Information Security Analyst - Remote/Hybrid - CISSP
Location: Vancouver
Central 1 cooperatively empowers credit unions and other financial institutions to deliver banking choice to Canadians. Central 1 provides critical services at scale to enable a thriving credit union system. We do this by collaborating with our clients, developing strategies, products and services to support the financial well-being of their more than 5 million diverse customers in communities across Canada. For more information, visit www.central1.com.
What we offer:
- Work-life flexibility
- Hybrid work environment
- One time allowance to set up your office for remote first employees
- Variable annual incentive plan
- Generous annual vacation allotment
- Top-notch flexible benefits plan
- Retirement Plan, matched contributions at 6%
- Access to a learning platform and educational assistance support
- Career development opportunities
- Wellness Flex Fund to support personal interest and activities
- Day off to volunteer in your community and other paid time off options
- Corporate discounts
*subject to employment agreement
Central 1 Is committed to diversity, equity, and inclusion through maintaining curiosity, collaboration, and courage which are our core values.
Job Summary:
As an experienced Information Security professional, you're someone who proactively solves problems, exploring and testing options and ideas when presented with a challenge. In this role, you'll not only handle the day-to-day operational incidents for security but work on projects aligned to our multiyear, multimillion-dollar cyber maturity program. We'll also need you to be keen on automating repeatable tasks, process improvement and knowledge, and continuous learning.
You're passionate about security and eager to continue to learn.
What you'll be doing:
- Assist the operations team in defining current baselines for the secure configuration of all devices (e.g., servers, workstations, network devices).
- Maintain operational configurations of all security solutions as per the established baselines.
- Review logs and reports of all installed devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.). Interpret the implications of that activity and devise plans for appropriate resolution.
- Participate in investigations into problematic activity.
- Participate in the design and execution of vulnerability assessments, penetration tests, and information security audits.
- Participate in the planning and design of enterprise security architecture, under the direction of the Manager, Information Security.
- Participate in creating enterprise security documents (policies, standards, baselines, guidelines, and procedures) under the direction of Manager, Information Security, where appropriate.
- Provide oversight and contribute to the design and deployment of application solutions within Central 1 to ensure they follow industry-standard best practices.
- Maintain up-to-date detailed knowledge of the information security industry, including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
- Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.
What you'll have:
- Typically, you have a University degree and 5 years information technology-related work experience, ideally with 3+ spent working in a security function.
- One or more of the following certifications are preferred:
- (ISC)2 - CISSP, CCSP
- GIAC - GSEC, GCIH, GCIA, GCFE, GWAPT or GPEE
- Automation mindset.
- Experience with deploying and securing Cloud deployments including PAAS, IAAS, and SAAS.
- Experience with Incident handling.
- Working understanding of OWASP Top 10 and SANS Top 25.
- Working technical knowledge of Splunk Enterprise and Enterprise Security.
- Strong understanding of IP, TCP/IP, and other common network protocols.
- Familiarity with ITIL, incident management, and ISO 27001.
- Experience with two or more scripting languages: Python, Ruby, Go, Perl and PowerShell.
#LI-Remote
#LI-Hybrid
Central 1 is an equal opportunity employer and committed to building an inclusive workforce by creating an environment where everyone feels like they belong and has the opportunity to be successful. We welcome of all applicants to join our diverse workforce and we will provide an accessible candidate experience including, but not limited to accommodations to interview sites and alternate formats upon request to our Recruitment team.
Job Types: Full-time, Permanent
Salary: $61,230.00-$100,000.00 per year
Additional pay:
Benefits:
- Casual dress
- Company events
- Dental care
- Extended health care
- Flexible schedule
- Flextime
- Paid time off
- RRSP match
- Tuition reimbursement
- Vision care
- Wellness program
- Work from home
Schedule:
COVID-19 considerations:
Hand sanitizers, masks, stay home when sick, work from home
Expected start date: 2022-06-20