The AIR MILES Reward Program is one of Canada’s most recognized loyalty programs, with over 10 million active collector accounts, representing more than half of all Canadian households. AIR MILES collectors earn Reward Miles at more than 300 leading Canadian, global and online brands and at thousands of retail and service locations across the country. AIR MILES is a wholly-owned subsidiary of the Bank of Montreal (BMO). BMO is Canada’s oldest bank and the 8th largest in North America with more than 12 million customers globally.
Position Overview:
This is a hybrid role based in Toronto.
AIR MILES is seeking an experienced Security Analyst to join our Security Operations team. The successful candidate will be responsible for SIEM monitoring, detecting, and responding to security threats across our organization’s digital infrastructure. This role requires a strong background in vulnerability management, endpoint security, and cybersecurity incident response. The ideal candidate will have a proven track record in these domains, supported by recognized industry certifications.
Key Responsibilities:
- Vulnerability and Configuration Management: ongoing operations to conduct regular vulnerability scans, assess risks, and advise on remediation efforts to minimize exposure to cyber threats.
- Monitor, Detect, and Respond to Security Threats: Utilize Security Information and Event Management (SIEM) tools to identify and escalate potential security incidents.
- Endpoint and Email Security: Manage and enhance endpoint protection solutions and email security protocols to safeguard against malware, phishing, and other cyberattacks.
- Incident Response: Act as a key member of the incident response team, coordinating with IT and security stakeholders to investigate, contain, and remediate security incidents.
- Security Documentation and Metrics Reporting: Maintain detailed audit trails, incident reports, and security documentation. Collect and generate regular reports on security metrics and threat trends for senior management.
- Collaboration and Training: Work closely with IT, infrastructure, and compliance teams to enforce security policies and support user awareness training initiative.
- Continuous Improvement: Recommend and implement improvements to security processes, tools, and procedures based on emerging threats and best practices.
- Compliance and Audits: Assist with compliance audits, risk assessments, and ensure adherence to internal policies and external regulations.
Qualifications:
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Proven experience in security operations, vulnerability management, endpoint security, and incident response.
- Technical Skills: Proficiency with cloud-based vulnerability scan tools, SIEM(s), endpoint protection platforms, email security solutions, and incident response frameworks.
- Analytical and Communication Skills: Strong analytical abilities, attention to detail, and excellent written and verbal communication skills.
- Teamwork: Ability to work collaboratively in a fast-paced environment and communicate effectively with technical and non-technical stakeholders.
- Recognized professional certifications such as GIAC Incident Handler (GCIH), Certified Ethical Hacker (CEH or CEH-Practical) or relevant cloud certifications from major public cloud providers (e.g., AWS, GCP, Azure) are highly desirable.
