Wepoint is the architect of major transformations for businesses and public sector organizations. We support our clients from strategy through technological implementation, always striving to think beyond the obvious and to act within the framework of Economic, Social, Environmental, and Technological Responsibility (RESET). Our goal is to create new ways of working, new economic models, and smarter environments. In nearly 20 years, we have become one of the key players in digital transformation, employing 3,500 people across Europe, Tunisia, North America, and the Asia-Pacific region.
Cybersecurity Analyst (SOC) N2
Location
Canada
Posted
6 days ago
Salary
0
Seniority
Mid Level
Job Description
Cybersecurity Analyst (SOC) N2
OnePoint
Role Description L'Analyste SOC assure la surveillance des événements de sécurité au sein du Centre d’opérations de sécurité (SOC) 24×7. Le but principal de cette position est de fournir une analyse et une réponse rapide aux menaces détectées. En tant qu’Analyste de Cyber Sécurité, vous êtes non seulement responsable de la surveillance, de l’analyse et de la résolution en temps réel des incidents de sécurité identifiés, mais vous serez également responsable du développement continu et de l’amélioration des capacités 24×7 du Centre d’Opérations Sécurité (SOC). Responsabilités - Fournir une analyse des tendances des données des journaux de sécurité à partir d'un grand nombre de dispositifs de sécurité hétérogènes; - Analyser les journaux de sécurité de différentes sources (proxy, pare-feu, réseau, serveurs Web et appareils Linux/Windows) pour comprendre la source/l'impact des enquêtes/incidents de sécurité; - Fournir une enquête approfondie, une analyse et une réponse experte aux incidents pour les alertes de sécurité; - Assurer la liaison avec les équipes informatiques et les autres équipes cybersécurité pour effectuer une analyse sur les systèmes compromis afin d'identifier l'étendue et la nature de la compromission et fournir des recommandations sur les mesures correctives; - Assurer la liaison avec les équipes informatiques lors des investigations incident et post incident pour contenir, éradiquer les intrusions et mettre en œuvre des mesures de remédiation; - Développer des capacités de chasse aux menaces et aider au développement et à la validation des cas d'utilisation; - Fournir de l'aide et des conseils aux analystes de niveau I; - Faire remonter les incidents de sécurité potentiels aux analystes de niveau 3; - Travailler à l'optimisation des processus de résolution d'incident, y compris, mais sans s'y limiter, l'automatisation des processus et le développement de tableaux de bord; - Assurer la liaison avec les équipes informatiques et les autres équipes cybersécurité pour mettre en œuvre les meilleures pratiques de sécurité et faire mûrir l'incident de sécurité; - Collaborer avec d'autres équipes TI et cybersécurité régionales et mondiales dans les enquêtes/incidents de sécurité; - Suivre et suivre la documentation liée aux incidents, y compris les analyses des causes profondes et les leçons apprises, et mettre à jour les plans de résolution des incidents en conséquence; - Fournir les métriques de réponse aux incidents et les KPI; - Capacité à hiérarchiser et à équilibrer plusieurs enquêtes et incidents; - Aider à développer et à maintenir des procédures d'exploitation standard, un plan de réponse aux incidents et des playbooks; - Participer aux audits internes et externes. Qualifications - Baccalauréat ou supérieur en informatique, ingénierie, informatique ou discipline connexe; - Plus de 5 ans d'expérience professionnelle dans le domaine de la technologie, dont un minimum de 3 ans et plus en SOC; - Expérience minimum de 2 ans avec les plateformes SIEM telles que Kibana : rédaction de recherches, création de tableaux de bord et réalisation d'enquêtes; - Expérience avec EDR, NDR et autres systèmes similaires : effectuer des analyses et collecter des preuves; - Excellente connaissance des frameworks standard de l'industrie (tels que MITRE ATT&CK); - Solide expérience technique et familiarité avec divers types et techniques de cyberattaques avec le cycles de vie de réponse et de chasse aux menaces et incidents; - Excellente communication en français et en anglais. L'anglais est requis, le poste demandant de communiquer avec des partenaires et des clients situés à l'extérieur du Québec; - Seuls les candidats légalement autorisés à travailler pour tout employeur au Canada seront considérés. Benefits - Minimum of 3 weeks of vacation starting from the first year; - Comprehensive group insurance with a generous employer contribution; - Employer contribution to a group RRSP; - Full remote work flexibility: Hybrid, Remote, or On-site; - A warm, bright, and welcoming office offering fresh fruit, coffee, beverages, occasional meals, etc.; - Annual IT equipment budget; - A balanced work environment with flexible working hours; - Career development: training and certifications, online or in-person learning, Wepoint Academy, etc.; - An international community of experts ready to share their knowledge; - A company culture focused on individuals’ needs and their belonging to a strong community.
Related Guides
Related Categories
Related Job Pages
More Security Analyst Jobs
Threat and Vulnerability Analyst
EnsonoEnsono delivers complete Hybrid IT solutions, from mainframe to cloud, tailored to each client’s journey.
• Assist in the execution of vulnerability and threat management initiatives under the guidance of senior team members. • Collaborate with team members to prioritize tasks and allocate resources effectively. • Participate in team meetings, contributing insights and ideas for enhancing security practices. • Utilize automated scanning tools to perform regular vulnerability scans across the Ensono infrastructure. • Aid in analyzing scan results to identify vulnerabilities, misconfigurations, and weaknesses in systems and applications. • Assist with classifying vulnerabilities based on severity levels and prioritize remediation efforts accordingly. • Work with Service Delivery Managers, System Administrators, Network Engineers, and Application Developers to understand the root causes of vulnerabilities and facilitate their remediation as required. • Contribute to the maintenance of a centralized repository for vulnerability reporting. • Assist in monitoring external threat intelligence sources for relevant information on emerging threats and vulnerabilities. • Support the analysis of incoming threat intelligence to assess its potential impact on Ensono's environment. • Aid in reviewing and refining vulnerability management processes and procedures to improve efficiency. • Assist in identifying opportunities for automation and workflow optimizations to streamline operations. • Collaborate with internal stakeholders to raise awareness of security risks and solicit support for remediation efforts. • Assist in monitoring team performance against key performance indicators (KPIs) and tracking progress on vulnerability management activities. • Seek feedback from senior team members and utilize it to continuously improve your performance and contribute effectively to the team's success.
Global Security Systems Service Desk Analyst
Securitas Security ServicesSecuritas’ mission is to protect homes, workplaces, and communities by providing the security services they need to protect their assets, safeguard their people, and maintain their ability to generate profits. Core values - Integrity, Vigilance, and Helpfulness Employees come from diverse backgrounds, bringing distinctive skills and perspectives.
Role Description The Global Security Systems Service Desk Analyst is a critical operational role responsible for ensuring the stability and performance of enterprise physical security systems. Acting as the central point of coordination, this role manages service requests from intake through resolution, performing advanced troubleshooting and orchestrating field response when necessary. This position requires a blend of technical expertise, analytical thinking, and service ownership. The ideal candidate is comfortable operating in a fast-paced environment, making real-time decisions, and driving issues to resolution while maintaining a high standard of customer service. Key Responsibilities - Serve as the primary point of contact for all incoming service requests related to physical security systems (via phone, email, and ticketing systems). - Perform advanced triage and root cause analysis to diagnose system issues. - Execute remote troubleshooting and resolution, minimizing the need for onsite dispatch whenever possible. - Determine incident severity and business impact; prioritize work in alignment with SLAs. - Coordinate and dispatch field technicians, ensuring proper scope, parts, and information are provided. - Own incidents end to end, including follow-ups, status updates, and final resolution validation. - Monitor system health, alerts, and dashboards to proactively identify and mitigate issues. - Collaborate with engineering, vendors, and cross-functional teams to resolve complex or recurring issues. - Identify trends and recurring problems; recommend process improvements or system enhancements. - Maintain accurate and detailed documentation in ticketing systems, including resolution steps and root cause. - Contribute to and maintain a knowledge base to improve team efficiency and first call resolution rates. - Provide guidance and informal mentoring to junior team members or technicians as needed. - Ensure compliance with security policies, data protection standards, and confidentiality requirements. Technical Scope - Enterprise Access Control Systems: Lenel OnGuard - Video Management Systems (e.g., Milestone, Lenel OnGuard) - Alarm monitoring and event management systems - Device connectivity (controllers, readers, cameras) - Basic network troubleshooting (IP addressing, connectivity, latency, device communication) - Troubleshoot integration points between security systems and IT infrastructure - Axis (or equivalent) enterprise level IP CCTV configuration, commissioning & fault finding Qualifications - 3–5 years of experience in technical support, systems analysis, or security systems service operations roles. - Experience with physical security systems (access control, CCTV) or closely related technologies. - Proven experience in incident management, triage, and issue resolution. - Strong troubleshooting skills across software, hardware, and network connected systems. - Ability to manage multiple concurrent incidents with competing priorities. - Strong written and verbal communication skills with a customer-first mindset. - Demonstrated ability to take ownership and drive issues through to completion. - Experience working with ticketing systems (e.g., APEX, Jira Service Management). Preferred Qualifications - Experience supporting enterprise scale security environments (Data Centre environments). - Familiarity with ITIL practices (incident, problem, and change management). - Experience coordinating or dispatching field service teams. - Working knowledge of networking fundamentals (TCP/IP, ports, device communication). - Experience working with vendors or third-party service providers. - Experience working with Data Centre co-location service providers. Work Environment & Additional Requirements - Will need to be highly self-motivated and comfortable working independently. - The work is often non-routine and highly complex, involving the application of advanced technical and business skills within the area of specialization. - Although predominantly supporting the EMEA region, there is an expectation to assist the wider global team in delivering a 24x7 “follow the sun” support model. - Primarily a remote role, with occasional onsite support as required. - Participation in an on-call rotation or after-hours support may be required. - Ability to work in a fast-paced, high availability environment supporting critical infrastructure. Key Performance Indicators (KPIs) - SLA adherence (response and resolution times). - First call, first contact resolution rate. - Incident backlog and aging. - Customer satisfaction (CSAT). - Accuracy and completeness of ticket documentation. Key Success Factors - Strong analytical and troubleshooting mindset. - Ability to remain composed and decisive under pressure. - Effective coordination across technical and non-technical teams. - High level of accountability and ownership. - Continuous improvement mindset with attention to detail. Benefits - Retirement plan. - Employer-provided medical and dental coverage. - Company-paid life insurance. - Voluntary life and disability insurance. - Employee assistance plan. - Securitas Saves discount program. - Paid holidays. - Paid time away from work. - Access to earned wages on a daily basis, prior to payday (restrictions and fees may apply).
• Work remotely in support of a government contract for a client located in Washington, DC. • Provide risk and vulnerability analysis. • Conduct security assessments and scanning. • Collaborate with teams to address vulnerabilities and improve security measures.
Garner’s mission is to transform the healthcare economy, delivering high-quality and affordable care for all. We are fundamentally reimagining how healthcare works in the U.S. by partnering with employers to redesign healthcare benefits using clear incentives and powerful, data-driven insights. Our approach guides employees to higher-quality, lower-cost care, creating a system that works better for everyone. Patients achieve better health outcomes, employers spend healthcare dollars more effectively, and physicians are rewarded for delivering exceptional care rather than performing more procedures. Garner is one of the fastest-growing healthcare technology companies in the country. Our products are trusted by the most sophisticated employers and providers in the industry, and we are building a team of talented, mission-driven individuals who are motivated to make a meaningful impact on healthcare at scale. About the role:We are looking for a Senior GRC Analyst to join our Technical Compliance team to ensure Garner’s compliance posture across security frameworks such as ISO 27001, SOC 2, HITRUST, and HIPAA. As a Senior GRC Analyst, you will run our internal audits, guide our external assessments, and partner with teams across Engineering, Product, People, and Legal so that our controls are designed well, operating effectively, and continuously improving. Our Technical Compliance team safeguards Garner’s sensitive healthcare data and protects the trust of our members, clients, and partners by maintaining a strong control environment and regulatory compliance. The work you do here has a direct impact on our ability to win and retain enterprise customers, expand into new lines of business, and scale securely as we grow. Where you will work:This role is open to remote candidates across the U.S. For candidates based in New York City, the position follows a hybrid schedule with in-office work required Tuesday, Wednesday, and Thursday each week. What you will do: - Manage and support our compliance certifications, including SOC 2, HITRUST, and ISO 27001 audits and run control testing across the audit lifecycle - Serve as the subject matter expert across the company on our compliance frameworks - Serve as the primary point of contact for external auditors and assessors - Manage Garner’s Security and Privacy trust center - Maintain the risk register and drive risk identification, scoring, and reporting - Manage the maintenance of our compliance policies, standards, and procedures - Report on our compliance posture to senior leadership - Scale our GRC function with AI and automation, building quick wins and scoping requirements for Engineering to fully automate the rest The ideal candidate has: - 5+ years of experience in GRC, IT audit, or information security compliance - Prior experience with HITRUST, SOC 2, and ISO 27001 audits - Hands-on experience with control design, evidence collection, and remediation in a cloud-native engineering environment - Proven ability to adapt your communication style across engineers, operators, and executives - A GRC Engineering mindset with prior experience using scripting and LLMs to automate repetitive tasks - Industry certifications such as CISA, CISM, CISSP, CRISC, or ISO 27001 Lead Auditor preferred - A desire to be a part of a high-performing, mission-driven team that operates with intense urgency, a strong sense of individual accountability, and a commitment to authentic feedback Technologies we use: - AWS, Okta, Datadog, Retool, Gitlab, Vanta This is a unique opportunity to join a fast-growing company in a transformative role, helping shape the future of healthcare. Compensation Transparency:The target salary range for this position is $132,000 - $165,000. Individual compensation for this role will depend on various factors, including qualifications, skills, and applicable laws. In addition to base compensation, this role is eligible to participate in our equity incentive and competitive benefits plans, including but not limited to: flexible PTO, Medical/Dental/Vision plan options, 401(k), Teladoc Health and more. Fraud and Security Notice: Please be aware of recent job scam attempts. Our recruiters use getgarner.com and garnerhealth.com email domains exclusively. If you have been contacted by someone claiming to be a Garner recruiter or a hiring manager from a different domain about a potential job, please report it to law enforcement here and to candidateprotection@garnerhealth.com. Equal Employment Opportunity:Garner Health is proud to be an Equal Employment Opportunity employer and values diversity in the workplace. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. Garner Health is committed to providing accommodations for qualified individuals with disabilities in our recruiting process. If you need assistance or an accommodation due to a disability, you may contact us at talent@garnerhealth.com.



