Security Consultant - Incident Response Team

Join our team and what we'll accomplish together

As a member of the TELUS Security Incident Response Team (TSIRT) within the Chief Security Office you will be part of a growing, national team focusing on digital forensics and incident response. First ‘on the scene’ you will communicate effectively with technical teams and impacted business partners to resolve cybersecurity incidents in a timely manner. 

Partner with team members to proactively detect and respond to cybersecurity incidents across a wide array of technologies to mitigate and contain threats, coordinate remediation efforts, and provide forensic analysis support. Adhere to operational TSIRT processes and procedures leveraging relationships with numerous operations teams, tools and systems and record incident findings. Help support ongoing security investigations, including participation in chain of custody for evidence that potentially leads to disciplinary or criminal prosecution. 

If constant growth and learning all while getting your hands on the newest technologies in fast-paced, complex environments sounds exciting, this could be just the role for you!

What you’ll do 

• Lead the response to cybersecurity incidents by utilizing your knowledge of the latest threats and coordinating response activities effectively to reduce the cost and impact of incidents
• Perform digital forensic investigations across all major technology platforms 
• Prime a culture of continuous improvement by developing and automating incident response playbooks and digital forensic standard operating procedures
• Collaborate with internal stakeholders, showcasing your integrity, ethics and willingness to provide feedback in sometimes challenging situations
• Showcase your ability to communicate efficiently, manage your time, make use of your analytics and organizational skills all while juggling multiple activities concurrently and with minimal supervision

What you bring

• You are the go-to person for security incident response and digital forensics, using your vast experience to follow best practices and innovate when needed to produce positive outcomes
• You are a cloud technology savant, familiar with AWS, Azure and GCP cloud computing environments
• You are sought out for your log and data analysis experience using BigQuery, Splunk SPL or Lucene
• You are known for your scripting/programming skills in at least one/ideally multiple environments and languages 
• You are a cybersecurity source of knowledge keeping up-to-date on the latest attack techniques, counter measures, malware and threat actor profiles
• You are available to be on call for after-hours support for one week per month
• You hold a University degree in Computer Science, Engineering or similar disciplines
• You bring at least 4+ years of hands-on incident response working experience

Great-to-Haves

• Fluent bilingualism in both French and English
• Role-specific certifications, such as GCIA, GCIH, GCFE or GCFA
• General security certifications such as CISSP or CISM