IT Security Analyst - Canada Based

Canadian Bank Note Company (CBN) is a trusted leader in secure technology solutions for governments and businesses worldwide. The company operates across various business domains, including currency production, border security, civil identity, driver identification and vehicle information, excise control, lottery and charitable gaming.

Our 7 Core Principles shape and guide our corporate behaviours and underpin the sense of community you will experience at CBN. We pride ourselves on fostering a supportive and collaborative work environment, where employees are valued for their contributions and encouraged to grow professionally.

At CBN we seek long-term relationships with our employees and recognize and reward them with a competitive total compensation package that includes:

• An industry-leading defined contribution pension plan with company matching contributions (up to 5%) and payment of service fees;
• Best-in-class health, medical, and life insurance benefits;
• Access to virtual and telehealth services and apps; and
• Very progressive fertility, adoption, and surrogacy benefits to support all definitions of family.
  
  

Job Description

Internal Job Title: IT Security Analyst

Job Type: Permanent, Full-Time

Job Location: Canada

Work Model: Remote (on-site employer/customer visits required)

Mandatory Requirements

• Language: Must be fluent in English (reading, writing, speaking)
• Work Hours: Ability to work outside of standard business hours as required (incident response)
• Travel: Ability to travel 4-6 weeks/year
• Security Clearance: Ability to obtain (in a timely manner) and maintain Government of Canada Reliability (Level I) personal security clearance
  
  

Position Summary

As an IT Security Analyst at Canadian Bank Note Company Ltd., you will play a key role in both the strategic and hands-on protection of our enterprise systems. This is not a purely monitoring or compliance role - you will actively deploy, configure, and secure systems in complex on-premises environments where automation is central to our operations.

You will be responsible for hardening infrastructure, integrating security systems into deployments, and directly supporting the secure configuration of enterprise applications while managing SIEM operations, incident response, and vulnerability reviews. Your work will also include building automation pipelines, performing system audits, and collaborating with infrastructure teams to enforce security standards from the ground up. We encourage fresh ideas and value your input on how security should be implemented, giving you the opportunity to shape our security program.

Responsibilities

Technical Security Operations

• Deploy, configure, and harden Linux systems and applications with a security-first approach, ensuring on-premises installations follow best practices.
• Build, maintain, and secure pipelines using automation and scripting languages to streamline configuration management and enforce security baselines.
• Collaborate with infrastructure and operations teams to integrate security into deployments, upgrades, and system migrations.
  
  

Security Incident and Event Management

• Design, implement and maintain automated processes within the SIEM environment to enhance threat detection, incident response and log management.
• Collaborate with cross-functional teams to integrate security controls and enhance the overall effectiveness of the SIEM solution.
• Develop and maintain automated responses to common security incidents.
  
  

Technical Security Analysis

• Monitor SIEM alerts and investigate security incidents to determine the root cause and appropriate remediation actions.
• Design, implement and maintain automated security processes to enhance efficiency and reduce response times.
• Prioritize and remediate identified vulnerabilities in collaboration with system owners and IT teams.
• Create and maintain documentation related to security policies, procedures and configurations.
  
  

Operational Security Prime

• Collaborate with Risk and Compliance personnel to gather evidence for Compliance requirements (SOC II, ISO 27001, PCI, NIST 800-53, etc.).
• Develop and implement processes for daily/weekly/monthly evidence collection, ensuring accuracy, completeness and timeliness in response to audit requests.
• Collaborate with stakeholders to address compliance gaps and implement corrective actions.
  
  

Collaboration and Communication

• Communicate security risks and findings to technical and non-technical audiences effectively.
• Build relationships with stakeholders across groups to understand needs and requirements and the associated notification process.
  
  

Qualifications

Education and Knowledge

• Bachelor's degree in Computer Science (or similar) or an equivalent combination or relevant education and additional relevant work experience
• Knowledge of the following:
• Linux administration
• Configuration management and automation tools (Puppet, Ansible, Terraform)
• Log management and/or SIEM systems
• Cloud (Azure)
  

Certifications

• SANS, ISACA or GIAC certifications are assets
  
  

Experience

• 3+ years in Systems Administration or similar role
• 1+ year in an IT security related position is preferred
  
  

Technical Environment

• Cloud Technologies: Azure, Sentinel, Defender for Cloud
• Automation Languages: Python, Ruby, Bash, PowerShell
• OS/Command Line: Linux, Windows
• Security Technologies: IAM/RBAC, Conditional Access, MFA, H/NIDS, Traditional Perimeter and Endpoint security
• Source Control & CI/CD: Git, GitLab, GitHub, etc.
• Virtualization: VMWare, oVirt, XCPng, Kubernetes, Docker, etc.
• Standards & Benchmarks: CIS Benchmarks, DISA STIGs, NIST National Vulnerability Database (NVD), etc.
  
  

Competencies And Soft Skills

• Self-Direction & Initiative
• Comfortable taking ownership of tasks with minimal supervision, proactively identifying areas for improvement, and driving them to completion.
• Analytical & Problem-Solving Mindset
• Ability to break down complex security and system challenges, identify root causes, and design practical, effective solutions under time constraints.
• Technical Curiosity & Growth Mindset
• Eagerness to learn new technologies, dive deep into open-source tools, and continuously improve both technical skills and security practices.
• Collaboration & Teamwork
• Strong interpersonal skills to work closely with IT operations, development, and compliance teams, fostering a cooperative and solution-focused culture.
• Clear & Adaptable Communication
• Capable of explaining technical issues to both technical and non-technical audiences, tailoring the message appropriately for stakeholders.
• Resilience & Adaptability
• Able to remain focused and effective under pressure, particularly during incident response, and flexible when priorities shift in a fast-paced environment.
  

Additional Information

Canadian Bank Note Company (CBN) is committed to fostering a diverse and inclusive workplace where all employees are treated with dignity and respect. We are proud to be an equal opportunity employer and do not discriminate on the basis of race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity, or any other legally protected status.

We provide equal employment opportunities to all individuals, including women, Indigenous Peoples, persons with disabilities, visible minorities, and members of the 2SLGBTQ+ community. Our commitment to equity extends to all aspects of employment, including recruitment, hiring, promotion, compensation, benefits, training, and development. As part of our commitment to providing an inclusive, barrier free selection process, we ask that if you are contacted regarding the competition for this position, you advise the interview coordinator or any accommodation measures you may require.

At CBN, we value the unique perspectives and experiences that each employee brings to our organization, and we are committed to maintaining a workplace that reflects the diverse communities we serve. We believe that diversity and inclusion drive innovation and success, and we strive to create an environment where every employee can thrive and contribute to our collective goals.