Analyst, Cybersecurity

**Salary: Union Band 9 ($101,166.00; $105,202.50)** **Status: Full-Time, Permanent** **Number of positions available: 1** **Closing Date: June 24, 2025** **WHO WE ARE** The Calgary Airport Authority manages and operates both YYC Calgary International Airport and YBW Springbank Airport as well as collaborates with the many vibrant community partners who impact our guest experiences. If you are interested in an exciting career in the airport industry then this is the place to be **WHAT WILL YOU DO** The Analyst, Cybersecurity role is responsible for delivery of cybersecurity services including but not limited to cyber threat intelligence, detection, and response services to all departments at the Calgary Airport Authority (“the Authority”). This role is expected to perform specific tasks or activities in the following areas cyber governance, cyber risk, cyber technology, and cyber training. This role is expected to be part of the oncall rotation to provide after hour support. **WHATS THE TEAM LIKE** If you"re passionate about cybersecurity and technology and thrive in a high-performance environment, this role offers an exciting opportunity. You"ll be part of a dedicated and collaborative team that works together to maintain a secure and resilient technology landscape—critical to the smooth operation of our airport. Our cybersecurity team is composed of skilled professionals who support one another, share knowledge, and are committed to excellence. Together, we connect people and technology to deliver seamless, secure IT operations every day. **WHAT ARE SOME OF THE RESPONSIBILITIES** - Update internal cyber policies, standards, and procedures based on directions from senior analyst(s). - Keep up with current cyber threat landscape and emerging technologies and recommend changes in any internal documents to align with upcoming threats or emerging trends. - Conduct follow-up on existing cyber risk items with risk owners. - Perform tier 1 and 2 support on cyber incidents or issues arise on a daily basis. - First point of contact for external cyber operation managed services to help resolve cyber alerts raised by external cyber operation team. - Recommend changes to existing detection rules based on changes in cyber threat landscape. - Recommend changes to internal cyber technology stacks based on threat intelligence, learnings and/or changes to the threat landscape. - Participate in annual cyber tabletop exercise. - Correlates activity across assets (endpoint, network, apps) and environments (on-premises, cloud) to identify patterns of anomalous activity, unauthorized use (Cyber threat hunting). - Research emerging threats and vulnerabilities to aid in the identification of incidents. - Participate in projects or other cyber specific activities as directed by Cybersecurity GM. - The Cybersecurity Analyst may be called up to help with tasks/duties for other cybersecurity functions, such as cyber awareness, or cyber governance related tasks. - Contribute to the continuous improvement of cybersecurity at the Authority. - The Cybersecurity Analyst may travel to attend courses, conferences, and seminars, to update and improve their cyber technical knowledge and experiences. - Research and develop cybersecurity materials for all staffs at the Authority. - Support the IT Cybersecurity Specialist with material development for the leadership team, to spread cyber awareness. **WHAT DO YOU NEED TO BRING** - Role requires a university education or a college diploma with a focus on cybersecurity; recurring industry training may be considered. - Requires a minimum of 1-2 years’ experience focusing on cybersecurity - The ability to gain and maintain a RAIC (RAIC Program and Application Information) - General knowledge of security tools and overall cybersecurity space. - Developing business acumen for communication and collaboration. - Developing technical knowledge of IT systems layers (Application, networking, cloud, Microsoft tools). - Proficient analytical and troubleshooting skills from previous work or post-secondary education. - Knowledge of basic networking, common computing (server, workstations, mobile), and other corporate technologies. - Ability to work in a complex, 24/7/365 public facility. - Quick learner and adaptable to changing environments. - Communication skills: Developing listening, speaking, and writing skills; adaptable communication style. - Ability to manage multiple tasks, priorities, deadlines, and short-term projects. - Ability to recognize and seek guidance as require. - Make daily decisions within the role’s technical scope and identify major issues to seek assistance for senior team members. - Build and maintain relationships within the team, vendors, contractors, and stakeholders; understand human dynamics and team player styles. - Working knowledge of NIST CSF cybersecurity framework; expand knowledge to ISO27001, CSC Top 20, OWASP Top 10, and other frameworks. - Developing knowledge