Cyber Security Analyst

Job Title: Cybersecurity Analyst

Location: Canada (Remote or Hybrid options available)

Job Type: Full-Time

Overview

We are currently hiring on behalf of a rapidly growing Canadian fintech organization operating in the digital asset space. This is a unique opportunity to join a pioneering company that’s at the forefront of technological innovation and information security within the financial services industry.

They have assembled a dynamic, cross-functional team with expertise across finance, tech, compliance, engineering, and cybersecurity. As part of their continued growth, we're looking for an experienced Cybersecurity Analyst with strong experience deploying and managing SIEM

solutions, ideally using the Elastic Stack.

This role is key to enhancing the organization’s security operations, improving threat detection capabilities, and strengthening its incident response processes.

Key Responsibilities:

SIEM Deployment & Integration:

• Lead the setup, configuration, and deployment of a Security Information and Event Management (SIEM) system.
• Integrate the SIEM platform with existing infrastructure, including servers, network devices, and key applications, to ensure full coverage of security event data.

Rule & Use Case Management:

• Develop custom rules and use cases within the SIEM to identify potential security threats, suspicious activity, and compliance violations.
• Continuously refine and adjust these rules to reduce false positives and improve detection accuracy.

Security Monitoring & Response:

• Create dashboards and configure alerts for real-time security monitoring.
• Collaborate closely with the internal security team to investigate and respond to alerts generated by the SIEM system.

Documentation & Reporting:

• Maintain clear, up-to-date documentation around SIEM configurations, monitoring rules, and incident response procedures.
• Produce regular reports outlining the organization’s security posture and highlighting any critical issues or trends.

User Access Control:

• Support secure onboarding and offboarding of personnel by provisioning and deactivating user access in alignment with internal policies.
• Provide technical assistance during role transitions to ensure data access is properly managed.

Requirements

• Proven hands-on experience in deploying and managing SIEM platforms (e.g. Elastic Stack, Splunk, IBM QRadar, Azure Sentinel).
• Solid understanding of log analysis, threat detection methodologies, and incident response workflows.
• Ability to design and optimize SIEM rules tailored to real-world security use cases.
• Strong analytical and problem-solving skills with meticulous attention to detail.
• Familiarity with secure access provisioning and identity lifecycle management is an asset.