Role Description As an Intermediate Security Analyst, you’ll play a hands-on role in protecting our technology environment while helping improve how we operate. In this contract opportunity, you’ll support day‑to‑day firewall operations using the Palo Alto Networks platform and work closely with experienced security engineers who are eager to mentor and share knowledge. You’ll also have the opportunity to identify inefficiencies in our security operations and help introduce practical automation or technology-driven improvements that make our processes more effective and scalable. This role is open to remote candidates across Canada. Qualifications - Experience in information security, network security, or IT operations - Hands‑on exposure to Palo Alto Networks firewalls (PAN‑OS), including monitoring and rule management - A foundational understanding of networking concepts such as TCP/IP, DNS, routing, and NAT - Experience reviewing firewall logs and understanding traffic flow and security policies - Exposure to improving operational processes through scripting, automation, or technology enhancements (e.g., dashboards, workflows, or tooling) Requirements - Collaborating with cross‑functional teams in a fast‑paced, operational environment - Analyzing logs, alerts, and network traffic to identify security or connectivity issues - Spotting opportunities to improve processes and reduce manual effort through automation or tooling - Following established runbooks while thinking critically about how processes can evolve - Communicating clearly and documenting work in a structured, meaningful way Benefits - Remote‑friendly work options for candidates located anywhere in Canada - Access to mentorship, learning opportunities, and hands‑on experience with enterprise‑grade security platforms - A collaborative, people‑first culture that values curiosity, improvement, and knowledge sharing - Opportunities to contribute to meaningful security and operational initiatives that protect our customers and organization

Role Description The Cybersecurity Analyst is a frontline operational role responsible for monitoring, investigating, and responding to security alerts and incidents across the organization’s security tool stack, with a primary focus on Cisco Secure Workload, Cisco Secure Endpoint, and Cisco Umbrella. This position is centered on alert triage, investigation, and execution of incident response activities, leveraging established detections, playbooks, and procedures to identify threats, assess impact, and drive timely remediation. - Monitor, analyze, and respond to security events and incidents utilizing Cisco Secure Workload, Cisco Secure Endpoint, and Cisco Umbrella. - Conduct thorough investigations of security alerts to identify root causes, assess impact, and coordinate effective remediation. - Leverage Cisco Secure Workload (CSW), Cisco Secure Endpoint (CSE), and Cisco Umbrella to enforce network, endpoint, and DNS-layer security controls and mitigate threats. - Perform detailed investigation of security alerts, correlate events across multiple sources, and drive timely incident response. - Collaborate with cross-functional teams (IT, Network, and Application owners) to identify and remediate security risks and vulnerabilities. - Develop and maintain incident response documentation, procedures, and runbooks. - Contribute to the continuous improvement of security monitoring, detection, and response capabilities. - Stay abreast of evolving cyber threats, tactics, techniques, and procedures (TTPs), and emerging industry trends. Qualifications - Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent experience). - Minimum of 5+ years of hands-on experience in cybersecurity operations, preferably within a Security Operations Center (SOC). - Demonstrated expertise with Cisco security technologies, specifically: - Cisco Secure Workload (CSW) - Cisco Secure Endpoint (CSE) - Cisco Umbrella - Strong knowledge of endpoint security, workload security, network security, and threat detection methodologies. - Solid understanding of networking protocols, DNS, and security architecture principles. - Preferred Qualifications - Experience with CrowdStrike Falcon platform for endpoint detection and response. - Proficiency in ServiceNow (SNOW) for incident, problem, and change management. - Relevant industry certifications such as CyberOps, Security+, CySA+, GCIH, CCNA or equivalent. - Experience integrating security tools with SIEM platforms and ticketing systems. Requirements - Should be willing to accept a long-term work-from-home arrangement. - Should be amenable to a permanent night shift schedule.

• Provide timely, senior‑level security guidance, mentor junior analysts, and influence risk‑mitigation strategies across multiple functions • Lead implementation of technical control frameworks for programs to mitigate risks and continue to enable certification and accreditation of systems • Write, maintain, and own end-to-end policy lifecycle – author, maintain, and programmatically apply procedures; integrate AI for continuous improvement • Proactively monitor U.S. government cyber regulations, synthesize updates from conferences and industry events and disseminate concise briefs to internal stakeholders • Represent GCP in cross-functional committees, aligning security with NG’s strategic objectives

• Conduct in-depth analysis of identity fraud patterns, including synthetic identity fraud, credential stuffing, account takeovers (ATO), and deepfake-enabled fraud. • Develop AI-powered fraud detection models and continuously refine existing fraud prevention techniques. • Identify adversarial AI threats, including automated bot fraud, GenAI-enabled phishing, and social engineering attacks. • Research and implement machine learning models to detect deepfake-generated identities, voice fraud, and AI-assisted fraud schemes. • Collaborate with security engineers and data scientists to develop countermeasures for deepfake-based fraud attempts. • Perform advanced fraud penetration testing against identity verification and fraud prevention systems. • Monitor and analyze dark web and underground fraud forums for emerging identity fraud trends and tactics. • Work closely with staff analysts, cybersecurity teams, and fraud risk managers to escalate fraud cases and implement risk mitigation strategies.