Security Analyst

Develop and implement information security policies, standards and procedures to secure and protect data residing on systems. Work directly with team leaders to implement procedures and systems for the protection, conservation and accountability of proprietary, personal or privileged electronic data.

Responsibilities:

  • Managing and performing on teams that conduct analyses related to forensic investigations, cyber crimes, and/or cyber attacks; and supporting various and dynamic security analysis needs of the team
  • Assisting in the management of policies and procedures
  • Perform security alert detection and analysis capabilities across multiple technologies to ensure that security incidents are identified in a timely manner
  • Ensuring compliance with relevant legislation and regulations
  • Assist in continuous development of overall security architecture covering information/cyber security, risk and compliance
  • Advising on complex legal and regulatory issues, often involving difficult judgements in controversial areas such as the Freedom of Information Act and other national or regional legislation
  • Advising on and implementing new records management policies and classification systems
  • Assist in managing IT incidents and resulting security investigations

Qualifications and Skillsets:

  • Extensive experience in information security data protection
  • 5+ years intelligence analysis experience at strategic and operational level
  • Experience of a combination of information, cyber, personnel and physical security implementation and monitoring
  • Good understanding of international security specific standards and relevant industry regulations (ISO 27001, PCI DSS, DPA)
  • Understanding of vulnerability analysis, penetration testing, encryption technologies, intrusion detection, incident response
  • Experience with the Linux command line interface (CLI)
  • Ability to create or modify existing scripts in languages such as Python, Ruby and Java
  • A strong understanding in application security and technologies