At ATCO we are challenging the status quo and aspiring to make a positive impact on the world. With our commitment to accelerating the energy transition, we’ve become a meaningful player in the future of sustainable energy. While the rest of the industry is thinking, we are executing and bringing ideas and solutions to life. ATCO has a strong entrepreneurial history and a global network that enables us to innovate, overcome challenges, and create something transformative in the energy transition space. Be on the industry leading edge with us and help shape our world for years to come.
The Cybersecurity Platforms Analyst is responsible for the configuration, management, and maintenance of various security platforms within ATCO’s environment. These platforms include Security Information and Event Management (SIEM) systems, Endpoint Detection and Response (EDR) solutions, firewalls, intrusion detection/prevention systems (IDS/IPS), Cloud Platforms, MDM, Vulnerability and other security infrastructure tools. Reporting to the Director, Cybersecurity Operations.
This role ensures that these platforms are effectively protecting the organization's IT assets, enabling accurate detection of security threats, and facilitating timely response to security incidents. You will collaborate with other ATCO and security teams and Business Units to optimize platform performance and functionality.
Always there. Anywhere. That’s us! A team committed to delivering inspired solutions for a better world. We care for our communities and each other, and we are committed to showing up for those who need us. We value and encourage diversity, and we have the courage to do the right thing, even when it’s hard.
What Else You Get To Do
- Configure, deploy, and integrate security platforms (e.g., SIEM, EDR, firewall, IDS/IPS, MDM, Cloud Platforms) into the organization’s environment. Ensure platforms are correctly configured to meet organizational security and compliance requirements. Assist with the deployment and configuration of security policies within security tools and platforms
- Continuously monitor security platforms to ensure their proper functioning, uptime, and efficiency. Track security events, alerts, and logs generated by security platforms, ensuring accurate data collection. Triage and respond to platform alerts, diagnosing issues or misconfigurations that could lead to performance degradation or missed security events
- Manage and configure SIEM platforms (e.g., Splunk, QRadar, ArcSight) to ensure proper collection, correlation, and analysis of security event data. Tune SIEM systems to reduce false positives and increase detection accuracy for security incidents. Create custom detection rules and alerts in SIEM systems based on emerging threats and attack techniques
- Administer and configure Endpoint Detection and Response (EDR) solutions. Ensure EDR platforms are regularly updated and that endpoint security policies are enforced across the organization. Ensure EDR tools are tuned and effective within the environment
- Regularly review the performance of security platforms and recommend improvements or optimizations. Work closely with vendors and internal teams to fine-tune platform settings for better security outcomes. Perform routine updates, patches, and upgrades to security platforms to ensure they are running the latest versions and are secure from known vulnerabilities
- Integrate security platforms with other tools and systems (e.g., vulnerability management systems, threat intelligence platforms, incident response tools). Develop and implement automated workflows for threat detection, response, and reporting using platform features or scripting (e.g., using APIs or custom scripts)
- Gather data and provide regular reporting to Management reflecting uptime, effectiveness and security threat posture analytics
- Represent Cybersecurity interest as part of the Change Management Process and Change Advisory Board. Review proposed changes and provide approval or denial from a cybersecurity perspective to ensure best cybersecurity practices are being adhered to.
Who You Are:
- Bachelor’s degree in Cybersecurity, Information Technology, or related field, or equivalent work experience
- 4-6 years of experience in a Security Platform Administrator role or an IT Administrator role
- Extensive experience with the configuration, deployment, and management of security platforms, including SIEMs, EDR solutions, firewalls, IDS/IPS systems, and other security monitoring tools such as Cloud Platforms, MDM, Vulnerability
- Excellent problem-solving skills to address and resolve issues related to platform performance, misconfigurations, and integration. Ability to diagnose and correct issues with platform integrations, connectivity, and functionality
- Experience with scripting languages (e.g., Python, PowerShell, Bash) for automating platform tasks, integrations, and workflows. Knowledge of platform APIs for integrating various security tools and platforms
- Solid understanding of cybersecurity concepts, including threat detection, incident response, malware analysis, and attack vectors. Familiarity with common attack techniques and how they can be detected or mitigated using security platforms
- Ability to interact effectively with vendors for troubleshooting and platform support. Strong written and verbal communication skills for documentation, reporting, and cross-team collaboration
- Requires the ability to fulfill on call duties and ensure impacting and priority incidents are resolved in a timely manner including weekends, holidays and nights.
- Some Certifications are an asset:
- Certified Information Systems Security Professional (CISSP)
- Certified Ethical Hacker (CEH)
- CompTIA Security+
- GIAC Security Essentials (GSEC)
- Certified Cloud Security Professional (CCSP) (for cloud-related platform management)
- Certified SIEM Administrator (specific to SIEM platforms like Sentinel, Splunk, QRadar.)
- Certified Vulnerability Assessor (CVA)
What We Offer: - A culture based on caring, integrity, agility, collaboration, and striving for excellence
- Competitive compensation
- Flex benefits
- Tuition assistance program
- Training and mentorship programs
- Charitable donation matching
We would like to thank everyone for their application; however, only those being considered for an interview will be contacted. Successful candidates may be required to complete a criminal background check and others screening as needed for the position.
Canadian Utilities is part of ATCO Ltd. ATCO delivers inspired solutions for a better world. We are a diversified global corporation with investments in the essential services of Structures & Logistics, Utilities, Energy Infrastructure, Retail Energy, Transportation and Commercial Real Estate. Learn more about how we build communities, energize industries and deliver customer-focused solutions like no other company in the world at www.atco.com.
At ATCO, we support a diverse and inclusive environment that values the contributions and perspectives of everyone on the ATCO team. We believe the ATCO team is the foundation of our business and our most valuable asset across our global operations. Without each team members’ unique skills, strengths, and knowledge, we simply wouldn’t be able to achieve our fundamental vision of delivering life’s essential services to our customers around the world.
ATCO is an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.
, Valero, Teresa (Teresa), >
