • Capable of learning our tools, consoles and applications used in day-to-day performance of job responsibilities (e.g. Microsoft Exchange Online Protection (EOP), Microsoft Sentinel, Microsoft 365 Defender, Microsoft Azure, Abnormal Security, Proofpoint TRAP, IBM QRadar (SOAR), CrowdStrike Falcon)
  • Self-starter – Shows initiative, is solutions-focused and shows the ability to work with minimal supervision
  • Awareness of the challenges and benefits of working in a geographically and culturally dispersed, global, virtual teams, and willingness to work cooperatively with others on such teams, which sometimes entails working outside normal business hours
  • Demonstrate diligence in detailed documentation of activities and actions taken during incidents and activities to ensure accountability of actions
  • Promote innovation and continual process improvement
  • Demonstrates knowledge and skill in a technical area, and the ability to tackle a problem by using logical, systematic, sequential approaches
  • Prefer candidates who show current or past information and/or Cybersecurity program related activities
  • Education and/or experience in the following course areas are a plus: CompTIA Security+ entry level, CompTIA CySA+ Focused on Cybersecurity analysis, Certified SOC Analyst (CSA), Cybersecurity Bootcamps

Benefits

  • Health, dental, and vision plans
  • Wellness program
  • Health care spending account
  • Wellness spending account
  • Group registered retirement savings plan
  • Employee stock purchase program
  • Group tax-free savings account
  • Life and accidental death & dismemberment (AD&D) insurance
  • Short-term/long-term disability plans
  • Emergency travel benefits
  • Tuition reimbursement
  • Professional membership fee coverage
  • Paid time off

Related Job Pages

More Security Analyst Jobs

Full TimeRemoteTeam 10,001+Since 1954H1B Sponsor

• Apply expert knowledge of concepts, processes, practices, and procedures on technical assignments • Support enterprise Cybersecurity standards • In coordination with Government develop and implement Cybersecurity standards and procedures • Coordinate, develop, and recommend security processes for an organization • Recommend Cybersecurity solutions to support customers’ requirements • Identify and report security violations • Recommend and satisfy Cybersecurity requirements based upon the analysis of CSPP, policy, regulatory, and resource demands • Support customers at the highest levels in the development and implementation of processes and policies • Apply know-how to government and commercial common user systems, as well as to dedicated special purpose systems requiring specialized security features and procedures • Support design and development of security features for system architecture requirements • Analyze and make recommendations of security requirements for computer systems which may include mainframes, workstations, and personal computers • Support design, development, engineering, and implementation of solutions that meet CSPP requirements • Provide integration and implementation of the computer system security solution • Analyze general Cybersecurity-related technical problems and provide basic engineering and technical support in solving these problems • Support vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle • Perform all procedures necessary to ensure the safety of information systems data assets and to protect systems from intentional or inadvertent access, theft, or destruction • Ensure that all information systems are functional and secure • Provide subject matter expertise, direction, guidance, tracking, and support on cyber security, risk management, continuous monitoring, security Assessment and Authorization (A&A), and business processes that support a metric-driven environment • Develop, maintain, and update Plans of Action and Milestones (POA&M) to identify system weaknesses, mitigation, and timelines for applying corrective actions

United States
$64.2K - $80.5K / year
Job Closed

Role Description The SOC Lead / Incident Manager will oversee 24x7x365 Security Operations Center (SOC) functions for the Congressional Budget Office vSOC program. This role requires strong leadership in incident response, SLA enforcement, and team management, with hands-on expertise in Microsoft Sentinel and Defender environments. The SOC Lead will serve as the escalation authority, ensuring operational excellence, audit readiness, and compliance with federal frameworks such as NIST SP 800-53 and FISMA. - Lead Tier I/II/III SOC operations with full escalation authority. - Enforce SLA-driven performance standards (≤15 min triage, ≤1 hr investigation, ≤2 hr escalation). - Oversee the incident lifecycle from triage through investigation, response, and closure. - Act as incident commander during high-severity events, coordinating stakeholder communication. - Review and approve incident classifications, escalations, and remediation actions. - Conduct daily/weekly operational reviews, tracking incident trends and performance metrics. - Collaborate with engineering teams to improve detection rules and reduce false positives. - Ensure all incidents are documented and audit-ready for compliance assessments. Qualifications - 8-10+ years of experience in SOC operations and incident management. - Strong expertise in Microsoft Sentinel, Defender XDR, and SIEM/SOAR platforms (Splunk, QRadar, ELK). - Proven ability to lead cross-functional SOC teams and enforce SLA compliance. - Hands-on experience with ServiceNow, Jira, Power BI, KQL, and Log Analytics. - Deep knowledge of NIST SP 800-53, NIST 800-61, FISMA, and FedRAMP frameworks. Requirements - Certifications (Preferred / Mandatory): - CISSP (Certified Information Systems Security Professional) - GIAC (GCIH / GCIA / GCFA) - Microsoft Certified: Security Operations Analyst (SC-200) - ITIL / PMP (optional but valuable for governance)

United States
Job Closed

Role Description The SOC Lead / Incident Manager will oversee 24x7x365 Security Operations Center (SOC) functions for the Congressional Budget Office vSOC program. This role requires strong leadership in incident response, SLA enforcement, and team management, with hands-on expertise in Microsoft Sentinel and Defender environments. The SOC Lead will serve as the escalation authority, ensuring operational excellence, audit readiness, and compliance with federal frameworks such as NIST SP 800-53 and FISMA. - Lead Tier I/II/III SOC operations with full escalation authority. - Enforce SLA-driven performance standards (≤15 min triage, ≤1 hr investigation, ≤2 hr escalation). - Oversee the incident lifecycle from triage through investigation, response, and closure. - Act as incident commander during high-severity events, coordinating stakeholder communication. - Review and approve incident classifications, escalations, and remediation actions. - Conduct daily/weekly operational reviews, tracking incident trends and performance metrics. - Collaborate with engineering teams to improve detection rules and reduce false positives. - Ensure all incidents are documented and audit-ready for compliance assessments. Qualifications - 8-10+ years of experience in SOC operations and incident management. - Strong expertise in Microsoft Sentinel, Defender XDR, and SIEM/SOAR platforms (Splunk, QRadar, ELK). - Proven ability to lead cross-functional SOC teams and enforce SLA compliance. - Hands-on experience with ServiceNow, Jira, Power BI, KQL, and Log Analytics. - Deep knowledge of NIST SP 800-53, NIST 800-61, FISMA, and FedRAMP frameworks. Requirements - Certifications (Preferred / Mandatory): - CISSP (Certified Information Systems Security Professional) - GIAC (GCIH / GCIA / GCFA) - Microsoft Certified: Security Operations Analyst (SC-200) - ITIL / PMP (optional but valuable for governance)

United States
Job Closed
Brookfield Asset Management logo

Cybersecurity Analyst

Brookfield Asset Management

Brookfield Properties strives to create spaces where going to work never feels routine. We are proud to create a diverse environment and are proud to be an equal opportunity employer. We are grateful for your interest in this position; however, only candidates selected for pre-screening will be contacted.

Security Analyst70 days ago
Full TimeRemoteTeam 5,001-10,000

Role Description We are seeking a Cybersecurity Analyst who is available to work out of our Chicago, IL, Cleveland, OH, or Charleston, SC office. The Cybersecurity Analyst will have the exciting opportunity to play a key role in expanding Brookfield Property’s information security program. You will be responsible for working with the security engineering team to: - Remediate threats - Identify opportunities to improve security processes - Hunt for emerging threats - Maintain our industry-leading portfolio of security tools This is a hands-on role; familiarity with Enterprise Security Architectures, Windows systems, Networking, and OT/BMS is critical. Overall, we seek qualities that display our company’s core values which are Humility, Attitude, Do the Right Thing, Together, and Own it. Role & Responsibilities: - Review security incidents to remediate threats and help lead the escalation of security events in conjunction with the incident response plan - Monitor and support security tools to ensure effective detection and response, including assisting with tuning to reduce false positives - Work with our MSSP and other vendors to optimize the escalation processes and reduce false positives - Collaborate with business and technology teams to promote security awareness and support security best practices - Follow established playbooks and operational procedures during incident response, and contribute feedback for continuous improvement - Participate in generating operational improvements through security orchestration and automation tools Qualifications - Bachelor’s degree in Computer Science, Information Security/Cybersecurity, or a related discipline (machine learning, statistics, mathematics, etc.) - At least 1 year of experience in Security or 3 years in IT including Incident Detection, Incident Response, System Administration, or Service Desk - Understanding of fundamental security architecture and networking concepts - Ability to assess and prioritize multiple alerts or incidents based on risk and business impact - Experience participating in major incident response efforts within a fast-paced environment - Able to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood and authoritative manner - Knowledge of forensics techniques to determine root cause for security incidents - Documentation and process improvement skills - Experience with Windows, networking, or audit logs, SIEM technologies are a plus - Proven track record of analyzing, diagnosing and solving complex issues - Experience with Cloud technologies including AWS, Azure, and GCP - Security+, CySA+, or equivalent foundational certifications Desired Skills - Previous experience in an environment with extensive OT/IoT presence - Communication skills that translate technical concepts to non-technical stakeholders - Ability to find a balance between Security and Business objectives, by creating a culture where security is a major consideration - Scripting in Python, Bash, or other common languages - Process improvement through automating tasks or scripting Benefits - 401K matching - Tuition reimbursement - Summer Fridays - Paid maternity leave - Generous employee referral program Company Description Brookfield Properties strives to create spaces where going to work never feels routine. We are proud to create a diverse environment and are proud to be an equal opportunity employer. We are grateful for your interest in this position; however, only candidates selected for pre-screening will be contacted.

United States
Job Closed