Level 2 SOC Analyst
2 weeks ago
**Level 2 SOC Analyst**:
**Category**: Cyber Security
**Main location**: Canada, P. E. I., Toronto
**Alternate Location(s)**:
- Canada, British Columbia, Vancouver
- Canada, Alberta, Calgary
- Canada, Nova Scotia, Halifax
- Canada, Ontario, Ottawa
- Canada, New Brunswick, Moncton**Position ID**: J0123-0928
**Employment Type**: Full Time
**Position Description**:
The Level 2 (L2) SOC Analyst is a core resource on the security monitoring and response team (Blue Team) within the Global Security Operations Center (GSOC). As a member of the Blue Team, the L2 Analyst is responsible for the monitoring, triage and response of all security alerts coming from SIEM and the security controls directly.
The L2 Analyst will have a broad range of cybersecurity experience and skillsets including knowledge of Windows and Linux operating systems, knowledge of common threats and attack methodologies, an awareness of industry standards, and foundational endpoint and network-based analysis techniques.
**Your future duties and responsibilities**:
- Perform real-time monitoring of security alerts coming into the queue, detected by various security controls.- Continue the investigation of alerts that have been escalated by L1 Analysts within agreed upon SLA's.
- Perform triage of indicators, as needed, and document all findings in the appropriate threat knowledgebase.
- Perform In-depth analysis of the alert, outside of Standard Operating Procedures, utilizing foundational endpoint
and network-based analysis techniques.- Create security incidents from presumed true-positive alerts; and close presumed false-positives.
- Escalate alerts to L3 Analyst that are found to be undetermined, or that have additional requirements.
- Support the Incident Handling (IH) and Incident Management (IM) teams
- Maintain awareness of industry trends, new threats, technologies and common security standards and
frameworks.- Engage and collaborate with other members of the GSOC, as well as internal CGI teams, during the investigation
of alerts.- Make technical and procedural enhancement recommendations in coordination with other members of the team
to improve the overall capabilities and maturity of the SOC.- Report security vulnerabilities identified during BAU activities, and provide recommendations to mitigate the
overall security risk to the organization.- Review and enhance Standard Operating Procedure (SOP) documentation.
- Utilize and contribute to internal threat intelligence.
- Perform handover of priority items at the end of shift.
- Review alert queues to identify patterns that may indicate broader security issues by taking a"short-term" view of event analysis (days and weeks)
**Required qualifications to be successful in this role**:
- Ability to communicate clearly and effectively in both verbal and written form.- Ability to think critically when investigating alerts in order to determine appropriate relevance of the alert details.
- Knowledge of various networking concepts and the ability to utilize that knowledge during an investigation.
Common concepts include IP Address subnets, Network Address Translation (NAT), and the knowledge of
- different protocols and ports.- Knowledge of Windows Event ID's, including knowing the event ID of common events such as logins, login
failures, and process creations.- Knowledge of the Linux operating system including common log storage paths, and foundational Linux
commands.- Knowledge of vulnerability management concepts, as well as Common Vulnerabilities and Exposures (CVE).
- Ability to analyze log files utilizing clearly defined techniques.
- Knowledge of network security monitoring techniques.
- Knowledge of common threats and vulnerabilities, attack methodologies, threat actors, and attack tools.
- Awareness of various industry standards and frameworks.
- Knowledge of IT Service Management (ITSM) with a focus on Incident Management.
- Knowledge of foundational open source intelligence techniques.
- Foundational knowledge of any scripting or programming language, is an asset.
- Knowledge of foundational malware analysis techniques, is an asset.
- Knowledge of foundational reverse engineering techniques, is an asset.
- Knowledge of foundational threat hunting techniques, is an asset.
- Ability to methodically research unknown information; including being able to search for information, take notes, and manage time.
- Ability to mentor junior analysts.
QUALIFICATIONS & EDUCATION- 2+ year degree of diploma with a focus on Information Security or Cybersecurity, is an asset, but not required.
- Certifications in Information Security or Cybersecurity related disciplines (e.g., Security+, CySA+, SSCP, CISSP,
CCSP, GSEC, GSOC, GCIA, GMON, GCDA, GCIH, GCFA, GREM, GNFA, CEH).
- EXPERIENCE- At least, 2 years of experience working in a Security Operations Center as a SOC Analyst, or similar role.
- Experience handling alerts from SIEM and common security controls including Network and Host-ba
-
SOC Analyst
4 weeks ago
Toronto, Canada Sopra Steria I2S Full time**About Us** - Are you ready to take on the challenge with us?_ Within Sopra Steria's Cybersecurity division (I2S), you will join the global SOC team as a **SOC Analyst (Security Operations Center)** - **Internship **in our Toronto office, reporting to the Senior SOC Analyst. As a SOC Analyst Intern, you will be an integral part of our cybersecurity defense...
-
Security Operations Center
4 weeks ago
Toronto, Canada Thentia Full time**About **Thentia** Thentia is a fast-growing, venture capital-backed software as a service (SaaS) company that is emerging as a world leader in government technology with a platform that is transforming and modernizing how regulatory organizations are conducting business. A company of builders, thinkers, and owners, Thentia gives employees the opportunity...
-
Cybersecurity Analyst Tier 2
4 weeks ago
Toronto, Canada ISA Cybersecurity Full time**About the Role**: The Cybersecurity Analyst - Tier 2 is responsible for gathering details needed to assess the scope of a cyber-attack and respond to severe attacks or those with high business impact. The Tier 2 role will clearly understand the customer’s environment (i.e. current security controls) and provide consultation on security controls required...
-
Data Analyst
7 days ago
Toronto, Canada Intero Integrity Full time**Data Analyst (Level 2)**: Intero Integrity is a fast-growing global company offering inspection, industrial and environmental services to the energy industry. We develop our own high-tech equipment and software and use this technology to execute projects worldwide. We support the energy industry to use natural resources efficiently, safely, and...
-
Operations Resolution Manager
4 weeks ago
Toronto, Canada Air Canada Full time**Description** **Being part of Air Canada is to become part of an iconic Canadian symbol, recently ranked the best Airline in North America. Let your career take flight by joining our diverse and vibrant team at the leading edge of passenger aviation.** The System Operations Resolution Manager is responsible for investigating and analyzing the day-to-day...
-
Business Analyst x 2
4 weeks ago
Toronto, ON, Canada Nexus Systems Group Inc. Full timeBusiness Analyst x 2Typical Day in Role: 1. Documentation - Create, update, and maintain business requirement document of different products for liquidity risk cashflow engine to generate cashflows used in LST reporting - Update and maintain product mapping table from liquidity risk data feeds to cashflow generation module. - Create, update, and maintain...
-
Business Analyst x 2 – IT
4 weeks ago
Old Toronto, Canada Nexus Systems Group Inc. Full timeBusiness Analyst x 2 Typical Day in Role: 1. Documentation - Create, update, and maintain business requirement document of different products for liquidity risk cashflow engine to generate cashflows used in LST reporting - Update and maintain product mapping table from liquidity risk data feeds to cashflow generation module. - Create, update, and maintain...
-
Business Analyst x 2 – IT
3 weeks ago
Old Toronto, Canada Nexus Systems Group Inc. Full timeBusiness Analyst x 2 Typical Day in Role: 1. Documentation - Create, update, and maintain business requirement document of different products for liquidity risk cashflow engine to generate cashflows used in LST reporting - Update and maintain product mapping table from liquidity risk data feeds to cashflow generation module. - Create, update, and maintain...
-
Business Analyst x 2 – IT
3 weeks ago
Old Toronto, Canada Nexus Systems Group Inc. Full timeBusiness Analyst x 2 Typical Day in Role: 1. Documentation - Create, update, and maintain business requirement document of different products for liquidity risk cashflow engine to generate cashflows used in LST reporting - Update and maintain product mapping table from liquidity risk data feeds to cashflow generation module. - Create, update, and maintain...
-
Business Analyst x 2 – IT
11 hours ago
Old Toronto, Canada Nexus Systems Group Inc. Full timeBusiness Analyst x 2 Typical Day in Role: 1. Documentation - Create, update, and maintain business requirement document of different products for liquidity risk cashflow engine to generate cashflows used in LST reporting - Update and maintain product mapping table from liquidity risk data feeds to cashflow generation module. - Create, update, and maintain...
-
IT Reporting Analyst
2 weeks ago
Greater Toronto Area, Canada SinglePoint Group International Full timeAre you ready to leverage your IT expertise to drive meaningful business decisions? We're seeking a dynamic IT Reporting Analyst to join our team and play a pivotal role in designing and delivering reports that empower both internal stakeholders and clients. If you're passionate about data-driven insights and thrive in a collaborative environment, this...
-
Tax Content Analyst 2
5 days ago
Toronto, Canada Intuit Full time**Overview**: Join our Tax Development Team as a Tax Content Analyst 2 where we focus on updating our products for tax law changes and deep tax law analysis, all while working with a great group of people to enable consumers to maximize their tax refund, save more, and power prospersity. Please note that Intuit Canada works on a hybrid work model; employees...
-
Tax Content Analyst 2
4 weeks ago
Toronto, Canada Intuit Full time**Overview**: Join our Tax Development Team as a Tax Content Analyst 2 where we focus on updating our products for tax law changes and deep tax law analysis, all while working with a great group of people to enable consumers to maximize their tax refund, save more, and power prospersity. **Please note that Intuit Canada works on a hybrid work model;...
-
Cloud Operations Support Analyst
3 days ago
Toronto, Canada Limelight Software Full time**Who We Are** At Limelight, we are on a mission to modernize how companies collect and analyze their data while providing an exceptional customer experience. Our platform, Limelight is transforming spreadsheets into a real-time, collaborative financial planning and analysis workspace. As leaders in innovation, we are experiencing exceptional growth and are...
-
Sr Analyst, Governance, Risk, and Compliance
2 weeks ago
Toronto, Canada Tucows Inc. Full timeTucows (NASDAQ:TCX, TSX:TC) is possibly the biggest Internet company you've never heard of. We started as a simple shareware site in 1993 and have since grown into a stable of businesses: Tucows Domains, Ting Internet and Wavelo.What's next at TucowsWe embrace a people-first philosophy that is rooted in respect, trust, and flexibility. We believe that...
-
Sr Analyst, Governance, Risk, and Compliance
3 weeks ago
Toronto, Ontario, Canada Tucows Inc. Full timeTucows (NASDAQ:TCX, TSX:TC) is possibly the biggest Internet company you've never heard of. We started as a simple shareware site in 1993 and have since grown into a stable of businesses: Tucows Domains, Ting Internet and Wavelo.What's next at TucowsWe embrace a people-first philosophy that is rooted in respect, trust, and flexibility. We believe that...
-
Sr Analyst, Governance, Risk, and Compliance
2 weeks ago
Toronto, Ontario, Canada Tucows Inc. Full timeTucows (NASDAQ:TCX, TSX:TC) is possibly the biggest Internet company you've never heard of. We started as a simple shareware site in 1993 and have since grown into a stable of businesses: Tucows Domains, Ting Internet and Wavelo.What's next at TucowsWe embrace a people-first philosophy that is rooted in respect, trust, and flexibility. We believe that...
-
Data Analyst
1 week ago
Old Toronto, Canada Tundra Technical Solutions Inc. Full timeStory Behind The NeedThe Credit Risk Data Analyst will work directly with the Global Retail Data Office and credit risk departments across International banking to analyze, validate, and report on the performance of new and existing customers by ensuring data with the necessary granularity and accuracy is available for Portfolio Monitoring, modeling, and...
-
Data Analyst
1 week ago
Old Toronto, Canada Tundra Technical Solutions Inc. Full timeStory Behind The NeedThe Credit Risk Data Analyst will work directly with the Global Retail Data Office and credit risk departments across International banking to analyze, validate, and report on the performance of new and existing customers by ensuring data with the necessary granularity and accuracy is available for Portfolio Monitoring, modeling, and...
-
Data Analyst
1 week ago
Old Toronto, Canada Tundra Technical Solutions Inc. Full timeStory Behind The NeedThe Credit Risk Data Analyst will work directly with the Global Retail Data Office and credit risk departments across International banking to analyze, validate, and report on the performance of new and existing customers by ensuring data with the necessary granularity and accuracy is available for Portfolio Monitoring, modeling, and...