IT Security Analyst
1 month ago
Story Behind the Need:
• Business Group: The US Information Security Team is sourcing one (1) IT Security Analyst to assist with the completion of security Threat Risk Assessments (TRAs) for the US application technology landscape.
• An additional resource is necessary due to increased workload, competing regulatory projects, and the need to keep all BAU work and upcoming projects on track.
• We are seeking self-starters who can immediately contribute to the threat risk assessment process, security advisory services including support for regulatory requirements and projects.
Candidate Value Proposition:
• In addition to gaining experience with a top global bank, successful candidate(s) with outstanding performance and skills will have the opportunity to be converted to full time employment, assuming the budget allows.
Typical Day in the Role:
• Conduct threat risk assessments on technology assets, specifically applications. Verify security controls, provide suggestion on compensating controls, and advise stakeholders on security best practices
• Work with third and fourth parties to capture data inputs to the assessments, including the review of testing reports and summaries
• Experience with architecture documentation – ability to recognize and identify risks based upon application design or implementation plan
• Review and evaluate responses to security assessments, collect and validate supporting evidence
• -Review security and technical design documentation
• -Understand compensating and mitigating controls
• Identify risks and understand their impact
• Clearly and intelligently communicate findings to stakeholders
• Provide guidance to stakeholders regarding risks and corresponding actions necessary to remediate said risks
• Prepare and report results to stakeholders and management
• Understand regulatory requirements and how they apply to the evaluation/assessment of tooling or solution
• Understand the financial regulations that legislate and impact technology and security controls
• Work closely with stakeholders, including application owners and business lines to ensure risk remediation or acceptance is addressed
• Conduct security risk assessments for 3rd and 4th party applications, components, services
• Understand cloud infrastructure and cloud security controls
• Work closely with third party relationship managers to define security expectations and hold vendor accountable for risk mitigation or remediation plans
• Collaborate with IT business partners and team leads
Must Have Skills/Requirements:
• IT Security Analyst or related cybersecurity background (2+ years of experience, but will consider recent university graduates with a degree in Cyber or Information Security)
• Recent experience working directly on Cyber Risk Assessments ( 2+ years, or 1 recent project)
• Experienced with GCP or related Cloud Platforms
• Prior knowledge of security engineering/architecture
• Proficiency in MS Office with extended knowledge in MS Excel – 3+ years
Nice to have Skills:
• CISA OR CISSP Certification
• An understanding and experience with security controls/mechanisms and risk assessment techniques pertaining to complex data, application, infrastructure and networking environments proven through recent experience or last project
• Recent relevant Financial Industry Experience
• Extensive knowledge of Financial regulations and regulatory requirements (NYDFS, FIECC, Federal Reserve, Treasury, CFTC, etc.)
• Experience with vulnerability management tools such as Tripwire or Tenable
• Ability to read and interpret vulnerability, host audit/configuration and code scanning (DAST/SAST) reports and
Soft Skills:
• Excellent grammar and communications skills to coordinate with senior leadership (Director, VP level and up), as well as C-Suite of some of the third party vendors
• Comfortable putting together and presenting risk assessments to a wide range of individuals
• Candidate must have a natural curiosity and the ability to assess each situation separately
• Fast, adaptable learner who can hit the ground running
• Strong organizational skills
• Ability to manage assigned tasks and expectations without direct instruction or oversight
• Ability to work well under pressure while demonstrating strong professionalism
• Must be able to collaborate closely with teams and independently
• Must be accountable to meet individual deadlines without hand holding
Education :
Bachelors/ Masters degree in cyber security, computer science, or related IT field
Interview Process:
• 1-step process – Panel Video Interview with Sr. Manager (hiring manager) and 3 other team members
• Interviews to take place ASAP
Additional Notes:
• Candidate may be required to provide other IT Security support as needed
• Do NOT submit resources with IT Risk background unless they have strong cyber experience or educational background
• Do NOT submit project managers
Job Details
12024
Contract
7 Months
Toronto
#J-18808-Ljbffr-
Network Security Analyst
2 weeks ago
Toronto, Canada Atlantis IT group Full time**JD**: **Role - Network Security Analyst** **Location-** **CALGARY, AB (Hybrid)** **Duration - Contract** Establishes and maintains security architecture frameworks and practices across the enterprise, and communicates the strategy and roadmaps with a broad range of stakeholders including senior leadership and executives. Provides leadership in the...
-
IT Security Analyst
3 weeks ago
Old Toronto, Canada Security Bank & Trust Co. Full timeMust Have Skills/Requirements: 1) 10+ years of Experience as an IT Security Analyst 2) A strong understanding of multi-tier Web Applications, web API, and related vulnerabilities and potentials threats. Staying abreast of information provided by recognized organizations such as OWASP (Open Web Application Security Project) and CVE (Common...
-
IT Security Analyst
3 weeks ago
Old Toronto, Canada Security Bank & Trust Co. Full timeMust Have Skills/Requirements: 1) 10+ years of Experience as an IT Security Analyst 2) A strong understanding of multi-tier Web Applications, web API, and related vulnerabilities and potentials threats. Staying abreast of information provided by recognized organizations such as OWASP (Open Web Application Security Project) and CVE (Common...
-
IT Security Analyst
3 days ago
Old Toronto, Ontario, Canada Security Bank & Trust Co. Full timeMust Have Skills/Requirements:1) 10+ years of Experience as an IT Security Analyst2) A strong understanding of multi-tier Web Applications, web API, and related vulnerabilities and potentials threats. Staying abreast of information provided by recognized organizations such as OWASP (Open Web Application Security Project) and CVE (Common Vulnerabilities and...
-
Cyber Security
2 months ago
Toronto, Canada Atlantis IT group Full time**Role - Cyber Security Analyst** **Location - Toronto, ON - Canada** **Duration - Long Term** This role will support all testing and validation activities for projects under Information Security portfolio and work closely with the PMs and BAs to complete all deliverables. To read all the documents and understand what needs to be tested Inform the PMs...
-
Cyber Security
3 days ago
Toronto, Canada Atlantis IT group Full time**Role - Cyber Security Analyst** **Location - Toronto, ON - Canada** **Duration - Long Term** This role will support all testing and validation activities for projects under Information Security portfolio and work closely with the PMs and BAs to complete all deliverables. To read all the documents and understand what needs to be tested Inform the PMs...
-
IT Security Analyst
1 month ago
Toronto, ON, Canada Nexus Systems Group Inc. Full timeIT Security Analyst Typical Day in Role: • Review Firewall port requests on a daily basis, this will include Cloud security (GCP, Azure)• Provide approvals and complete risk memos incase risk is identified • Directly reporting to the Senior Manager, Information Security Advisor • Contractor will be working closely with the Network team, Security...
-
Security Business Analyst
2 weeks ago
Toronto, ON, Canada Procom Full timeSecurity Business Analyst On behalf of our client in the Public Sector, PROCOM is looking for a Security Business Analyst Security Business Analyst - Job Description 1) Strategy & Planning Collaborate with project sponsors to determine project scope and vision Takes lead in coordinating and following up with Sponsors, Principal Architect, Stakeholders,...
-
Security Business Analyst
2 weeks ago
Toronto, ON, Canada Procom Full timeSecurity Business Analyst On behalf of our client in the Public Sector, PROCOM is looking for a Security Business Analyst Security Business Analyst - Job Description 1) Strategy & Planning Collaborate with project sponsors to determine project scope and vision Takes lead in documenting RFx Participate in Advisory, Managed Services vendor selection process...
-
Security Analyst
2 months ago
Toronto, ON, Canada Nexus Systems Group Inc. Full timeSecurity Analyst Typical Day in Role: • Focused individual on driving remediation of End Of Life (EOL)/Vulnerability within all Bank assets and assist with active engagements around Active Directory Clean up. • Security Risk Index – Chasing Global Technology (GTEP) for plans regarding EOL and Vulnerability remediation for network devices and GTEP...
-
Senior Security Analyst
4 weeks ago
Toronto, ON, Canada Cyderes Full timeCyderes (Cyber Defense and Response) is a pure-play, full life-cycle cybersecurity services provider with award-winning managed security services, identity and access management, and professional services designed to manage the cybersecurity risks of enterprise clients. We specialize in multi-technology, complex environments with the in speed and agility...
-
Analyst, Security Technology
4 weeks ago
Toronto, ON, Canada Hamilton Barnes Associates Limited Full timeA rapidly growing Managed Security Service Provider is seeking a new SOC Analyst to monitor for] and respond to security incidents for their Canadian clients. Work with leading cyber security technologies! Responsibilities: Monitor and respond to security incidents Investigate security incidents by reviewing SIEM and EDR logs Scan client...
-
Security Analyst
3 days ago
Toronto, ON, Canada Modis Full time10+ years of Experience as an IT Security Analyst 2) A strong understanding of multi-tier Web Applications, web API, and related vulnerabilities and potentials threats. Staying abreast of information provided by recognized organizations such as OWASP (Open Web Application Security Project) and CVE (Common Vulnerabilities and Exposures). 3) Must have a...
-
Security Analyst
2 days ago
Toronto, ON, Canada Modis Full time10+ years of Experience as an IT Security Analyst 2) A strong understanding of multi-tier Web Applications, web API, and related vulnerabilities and potentials threats. Staying abreast of information provided by recognized organizations such as OWASP (Open Web Application Security Project) and CVE (Common Vulnerabilities and Exposures). 3) Must have a...
-
IT Security Analyst
2 months ago
Toronto, ON, Canada Nexus Systems Group Inc. Full timeIT Security Analyst Typical Day in Role: • Champions a customer focused culture to deepen client relationships and leverage broader Bank relationships, systems and knowledge. • Responsible for the successful implementation and maintenance of complete technology solution for projects supporting highly complex Physical and Cloud based platforms and...
-
Security Analyst
3 days ago
Toronto, Ontario, Canada CB Canada Full timeSecurity Analyst On behalf of our client in the Banking Sector, PROCOM is looking for a Security Analyst. Security Analyst – Job Description User access provisioning, granting access to banking applications and systems to employees and customers Provisioning access to Employees and Contractors using various applications and platforms ID and Mailbox...
-
Security Analyst
1 month ago
Toronto, Canada CB Canada Full timeSecurity Analyst On behalf of our client in the Banking Sector, PROCOM is looking for a Security Analyst. Security Analyst – Job Description User access provisioning, granting access to banking applications and systems to employees and customers Provisioning access to Employees and Contractors using various applications and platforms ID and Mailbox...
-
Security Analyst
3 weeks ago
Toronto, Canada CB Canada Full timeSecurity Analyst On behalf of our client in the Banking Sector, PROCOM is looking for a Security Analyst. Security Analyst – Job Description User access provisioning, granting access to banking applications and systems to employees and customers Provisioning access to Employees and Contractors using various applications and platforms ID and Mailbox...
-
IT Cyber Security Analyst
3 weeks ago
Toronto, ON, Canada Resonaite Full timeOur client is looking for a senior MS Defender consultant with expertise Defender endpoint, cloud, server, identity. ResponsibilitiesReview client's current Defender implementation, assess gaps and help remediate acrossMS Defender Endpoint Management MS Defender for Cloud:MS Defender for Servers:RequirementsMinimum of 10 years of experience in IT security,...
-
IT Cyber Security Analyst
3 weeks ago
Toronto, ON, Canada Resonaite Full timeOur client is looking for a senior MS Defender consultant with expertise Defender endpoint, cloud, server, identity. ResponsibilitiesReview client's current Defender implementation, assess gaps and help remediate acrossMS Defender Endpoint Management MS Defender for Cloud:MS Defender for Servers:RequirementsMinimum of 10 years of experience in IT security,...
