Security Analyst

3 days ago

Toronto ON, Canada Toronto Parking Authority Full time
POSITION SUMMARY

The Security Information Analyst will assist the Toronto Parking Authority with the design, development and implementation of its security awareness plan and security initiatives to help ensure that the best possible measures are in place to maintain secure operations. The role will be focused on executing threat risk and vulnerability analysis (TRVA). In addition, this role will oversee risk remediation activities, in order to enable both operational and project teams to safely and securely manage their departments. This role will also be responsible to help monitor, evaluate and maintain systems and procedures to safeguard TPA information and systems while developing and implementing strategies, policies and procedures for the continued security of the organization.

RESPONSIBILITIES
Threat Monitoring: Continuously monitor network traffic, security alerts, and system logs to identify potential security incidents and vulnerabilities, with a focus on cardholder data protection.
PCI-DSS Compliance: Ensure adherence to PCI-DSS requirements, including maintaining compliance with all relevant standards and controls for handling and protecting cardholder data.
Incident Response: Respond promptly to security breaches or attacks, including investigating and analyzing incidents involving cardholder data, and implementing corrective measures to address any PCI-DSS violations.
Risk Assessment: Conduct regular risk assessments and security audits with a focus on PCI-DSS compliance to identify potential threats and vulnerabilities and recommend mitigation strategies.
Security Measures: Develop, implement, and enforce security policies, procedures, and best practices to enhance overall security and ensure PCI-DSS compliance.
Vulnerability Management: Perform regular vulnerability scans and assessments, addressing identified weaknesses in systems and applications, and ensuring compliance with PCI-DSS requirements.
Compliance Monitoring: Monitor compliance with PCI-DSS controls and procedures, including data encryption, access control, and network security measures.
Documentation: Maintain detailed records of PCI-DSS compliance activities, security incidents, investigations, and responses, and prepare reports for management and regulatory bodies.
Security Awareness: Educate and train staff on PCI-DSS requirements, security best practices, and organizational policies to promote a culture of security awareness and compliance.
Collaboration: Work closely with IT, development, and management teams to integrate PCI-DSS requirements into system designs and operational procedures.
Tool Management: Utilize and manage security tools and technologies, including firewalls, intrusion detection systems, and encryption software, to safeguard the organization’s digital assets in compliance with PCI-DSS.
Engage with QSA: Collaborate with Qualified Security Assessors (QSAs) to ensure compliance with PCI-DSS standards, prepare for formal assessments, and address any identified gaps or recommendations.

QUALIFICATIONS:
Bachelor's degree in computer science, Information Security, or a related field.
Relevant certification (e.g., CISSP, CEH, CompTIA Security+, PCI Professional) are considered an asset.
Minimum 5 years of experience in an Information Security role.
Minimum 5 years of experience with administration of various security products such as Palo Alto, CrowdStrike, Cisco ASA and Checkpoint, Microsoft Defender, Microsoft Purview and Symantec endpoint protection, Qualys and Tenable network and web application scanner, CIS benchmarks.
Demonstrated knowledge of and/or familiarity with standards and frameworks such as PCI-DDS, ITIL, COBIT, ISO/IEC 31000 series, ISO/IEC 27000 series, SOC 2.
Demonstrated experience in undertaking security threat and risk assessment using an industry recognized framework equivalent to the Harmonized Threat and Risk Assessment methodology.
Proven experience with LogRhythm or Splunk solutions.
Previous experience conducting IT audits considered an asset.
Threat Risk Vulnerability Assessment (TRVA) training.
Knowledge of current network, operating systems, hardware, protocols, and standards.
Excellent analytical skills
Demonstrated ability in solving I.T. issues, problems and possessing a sense of urgency.
Demonstrated integrity in dealing with information and issues of a highly confidential and sensitive nature.
Diligent, detail-oriented, and possess a success-driven work ethic. Demonstrates Commitment to Environment, Health & Safety: Manages risks to protect the health and safety of employees and the public.
Able to perform forensic collections of data and to conduct detailed forensic analysis task including data recovery, production of forensic images and compilation of forensic examination reports.
Ability to collect and manage of evidence to ensure that the chain of custody is fully documented in accordance with local statutes and policies.
Experience In use of forensic and data mining tools to collect, search, recover, sort and organize large amounts of information in all phases of an investigation.
A proven team player & ability to interact and work with people with a variety of backgrounds and at different levels within the organization.
Internal candidates: No new or reclassified employee with less than one (1) year’s continuous on the job service may apply.
KrTBYuGkLF

  • Security Analyst

    5 months ago

    Toronto, Canada CB Canada Full time

    Security Analyst On behalf of our client in the Banking Sector, PROCOM is looking for a Security Analyst. Security Analyst – Job Description User access provisioning, granting access to banking applications and systems to employees and customers Provisioning access to Employees and Contractors using various applications and platforms ID and Mailbox...

  • Security Analyst

    1 month ago

    Toronto, Ontario, Canada Ainsworth Full time

    About the RoleAinsworth (a GDI company) is seeking a highly skilled Security Analyst to join our team. As a Security Analyst, you will play a key role in ensuring the security and integrity of our systems and data.Key ResponsibilitiesDesign and implement security systems and protocols to protect against cyber threatsConduct regular security audits and risk...

  • Security Analyst

    1 month ago

    Toronto, Ontario, Canada Ainsworth Full time

    About the RoleAinsworth (a GDI company) is seeking a highly skilled Security Analyst to join our team. As a Security Analyst, you will play a key role in ensuring the security and integrity of our systems and data.Key ResponsibilitiesDesign and implement security systems and protocols to protect against cyber threatsConduct regular security audits and risk...

  • Information Security Analyst

    5 months ago

    Toronto, Canada CB Canada Full time

    Information Security Analyst On behalf of our client in the Banking Sector, PROCOM is looking for an Information Security Analyst. Information Security Analyst – Job Description Manage assigned security platforms, following clients' procedures if required, which includes: Device health and availability monitoring Device health incident resolution and...

  • Security Analyst

    5 months ago

    Toronto, Canada HTS Engineering - Heat Transfer Solutions Full time

    HTS Engineering Ltd. is the largest independent commercial HVAC manufacturers’ rep in North America, with 20 locations in the US and Canada. HTS has a vibrant look and brand promise -- one that reflects our company-wide commitment to ensure the individual success of all those involved in a project’s HVAC system selection, design, purchase, installation...

  • Security Analyst

    5 months ago

    Toronto, Canada HTS Engineering - Heat Transfer Solutions Full time

    Founded in 2015 in Toronto, Canada, KORE Solutions is a subsidiary company of HTS and an innovative technology solutions and services provider with a strong focus on the HVAC manufacturer’s representative industry. With a variety of offerings including business intelligence software, help service support, and more, KORE delivers end-to-end solutions that...

  • Cyber Security Analyst

    3 weeks ago

    Toronto, ON, Canada DXC Technology Full time

    Job Description:The Tier 2 Information Security Analyst is responsible for the first line of security incident response in the client SIEM environment. The core responsibilities include the monitoring of client SIEM alerts in real-time, researching threat information, and escalating legitimate security incidents to the client. This position is also a...

  • Security Analyst

    2 months ago

    Toronto, Ontario, Canada Lorven Technologies Full time

    Job Title: Security Tech Writer/Security AnalystLocation: Toronto (Hybrid)Duration: Long TermAbout the Role:We are seeking a highly skilled Security Tech Writer/Security Analyst to join our team at Lorven Technologies. As a key member of our security team, you will be responsible for developing and maintaining information security hardening standards and...

  • Security Analyst

    2 months ago

    Toronto, Ontario, Canada Lorven Technologies Full time

    Job Title: Security Tech Writer/Security AnalystLocation: Toronto (Hybrid)Duration: Long TermAbout the Role:We are seeking a highly skilled Security Tech Writer/Security Analyst to join our team at Lorven Technologies. As a key member of our security team, you will be responsible for developing and maintaining information security hardening standards and...

  • Security Analyst

    5 months ago

    Toronto, Canada Tarion Full time

    **Security Analyst, SA012924** **Department**:Underwriting **Type of Position**: Full Time, Permanent **Location**: 7th Floor, 5160 Yonge Street, Toronto, ON **Reporting to**: Director, Analytics & Security **Work Model**: Hybrid - flexible work schedule **About Tarion** Since 1976, Tarion has provided new home warranty protection to more than 2...

  • Junior SOC Analyst

    2 months ago

    Toronto, Canada Mjolnir Security Full time

    Mjolnir provides clients with a suite of highly advanced and AI/ML driven tools and services - Security Ops Center as a Service, Threat Detection and Dark web Threat Intelligence, Digital Forensics, Threat Analysis and Incident Response services, as well as Cyber Security training. Mjolnir supports both corporate and public agencies - and specializes in...

  • Information Security Analyst

    3 weeks ago

    Toronto, Ontario, Canada Toyota North America Full time

    About the Role:We are seeking a highly skilled Information Security Analyst to join our team at Toyota North America. As an Information Security Analyst, you will play a critical role in ensuring the security and integrity of our information systems and data.Key Responsibilities:Conduct regular security assessments and risk analyses to identify potential...

  • Information Security Analyst

    2 weeks ago

    Toronto, Ontario, Canada Toyota North America Full time

    About the Role:We are seeking a highly skilled Information Security Analyst to join our team at Toyota North America. As an Information Security Analyst, you will play a critical role in protecting our organization's sensitive information and ensuring the security of our systems and networks.Key Responsibilities:Conduct regular security assessments and risk...

  • Security Analyst

    2 months ago

    Toronto, Ontario, Canada Nasdaq Full time

    Job Title: Security AnalystVerafin is a leading software company that provides cutting-edge solutions for fraud and money laundering detection. We are seeking a highly skilled Security Analyst to join our team and contribute to the success of our security program.Key Responsibilities:Analyze security vulnerabilities in Verafin's cloud infrastructure and...

  • Security Analyst

    2 months ago

    Toronto, Ontario, Canada Nasdaq Full time

    Job Title: Security AnalystVerafin is a leading software company that provides cutting-edge solutions for fraud and money laundering detection. We are seeking a highly skilled Security Analyst to join our team and contribute to the success of our security program.Key Responsibilities:Analyze security vulnerabilities in Verafin's cloud infrastructure and...

  • Security Analyst

    5 months ago

    Toronto, Canada Aviso Wealth Full time

    **Aviso Wealth**: **The Opportunity**: We’re looking for a Security Analyst to join or Information Security team. This role can be mostly remote, however we will on occasion require you to come onsite to our office at 151 Yonge St, Toronto, ON. Reporting to the Senior Manager of Information Security, the Security Analyst is responsible for ensuring the...

  • Junior Cybersecurity Analyst

    2 months ago

    Toronto, Canada Mjolnir Security Full time

    **Job Overview**: This role requires the ability to travel across Canada, support clients on-site, and occasionally lift up to 30 lbs during hardware deployments or security equipment setups. **Key Responsibilities**: - Assist in the detection, analysis, and response to security incidents using various security tools and techniques. - Conduct threat...

  • Cyber Security Analyst

    5 months ago

    Toronto, Canada Compest Solutions Inc Full time

    **Cyber Security analyst (Cloud, Security, infrastructure, Finance, Bank)** **Job Description for** **(security tech writers/ security analyst (info security specialist) - 2 Hires -** **(CICS Infrastructure Project)** **Max Rate: $50/hr On Inc** **Location: GTA** **Work Type: Hybrid (3 days in office)** Job description bullets for the security tech...

  • Cyber Security Analyst

    4 months ago

    Toronto, Canada Compest Solutions Inc Full time

    **Cyber Security analyst (Cloud, Security, infrastructure, Finance, Bank)** **Job Description for** **(security tech writers/ security analyst (info security specialist) - 2 Hires -** **(CICS Infrastructure Project)** **Max Rate: $50/hr On Inc** **Location: GTA** **Work Type: Hybrid (3 days in office)** Job description bullets for the security tech...

  • Security Information Analyst

    4 days ago

    Toronto, Ontario, Canada Toronto Parking Authority Full time

    Job SummaryThe Toronto Parking Authority is seeking a highly skilled and experienced Security Information Analyst to join its team. This role will play a critical part in the design, development, and implementation of the organization's security awareness plan and security initiatives.