The AIR MILES Reward Program is one of Canada’s most recognized loyalty programs, with over 10 million active collector accounts, representing more than half of all Canadian households. AIR MILES collectors earn Reward Miles at more than 300 leading Canadian, global and online brands and at thousands of retail and service locations across the country. AIR MILES is a wholly-owned subsidiary of the Bank of Montreal (BMO). BMO is Canada’s oldest bank and the 8th largest in North America with more than 12 million customers globally.
Position Overview:
We are seeking an experienced IT Security Analyst to join our Security Operations team. This role operates in a fast‑paced environment where responsibilities such as vulnerability management, SIEM monitoring, incident response, security awareness activities, and metrics reporting may occur simultaneously—often alongside troubleshooting and internal consulting.
In addition to detecting and responding to security threats across the organization’s digital infrastructure, the Security Analyst will be expected to demonstrate strong expertise in vulnerability management, system hardening, endpoint security, and cybersecurity incident response. The ideal candidate will bring a proven track record in these areas, supported by relevant industry-recognized certifications.
Key Responsibilities:
- Vulnerability and Configuration Management: ongoing operations to conduct regular vulnerability scans, assess risks, and advise on remediation efforts to minimize exposure to cyber threats, and adherence to remediation timelines.
- Monitor, Detect, and Respond to Security Threats: Utilize Security Information and Event Management (SIEM) tools to identify, correlate and escalate potential security incidents.
- Endpoint and Email Security: Manage and enhance endpoint protection solutions and email security protocols to safeguard against malware, phishing, and other cyberattacks.
- Incident Response: Act as a key member of the incident response team, coordinating with IT and business stakeholders to investigate, contain, and remediate security incidents. This may involve on-call 24/7 pager rotation with other team members.
- Security Documentation and Metrics Reporting: Maintain detailed playbooks, incident reports, and security documentation. Collect data and generate regular reports on security metrics and threat trends for senior management.
- Collaboration and Training: Work closely with IT, infrastructure, and compliance teams to enforce security policies and support user awareness training initiative.
- Continuous Improvement: Recommend and implement improvements to security processes, tools, and procedures based on emerging threats and best practices.
- Compliance and Audits: Assist with compliance audits, risk assessments, and ensure adherence to internal policies and external regulations.
Qualifications:
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Proven experience in security operations, vulnerability management, endpoint security, and incident response.
- Technical Skills: Proficiency with cloud-based vulnerability scan tools, SIEM(s), endpoint protection platforms, email security solutions, and incident response frameworks.
- Analytical and Communication Skills: Strong analytical abilities, attention to detail, and excellent written and verbal communication skills.
- Teamwork: Ability to work collaboratively in a fast-paced environment and communicate effectively with technical and non-technical stakeholders.
- Recognized professional certifications such as GIAC Incident Handler (GCIH), Certified Ethical Hacker (CEH or CEH-Practical). Vendor-based and relevant cloud certifications from major public cloud providers (e.g., AWS, GCP, Azure) are highly desirable.
Salary:
$67,200.00 - $124,200.00
Pay Type:
Salaried
The above represents BMO Financial Group’s pay range and type.
Salaries will vary based on factors such as location, skills, experience, education, and qualifications for the role, and may include a commission structure. Salaries for part-time roles will be pro-rated based on number of hours regularly worked. For commission roles, the salary listed above represents BMO Financial Group’s expected target for the first year in this position.
BMO Financial Group’s total compensation package will vary based on the pay type of the position and may include performance-based incentives, discretionary bonuses, as well as other perks and rewards. BMO also offers health insurance, tuition reimbursement, accident and life insurance, and retirement savings plans. To view more details of our benefits, please visit: https://jobs.bmo.com/global/en/Total-Rewards
About Us
At BMO we are driven by a shared Purpose: Boldly Grow the Good in business and life. It calls on us to create lasting, positive change for our customers, our communities and our people. By working together, innovating and pushing boundaries, we transform lives and businesses, and power economic growth around the world.
As a member of the BMO team you are valued, respected and heard, and you have more ways to grow and make an impact. We strive to help you make an impact from day one – for yourself and our customers. We’ll support you with the tools and resources you need to reach new milestones, as you help our customers reach theirs. From in-depth training and coaching, to manager support and network-building opportunities, we’ll help you gain valuable experience, and broaden your skillset.
To find out more visit us at https://jobs.bmo.com/ca/en
BMO is committed to an inclusive, equitable and accessible workplace. By learning from each other’s differences, we gain strength through our people and our perspectives. Accommodations are available on request for candidates taking part in all aspects of the selection process. To request accommodation, please contact your recruiter.
Note to Recruiters: BMO does not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to BMO, directly or indirectly, will be considered BMO property. BMO will not pay a fee for any placement resulting from the receipt of an unsolicited resume. A recruiting agency must first have a valid, written and fully executed agency agreement contract for service to submit resumes.
