Finning Canada

Intermediate Security Operations Analyst

PayCompetitive
LocationPrince George/British Columbia
Employment typeFull-Time

This job is now closed

Apply to similar jobs

  • Job Description

      Req#: R-2024-1687

      Company:

      Finning International Inc.

      Number of Openings:

      1

      Worker Type:

      Permanent

      Position Overview:

      The Intermediate Security Operations Analyst will be globally responsible for improving the security posture of all Finning regions with regards to: incidence response, SIEM alert management, email hygiene, firewall policy management, vulnerability management and governance policy compliance.

      Join our dynamic team as a Security Operations Analyst where you'll be responsible for monitoring, detecting and responding to cybersecurity threats. Apply your expertise to safeguard our systems and data integrity. Required skills include incident response, SIEM management and threat intelligence analysis.

      The ideal candidate for this position is a proven thought leader, problem solver and integrator of people and processes, as well as an effective global internal consultant. The Intermediate Security Operations Analyst must possess solid domain competencies in a number of IT-security-related disciplines, including risk, business continuity management, privacy and compliance.

      This position is ideal for you if you like a fast paced work environment. We offer Hybrid working arrangements and competitive salary and benefits.

      For this position, the expected salary range is between $90,000 - $110,000 annually. This range reflects our commitment to providing competitive compensation that aligns with industry standards and your qualifications.
      Please note that the actual salary offer will be based on a candidate’s experience, qualifications, and fit for the role. We are dedicated to fostering an inclusive and equitable work environment, and this salary range is designed to support that commitment.

      Job Description:

      • Incident response including reviewing logs, and collaborating to prevent/isolate traffic, solution development and threat analysis
      • SIEM alert management including identifying log parsing errors, advising on remediation activities, review/action of alerts and collaborate on alert optimization
      • Email hygiene and anti-virus management including investigate/respond to alerts, system monitoring and contributing towards continuous improvements and upgrades
      • Firewall policy management including annual policy review, reviewing and approving planned and ad-hoc policy rules changes, review and approve IPS policy rules and onboarding new firewalls
      • Vulnerability management including asset scans and mapping
      • Governance policy compliance including validating policy compliance, contributing towards team budget development and management, security awareness training
      • Providing insight to incident management, and continuous improvement to procedures and policies.

      Knowledge:

      • Basic knowledge of a broad range of standards and frameworks — for example, International Standards Organization (ISO) 27001, IT Infrastructure Library (ITIL), Payment Card Industry - Data Security Standard (PCI DSS), Bill-198, Personal Information Protection and Electronics Documents Act (PIPEDA)
      • Knowledge of common risk management methodologies — for example, Control Objectives for Information and Related Technology (COBIT5)
      • Understanding of strategic business risks
      • Ability to develop a comprehensive understanding of Finning’s business, market and industry and relate that knowledge to identified operations- and IT-related risks
      • Knowledge necessary to propose relevant IT responses to changing business risks and regulatory changes
      • Knowledge and use of User and entity behavior analytics (UEBA)
      • Experience with social engineering, penetration testing, vulnerability risk assessments, cloud computing

      Specific Skills:

      • Proven ability to communicate with people at all levels — from analysts to executives
      • Excellent written and verbal communication skills — including the ability to effectively communicate security- and risk-related concepts to technical and nontechnical audiences — and strong interpersonal and collaborative skills
      • Strong skills as a negotiator, to facilitate commitment to, and sign-off on and document appropriate levels of residual risk
      • High level of personal integrity, with the ability to handle confidential and otherwise sensitive matters professionally and with the appropriate level of judgment and maturity
      • High degree of initiative, dependability and ability to work with little supervision
      • Ability to establish and maintain harmonious working relationships with co-workers, staff and external contacts in all locations, and to work effectively in a professional team environment.
      • Spanish is an asset, not mandatory
      • Awareness of Identity and access management (IAM) solutions
      • Participation in configuration of endpoint protection technologies and techniques, Web application firewalls and intrusion prevention, and encryption methodologies
      • Knowledge of access control methodologies (MAC, DAC, RBAC)
      • Working experience with firewall monitoring, content filtering, IDS/IPS systems, SIEM tools and network scanners, and cyber security techniques
      • Experience working with a variety of firewalls including trouble-shooting, log review and configuration
      • Experience with onboarding security requirements for new Projects

      Qualifications:

      • 3-5 years of experience in Incidence Response
      • 3-5 years of experience in Vulnerability management
      • 3-5 years of threat hunting experience

      ** This position requires you to support the team with rotational after hours on-call support

      At Finning, we prioritize creating a diverse and inclusive environment. We are proud to be an equal opportunity employer, and we actively encourage all individuals to express themselves and achieve their full potential. As a company, we continuously strive to enhance our outreach to individuals of all backgrounds and identities. We do not discriminate against applicants based on gender identity, race, national and ethnic origin, religion, age, sexual orientation, marital and family status, and/or mental or physical disabilities. Furthermore, Finning is committed to collaborating with and providing reasonable accommodations /adjustments to individuals with disabilities. If you require an adjustment/accommodation at any point during the recruitment process, please inform your recruiter.

  • About the company

      Finning is your local dealer for Cat equipment, machines, power systems, and technology solutions. Select a location to learn about products and services in your country.

Notice

Talentify is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.

Talentify provides reasonable accommodations to qualified applicants with disabilities, including disabled veterans. Request assistance at accessibility@talentify.io or 407-000-0000.

Federal law requires every new hire to complete Form I-9 and present proof of identity and U.S. work eligibility.

An Automated Employment Decision Tool (AEDT) will score your job-related skills and responses. Bias-audit & data-use details: www.talentify.io/bias-audit-report. NYC applicants may request an alternative process or accommodation at aedt@talentify.io or 407-000-0000.

Other job opportunities

business operations manager job remote
customer success operations remote jobs
operations managers remote
remote operations manager jobs
remote senior security compliance analyst
More information about Finning Canada