Attack Surface Reduction Analyst

5 months ago

Montréal QC, Canada WSP Full time

**The Opportunity**:
The Attack Surface Reduction Analyst will play a critical role in enhancing our organization’s cybersecurity posture by identifying, assessing, and mitigating vulnerabilities and threats across our digital environment. This role involves a combination of strategic analysis, hands-on implementation, and collaboration with various teams to reduce our attack surface and improve our overall security resilience.

**Why choose WSP?**
- We value and are committed to upholding a culture of **inclusion **and **belonging**:

- Our **Flexible **Work Policy - we recognize the importance of balance in our lives and encourage you to prioritize the balance in yours. We will support you on and off the job so you can be fully present in both your work and home lives.
- A **Canadian **success story - we're **proud **to wear the red and white of this beautiful country and show the world what Canada has to offer.
- **Enhance **the world around you - from the environment to the highways, to the buildings and the terrain, WSP is the fabric of Canada.
- **Outstanding **career opportunities - we're growing and pushing ourselves every day to be greater than yesterday - we're open to **your **ideas and trying **new **things.
- A phenomenal **collaborative **culture and a workforce filled with genuinely **good **people **who are doing humbly important work. Come find out for yourself what it's like to be a part of our journey.

We offer attractive pay, flexible work options, a great corporate culture, comprehensive and employee-focused benefits including virtual healthcare and a wellness platform as well as great savings programs, and a clear vision for the future.

**WeAre **WSP
**What you can expect to do here**:
**Specific areas of responsibility may fall into any one of the following areas of Attack Surface Reduction**:
**Mitigation Strategies**:Develop and implement strategies and controls to reduce attack vectors and minimize potential entry points for malicious activities.

**Risk Evaluation**:Continuously evaluate emerging threats and vulnerabilities and assess their impact on our attack surface.

**Incident Response Support**:Collaborate with the Incident Response team to address and resolve security incidents related to identified vulnerabilities or attack vectors.

**Collaboration**:Work closely with I&O, Risk, SOC, SecDevOps, and other relevant teams to integrate security practices into the development and deployment processes.

**Security Tools**:Utilize and configure security tools and technologies for vulnerability scanning, threat intelligence, and attack surface monitoring.

**Documentation & Reporting**:Maintain detailed documentation of vulnerabilities, risk assessments, and mitigation actions. Prepare and present reports to stakeholders on security posture and risk status.

**Continuous Improvement**:Stay current with industry trends, threat intelligence, and emerging technologies to continually enhance our attack surface reduction strategies.

**Leadership and People Responsibilities**
- Develop positive working relationships with other team members and business partners and partners across teams to align with WSPs internal and external client demands.Provide feedback on the governance process for continued improvement.

**Finance/Budgetary Responsibilities**
- Provide feedback on tooling and identify additional needs
- Plan for expanse of security tools to cover ongoing needsEvaluation of license usage and potential growth

**What you’ll bring to WSP**:
**Required**
- 7-+ years related experience in Security Operations, Network Security, Vuln. Management or similar position.
- Bachelor's degree or equivalent in Information Technology, Computer Science, Engineering, Data Sciences, or related field
- Strong knowledge of security assessment tools, vulnerability scanning, and penetration testing
- Proficiency in security tools: Microsoft Defender, Microsoft Defender EASM, BitSight, Cybel Angel and others.
- Strong analytical skills with a keen eye for detail and accuracy
- Effective communication skills, with the ability to clearly convey technical concepts to both technical and non-technical stakeholders
- Experience with IT Governance frameworks such as COBIT, ITIL, NIST and ISO 2700xExperience with risk management, including risk analysis, mitigation, and monitoring

**What sets you apart**
- Master’s degree in information technology, Computer Science, Engineering, Data Sciences or related field
- Security+, CISSP, or other related certifications.

**WSP **is one of the world's leading professional services firms. Our purpose is to future proof our cities and environments.

We have over 65,000 team members across the globe. In Canada, our 12,000+ people are involved in everything from environmental remediation to urban planning, from engineering iconic buildings to designing sustainable transportation networks, from finding new ways to extract essential resources to developing renewabl

  • Security Risk Assessment Analyst

    2 months ago

    Montréal, QC, Canada NTT DATA Full time

    We are currently seeking a **Security Risk Assessment Analyst** to join our team in Montreal, Quebec (CA-QC), Canada (CA). **Job Responsibilities Include**: - Conducting remote/in-person interviews with system owners/vendors to get all the required information for assessment and to identify any gaps. - Reviewing system-related material including...

  • Security Risk Assessment Analyst

    3 months ago

    Montréal, QC, Canada NTT DATA Full time

    We are currently seeking a **Security Risk Assessment Analyst** to join our team in Montreal, Quebec (CA-QC), Canada (CA). **Job Responsibilities Include**: - Conducting remote/in-person interviews with system owners/vendors to get all the required information for assessment and to identify any gaps. - Reviewing system-related material including...

  • Information Security Risk Assessment Analyst

    2 months ago

    Montréal, QC, Canada NTT DATA Full time

    We are currently seeking a **Information Security Risk Assessment Analyst** to join our team in Montreal, Quebec (CA-QC), Canada (CA). **Job Responsibilities Include**: - Conducting remote/in-person interviews with system owners/vendors to get all the required information for assessment and to identify any gaps. - Reviewing system-related material...

  • Cyber Security Analyst

    2 months ago

    Montréal, QC, Canada L3Harris Technologies Full time

    **About your next Challenge as a Cyber Security Analyst**: The L-3 MAPPS Integrated Platform Management System (IPMS) running on board various military ships throughout the world is built using software developed by L3Harris MAPPS and integrates with almost all onboard equipment. As a cybersecurity developer, you will play a key role in enhancing the...

  • Analyst, Information Security

    7 months ago

    Montréal, Canada Addenda Capital Full time

    City: - Montréal, QC - Status: - Permanent, Full-time **Who we Are** Addenda Capital is a privately-owned investment management firm that favours a sustainable approach to wealth creation. The company offers a stimulating, positive and open-minded environment where integrity, collaboration and diversity are valued. Addenda integrates ESG (Environmental,...

  • Bilingual Security Operations Center

    6 days ago

    Montréal, QC, Canada Hays Full time

    Role: Bilingual Security Operations Center (SOC) Location: Montreal, Qc Length: 12 months Type: Hybrid ROLE R As a Cyber Analyst, you will be responsible for monitoring, analyzing, and responding to cybersecurity incidents and threats. You will work closely with our Managed Security Service Provider and Cybersecurity Operations team to...

  • Analyste Cybersécurité SOC

    7 months ago

    Montréal, Canada ESi Technologies Full time

    Description du poste ESI est à la recherche d’analystes en sécurité de Niveau 2 pour son centre de sécurité opérationnel (SOC). La responsabilité principale de ce poste est d’analyser des alertes générées par multiples systèmes et environnements de nos clients, par nos systèmes de détections d’intrusion installés sur les réseaux de...

  • Csoc Analyst

    5 months ago

    Montréal, QC, Canada Intelcom Full time

    Ride the next mile with us! - Job Description: Key Responsibilities: Security Monitoring and Analysis: o General cybersecurity monitoring of endpoints, servers and operational environment, cloud and on prem. o Vulnerability management and monitoring. o External attack surface monitoring and management. o Dark web monitoring. o Threat monitoring and...

  • Security Analyst

    2 months ago

    Montréal, QC, Canada Ubisoft Full time

    **Company Description** Ubisoft’s 19,000 team members, working across more than 30 countries around the world, are bound by a common mission to enrich players’ lives with original and memorable gaming experiences. Their commitment and talent have brought to life many acclaimed franchises such as Assassin’s Creed, Far Cry, Watch Dogs, Just Dance,...

  • Bilingual Security Operations Center

    6 days ago

    Montréal, QC, Canada Hays Full time

    Role: Bilingual Security Operations Center (SOC) Location: Montreal, Qc Length: 12 months Type: Hybrid ROLE R As a Cyber Analyst, you will be responsible for monitoring, analyzing, and responding to cybersecurity incidents and threats. You will work closely with our Managed Security Service Provider and Cybersecurity Operations team to protect the...

  • Bilingual Security Operations Center

    6 days ago

    Montréal, QC, Canada Hays Full time

    Role: Bilingual Security Operations Center (SOC) Location: Montreal, Qc Length: 12 months Type: Hybrid ROLE R As a Cyber Analyst, you will be responsible for monitoring, analyzing, and responding to cybersecurity incidents and threats. You will work closely with our Managed Security Service Provider and Cybersecurity Operations team to protect the...

  • Csoc Analyst

    5 months ago

    Montréal, QC, Canada Intelcom Full time

    Prêt à relever le défi ? Job Description: Key Responsibilities: Security Monitoring and Analysis: o General cybersecurity monitoring of endpoints, servers and operational environment, cloud and on prem. o Vulnerability management and monitoring. o External attack surface monitoring and management. o Dark web monitoring. o Threat monitoring and...

  • Incident Response

    2 days ago

    Montréal, Canada Ubisoft Full time

    Company Description Ubisoft’s 20,000 team members, working across more than 30 countries around the world, are bound by a common mission to enrich players’ lives with original and memorable gaming experiences. Their commitment and talent have brought to life many acclaimed franchises such as Assassin’s Creed, Far Cry, Watch Dogs, Just Dance, Rainbow...

  • Finance Analyst

    22 hours ago

    Montréal, QC, Canada Axelon Services Corporation Full time

    Job Title: Financial Analyst Location: Montreal, QC Job Summary: Responsible for financial reporting, planning and analysis for a specific business unit, division or product. Supports the business by providing financial reporting and analysis to aid business management and gives guidance and advice on accounting issues and the financial implications of...

  • Finance Analyst

    7 hours ago

    Montréal, QC, Canada Axelon Services Corporation Full time

    Job Title: Financial Analyst Location: Montreal, QC Job Summary: Responsible for financial reporting, planning and analysis for a specific business unit, division or product. Supports the business by providing financial reporting and analysis to aid business management and gives guidance and advice on accounting issues and the financial implications of...

  • Csoc Team Lead

    4 months ago

    Montréal, QC, Canada Intelcom Full time

    Ride the next mile with us! - Job Description: Responsibilities: - Leadership and Team Management: - Lead and grow a team of cybersecurity analysts, providing mentorship and guidance. - Coordinate with other teams and stakeholders to ensure alignment of security operations with overall organizational goals. - Foster a collaborative and team culture. -...

  • Security Analyst Level Ii

    4 hours ago

    Montréal, Canada SITA Full time

    **Overview**: SITA is looking for a Security Operations Center (SOC) Analyst L2 position within Sita Global Services (SGS) organization. You will be joining Sita Command Center Security Operations Center (SCC SOC), to help grow our professional team. As a Security Analyst Level II, you will be responsible for monitoring and responding to cyber security...

  • Information System Security Specialist(Cissp, Sscp

    5 months ago

    Montréal, QC, Canada NTT DATA Full time

    We are currently seeking a **Information System Security Specialist(CISSP, SSCP, and CISM) - Onsite Hybrid** to join our team in Montreal, Quebec (CA-QC), Canada (CA). **Job Responsibilities Include**: - Conducting remote/in-person interviews with system owners/vendors to get all the required information for assessment and to identify any gaps. - Reviewing...

  • Business Analyst

    4 months ago

    Montréal, QC, Canada Lightspeed Full time

    As a Business Analyst, you will be responsible for driving the optimisation of our telephony systems and communications tools, ultimately enhancing the quality of customer interactions and satisfaction. By leveraging data analysis, process improvement and technology expertise, this role contributes to our commitment to deliver exceptional customer...

  • Threat Intelligence Analyst

    3 months ago

    Montréal, QC, Canada Aylo Careers Full time

    Established in 2004, we are a tech pioneer offering world-class adult entertainment and games on some of the internet's safest and most popular platforms. With the support of an international team of dynamic and collaborative innovators, we are on a mission to enable safe user experiences and empower our communities by celebrating diversity, inclusion, and...