About the Company:
As the founding entity of RAINBOW PARTNERS, Quanteam is a consulting firm specializing in Banking, Finance, and Financial Services. Guided by our core values of closeness, teamwork, diversity, and excellence, our team of 1,000 expert consultants, representing 35 different nationalities, collaborates across 10 international offices: Paris, Lyon, New York, Montreal, London, Brussels, Geneva, Lisbon, Porto and Casablanca.
Role Overview:
The Level II Cybersecurity Analyst provides expertise within a 24x7 Security Operations Center (SOC), focusing on detecting, preventing, and responding to threats targeting essential systems. The role is centered on managing and reporting security incidents and contributing to protecting critical infrastructure. This position also supports the implementation of cybersecurity strategies and collaborates with internal and external partners as needed.
Responsibilities include real-time monitoring, analysis, and resolution of security incidents, along with improving the SOC’s ability to identify and address potential risks.
Key Responsibilities:
The responsibilities of this role include, but are not limited to:
- Monitor various sources of potential security events, health alerts, and information requests using predefined monitoring tools. This includes real-time channels, periodic reports, email inboxes, helpdesks or ticketing systems, phone calls, and chat sessions.
- Follow standard procedures to assess and validate potential security incidents, determining necessary actions.
- Escalate identified issues to higher-level team members and implement appropriate countermeasures. Suggest improvements to operational processes where necessary.
- Accurately document incident-related information in the case management system.
- Stay informed on the organization’s technical architecture, existing vulnerabilities, security monitoring tools, emerging threats, and recent incidents.
- Contribute to ongoing process improvements by addressing knowledge gaps (e.g., analysis methods, network models), tuning out false positives, and recommending updates to tools, scripts, or procedures.
- Participate in peer reviews and collaborate with other team members on security incidents.
- Act as a subject matter expert in a specific area of security (e.g., malware, scripting).
- Seek out continuous learning opportunities and work toward progressing to a more senior analyst role.
- Provide status updates and contribute to reporting metrics for the team.
- Support shift work as part of a 24/7 coverage schedule, as required.
- Adhere to all internal security policies and guidelines.
- Assist with project work as needed.
Required Qualifications and Skills:
- Familiarity or 1-2 years of experience with security technologies such as SIEM, IDS/IPS, ELK stacks, firewalls, and data protection tools.
- Hands-on experience with antivirus solutions, endpoint detection systems (EDR), and content filtering solutions.
- Solid knowledge of incident response, log analysis, and packet capture (PCAP) analysis.
- Understanding of network protocols and concepts (e.g., OSI model, TCP/IP, DNS, HTTP, SMTP).
- Good grasp of typical attack vectors and techniques, including phishing, port scans, web-based attacks, DDoS, and lateral movement.
- Experience with Windows and/or Linux operating systems, with an understanding of how to detect signs of compromise.
- A passion for learning and contributing to team development.
Competencies
- Basic scripting skills are advantageous.
- Ability to investigate alerts and document findings in a way that both technical and non-technical audiences can understand.
- Awareness of the broader roles within security teams (e.g., Forensics, Threat Intelligence, Penetration Testing, Vulnerability Management).
- Ability to manage competing priorities, high workloads, and simultaneous tasks.
- Strong analytical and communication abilities.
Position Details and Requirements:
- 50% remote work; residence in Montreal required
- Night Shift position
- Fluency in English or French (both is a real plus)
- Full-time permanent position & Freelance position
