Cyber Security Analyst

BCIT’s **Information Technology Services **Department is seeking a **regular, full-time (1.0 **FTE**) Cyber Security Analyst.**

The Cyber Security Office under the leadership of the Chief Information Security Officer is responsible for the development, implementation, delivery and support of a pan-institutional cyber security strategy. The portfolio includes two key focus areas, GRC & Security Architecture and Incident Response and Monitoring. The team works as part of a cross functional team (SecOps) when assessing overall cyber maturity, identifying and addressing gaps by aligning and adopting industry frameworks and best practices.This position will require an individual who is highly passionate about the improvement of cyber security through people, process and technology improvements; proactive in their work often needing little direction from management. In addition to supporting and mentoring junior staff within the cyber security team, this position will assume an increased amount of responsibility, independence, and will work collaboratively across institute to support cyber security functions across the institution.**Duties & Responsibilities**

**DUTIES** **AND**

**RESPONSIBILITIES**:

- Lead and promote “**Be Cyber Aware**”, a pan-institutional cyber awareness program at BCIT
- Support a cross functional team with cyber security related events and incidents by overseeing security related incident tickets assigned to Cyber Security Office.
- Review, investigate and escalate security incidents, like phishing, malware, infected devices etc.
- Provide continual development of standard operating procedures for security operations
- Support the Senior Security Analyst in identifying cyber security vulnerabilities and ensuring they are brought to the relevant technical team(s) for mitigation in a timely manner
- Coordinate IT compliance and audit response areas (PIA, FOI, PCI, Audit, Risk Register etc.)
- Identify security improvements by assessing current situation, evaluating trends, and anticipating requirements
- Make recommendations based on best practices and in the context of the risk to the Institute and its operational environment
- Recognize and escalate problems by identifying security-related abnormalities and reporting violations
- Provide tactical technical advice and consultation to business unit clients and project teams and promote with the adoption of Cyber Security best practices
- Core member of BCIT’s Cyber Incident Response Team

**Qualifications**

**MINIMUM**

**QUALIFICATIONS**:

- Diploma of Technology (2 year) in Computer Systems or educational equivalent
- 4 years current experience in a similar computing environment; or an equivalent combination of specifically related education and experience.
- Must have demonstrated specific current IT knowledge, in a similar computer environment to BCIT.
- Proven commitment to providing the highest level of customer service.
- Effective oral and written communication skills
- Proven analytical and problem solving skills.
- Strong organizational skills and ability to meet changing priorities and multi-task, while meeting strict deadlines.
- Must be a team player and work well with cross-departmental teams.
- Commitment to regular ongoing professional development (including specific IT skills, professional associations and current industry trends).
- High level of professionalism and ethics.

**DESIRED**

**QUALIFICATIONS**:

- Experience in cyber, audit, compliance, risk management or related field
- Experience in compliance management through COBIT, ISO 27001, NIST CSF or FIPPA.
- Experience in design and implementation of information security policies and controls
- Experience with core security technologies such as security information and event monitoring systems (SIEM), firewalls, network and host intrusion prevention and detection systems, proxies, vulnerability scanners, and anti-virus solutions
- Experience and understanding of AD, DNS, Virtualization/Containerization and EDR/XDR.
- Experience with cloud vendors, design, architecture and security management
- Demonstrated ability to understand and interpret audit, as well as security requirements
- Superior interpersonal and communication skills
- One or more of the industry certifications preferred: Security+, CEH, CISA, SANS, CISM, CISSP

**Additional Information**

**Benefits - Why you’d love working with us**
- Competitive pay
- Minimum of twenty-five days of vacation (or more, depending on your **position**)
- Competitive employer-paid extended health and dental plan - take a look at our **benefit plans**
- Defined benefit **pension** plan with employer contributions
- Flexible hybrid work arrangements available
- **Professional Development** funds and resources
- Access to most BCIT Flexible Learning **courses** free of charge
- **Wellness** and Employee Assistance programs
- Complimentary membership with free access to the Fitness Centre, Gymnasium, and **_mor