Information Security Analyst

Marketing Statement

A career at TransLink and our family of companies means working with people with a wide range of skills and perspectives, all teaming up towards a common goal: preserving and enhancing the region's world-envied quality of life. Together, we connect the region and enhance its livability by providing a sustainable transit and transportation network, embraced by our communities and people.

At TransLink we are dedicated to building a workforce that reflects the diversity of the communities in which we live. We're committed to fostering an inclusive, equitable and accessible workplace, recognizing the unique value and skills every individual brings.

Looking for a great place to work where your contributions are valued and you can make a difference in a vibrant city? At TransLink, one of BC's Top Employers, you'll help make Metro Vancouver a better place to live, built on transportation excellence. Put your future in motion

Responsibilities

PRIMARY PURPOSE

Provides enterprise wide support by safeguarding technology assets against internal and external security threats to the confidentiality, integrity, and availability of business information and systems by developing and implementing day-to-day system security controls and identifying and managing threats to the achievement of business objectives. Provides recommendation for establishment and changes to departmental policies, procedures and processes. Reviews IS security on infrastructure, risk assessments and security designs within business applications.

KEY ACCOUNTABILITIES

Maintains operational configurations of all in-place security solutions as per the established baselines and operates them accordingly. Provides tactical technical advice and consultation to business unit clients and project teams and assistance with the adoption of Cyber Security technology.

Uses security testing tools to proactively assess day-to-day risks and vulnerabilities in the IT network by detecting intrusions or security incidents by continuously monitoring sources (e.g. devices, antivirus solutions, identifiers (IDs), etc.); escalates validated security incidents that exceed the predetermined threshold to the incident response team; formulating incident responses and containment strategies

Provides subject matter expert support and analysis during and after a security incident and perform incident analysis by correlating data from various sources and determining if a critical system or data set has been impacted. Builds new detection capabilities based upon research, analysis of threat actor methodology, and testing of new attack techniques. Participates in the planning and design of an enterprise Business Continuity Plan and Disaster Recovery Plan.

Reviews information system change requests prior to implementation to identify new sources of risk or elevation in the severity of currently identified risks. Monitors security vendor supplied security patches on all production devices to ensure they contain the most current security data.

Assists in the transition of new cybersecurity systems and devices from project to operations. Maintains the enterprise's security awareness training program.

Collects, analyzes, and reports security service performance metrics to understand the security status of information systems, including services obtained from external providers, and identifying appropriate actions for improvement. Manages systems access authorizations by investigating improper access, revoking access, reporting violations, monitoring information requests, and recommending improvements

Supports projects and business operations by taking a lead role identifying information security risks, recommending appropriate controls, and actively applying technical mitigation strategies within security technology. Assists with security risk assessments based on industry frameworks (ISO 27001, NIST, CSA, PCI) for new projects, applications, and 3rd party vendors, including business impact analysis, security requirements, and manage residual risk documentation.

Participates in the planning and design of resilient enterprise security architecture and technologies for optimal threat protection, monitoring, and incident response by rreviewing and implementing data backup, restoration, and retention policies and procedures in collaboration with other subject matter experts within BTS division ; monitoring performance of backup recovery systems through periodic testing.

Monitors and maintains security tracking tools and associated databases and prepares reports and presentations on metrics and risk trends. Assists in creating daily, weekly, and monthly operational reports. Conducts security, vulnerability, and risks assessments related to the information security of the systems, networks, and related administrative activities. Develops reports and recommends mitigation strategies where necessary.

Contributes actively as a core member of TransLink Cyber Incident Response Team. Engages in security research in keeping abreast of the latest security issues for Cloud security controls (including SAAS and IAAS). Participates in the development and implementation of annual cyber security awareness campaigns.

Provides guidance on TransLink corporate cybersecurity policies to its employees and contractors. Leads and participates in cybersecurity investigations and audits. Assists with developing, documenting, maintaining and reviewing TransLink IT security operational standards and guidelines as required and provides recommendations for improvements. Assists with establishing and maintaining security incident response plans and procedures.

Qualifications

EDUCATION AND EXPERIENCE

The competencies for this position would be acquired through a Diploma in Computer Science with emphasis on computing and networking infrastructure, plus five (5) years of progressive experience information systems support which includes 2 years in information security administration in a large, complex, multi-disciplinary organization.

OTHER REQUIREMENTS

Strong knowledge in information security guidelines, concepts and technical security controls

Strong assessment and problem-solving skills, including the ability to research, analyze, and interpret data and information from a variety of disparate sources.

Strong knowledge of information security principles, IT risks, compliance and security frameworks (NIST, ISO 27001/2, PCI etc.)

Proven experience in Cloud computing and SAAS platform security, including email security

Proven experience with CASB and Cloud based logging and SIEM solutions

Strong written and verbal communication skills

Strong technical and non-technical documentation skills with an orientation for detail

Strong interpersonal skills including conflict management and mentoring

Ability to build relationships in a consultative and collaborative manner

Sound planning, organization, and time management skills

Other Information

Recruitment Process: An applicant will be required to demonstrate their suitability for this position by meeting the minimum level of qualifications and experience in order to be invited into the selection process. A standard interview format will be used including general, scenario and behavioural descriptive interview questions.

Work Schedule

37.5 hours per week.

This is a full-time temporary position for 12 months.

Work Designation

Hybrid

This position offers the flexibility of working both on-site and remotely within B.C.

Rate of Pay

The salary for this position ranges from $82,400 - $123,600 per annum. Actual salary offered will be based on education, experience, skills, and qualifications as they relate to the role.

We aim to provide competitive pay that reflects your professional background and expertise. We want to ensure our offer will align with your strengths considering experience, skills, and internal equity to offer a fair and equitable salary. The Total Compensation Package, which includes Extended Health, Dental, Transit Pass and enrollment in the Public Service Pension Plan as well as other employment offerings will be discussed in detail as your application progresses.

How to Apply

Please click the 'Apply' button at the top right corner of the page or go to to apply for this position and view instructions on the process.

INSTRUCTIONS: Please save your (1) cover letter, and your (2) resume as one pdf document prior to uploading your application on-line.

Posting Date: November 26, 2025

Closing Date: Open until filled

Please note that only those short listed will be contacted.

Having trouble applying? Please view the System Requirements & FAQ's by going to

Equal Employment Opportunity

TransLink is committed to employment equity and building a diverse workforce, representative of the customers we serve and the many communities in the Metro Vancouver region. We welcome and encourage Indigenous applicants, people of colour, all genders, 2SLGBTQ+ and persons with disabilities to apply. Learn more about TransLink's commitment to equity, diversity and inclusion.

Accommodations are available on request for candidates taking part in all aspects of the selection process. For a confidential inquiry, simply email us

---