Description
Take this opportunity to work and support the strategic and tactical initiatives of the Enterprise Information Security and Risk portfolio. You will be a key participant on the Security Operations Core Team, helping to support security and information risk standards and direction at ENMAX.
Responsibilities:
- Review security-related events in the Security Operations Centre, assessing risk and validity, and reporting of findings
- Analyze network traffic to assisting with the identification of malware signatures for risk and threat to the environment
- Act as the system admin for key security tools such as Vulnerability Management Systems, Endpoint Protection systems, CASB Solutions, Security Incident & Event Management (SEIM) systems, etc.
- Demonstrate advanced understanding of business processes, internal control risk management, IT controls and related standards
- Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
- Work closely with the team to identify and mitigate business risks associated with projects
- Incident Response and Investigation
- Log collection, data correlation, incident and threat detection
- Evidence collection, and threat and risk management
- Incident management methodologies
- Review security-related events, assessing severity, criticality and priority
- Monitor and report based on client SLAs with an emphasis on quality and accuracy
- Member of the Security Incident Response team and be available as necessary for security issues that arise
Education Required:
- Post-secondary education in Computer Science, Information Systems or Information Technology
- Cyber Security related certifications such as CISSP, CCSP, SANS GSEC & GCIH preferred
Qualifications & Experience:
- Must have prior experience within a Security Operations Center
- Experience with vulnerability assessment methodology and remediation activities required
- Must have practical experience responding to security incidents
- Expertise in broad set of security tools and technologies (SIEM, Web Application Firewalls, (WAFs), Application Vulnerability tools, Anti-Malware tools, and Mobile Device Management (MDM) solutions.
- Good working knowledge of server platforms (UNIX, Windows, etc), networking, security (Firewalls, IDS/IPS, proxy systems etc.), Linux system configuration and network architecture
- Direct prior experience with SIEM, Security Analysis, IPS and Endpoint Protection systems are a strong asset
- Knowledge of Cloud Computing Architecture and Security - Private, Public clouds and CASB
- Experience with Identity, Federation and Access Management technologies
Personal Qualities:
- Effective working independently or as a team member
- Strong customer service mindset and capable of applying judgment
- Time management skills with the ability to prioritize work assignments
- Thrive in a fast-paced, deadline driven and constantly changing environment
- Excellent oral and written communication skills
Click here to view the full job posting.
Contact
ENMAX Corporation
Alberta Canada
www.enmax.com/Corporation
From the same category : security
