Info Security Analyst

Job Offer: Info Security Analyst

Location: Toronto

Contract Duration: 6 months

Work Mode: Hybrid

Start Date: ASAP

Why Join Us?

Astek is a global leader in technology consulting. With 9,600 experts worldwide, we guide our clients through digital transformation by developing innovative solutions.

In Canada, we excel in IT and engineering. We collaborate with leading companies to tackle major technological challenges, putting innovation, collaboration, and excellence at the heart of our actions.

Join a passionate and committed team ready to bring your ideas to life.

About the Role

On behalf of our client in the Banking industry, Astek Canada is seeking a motivated Info Security Analyst ready to take on new challenges.

Your Responsibilities

As an Info Security Analyst, you will be responsible for:

• Develop security monitoring rules/use cases on SIEM platforms (Splunk, Azure Sentinel, Logscale)
• Identify cyber threats, anomalies and risks from security-relevant data (e.g. login/logoff events, persistent to outbound data transfers, firewall allows/denies, etc.).
• Find suspicious or malicious activity by analyzing alerts, investigating indicators of compromise (IOCs like file hashes, IP addresses, domains, etc.).
• Researching and developing new threat detection use cases based on threat research findings, threat intelligence, analyst feedback and available log data.
• Performing activities within the content life cycle, including creating new use cases, testing content; tuning, and removing content; and maintain associated documentation.
• Working with the other security functions and product SMEs to identify gaps within the existing analytical capabilities.
• Participating in root cause analysis on security incidents and provide recommendations for remediation.
• Acting as the liaison to business units to fulfill audit, regulatory compliance as well as corporate security policy requirements.
• Create and maintain documentation for detection processes.
• Continuously improve detection capabilities based on emerging threats.

Your Qualifications

Education/Experience:

• Experience in SIEM content development (Splunk, Azure Sentinel, Logscale, or similar SIEM platform).
• Understanding various log formats and source data for SIEM Analysis.
• Minimum 5 years of information security experience, preferably engineering or development.

Key Skills:

• Ability to effectively communicate with anyone, from end users to senior leadership - facilitating technical and non-technical communication.
• Strong incident handling/incident response/security analytics skills.
• Deep understanding of technical concepts including networking and various cyber-attacks.
• Solid background with Windows and Linux platforms (security or system administration).

Personal Qualities:

• Analytical and solution-oriented mindset.
• Team collaboration and teamwork skills.
• Autonomy and rigor in managing priorities.

The Astek Advantages

• Personalized CARE plan for our employees.
• Diversity & Inclusion Charter.

Ready to Take on the Challenge?

Apply now by sending your CV and discover a rewarding career at Astek Canada.