2Keys Corporation is focused on designing, integrating, and operating security solutions for the Public Sector, Financial Institutions, and Commercial Enterprises. We offer high availability Identity and Access Management (IAM) services encompassing user authentication, credentials, and identity attributes.
Team Lead, Security Operations Centre (SOC) Analyst, Tier II
2Keys Corporation is a wholly owned subsidiary of Interac Corporation, providing digital identity and access solutions for over 20 years and currently supports over 40 million users performing four million identity verifications per day.
2Keys Corporation designs, integrates and operates security solutions for the Public Sector, Financial Institutions and Commercial Enterprises. We offer high availability Identity and Access Management (IAM) services encompassing user authentication, credentials, and identity management.
2Keys is currently recruiting for a Team Lead, Security Operations Centre (SOC) Analyst, Tier II. This is an opportunity to join a growing team within a great organization that supports growth and professional development.
Location: Ottawa, ON
What You Will Be Responsible For…
- Training, and day-to-day actions and operations of the SOC team, working closely with the team lead in the opposite location to ensure synchronicity and smooth continuity of operations in both locations.
- Providing performance related feedback for team members to the Senior Manager, SOC for input into the bi-annual evaluations.
- Oversee monitoring activities and conduct security investigations as required;
- Ensure that the SOC pro-actively manages information security risks to reduce the impact of security incidents and system compromise on the infrastructure
- Coordinating incident response to ensure timely incident resolution;
- Performing technical troubleshooting and security analysis of incidents;
- Identifying and performing threat containment and eradication actions;
- Ensure security components are properly configured, tested, and operating in an effective manner
- Maintaining intrusion detection system signatures;
- Performing tuning of SIEM filters and event correlations to ensure continuous monitoring improvements;
- Performing continuous vulnerability management scans (CVMS) of the infrastructure;
- Analyzing and reporting on the findings of the CVMS, determining existing security vulnerabilities and identifying false positives;
- Develop and maintain reporting mechanisms and metrics used to measure SOC related events and activities
- Developing and maintaining effective and efficient SOC standard operating procedures;
- Maintaining awareness of evolving threats, trends, and technologies; and performing knowledge Provide expert analysis of security events, technical analysis of malicious activity, and recommendation of remedial actions
- Provide support, guidance and delegation of work tasks to SOC operators and analysts
- Identify information security risks within the organization or services provided to its clients, and recommend priorities for risk mitigation
- Maintain awareness of evolving threats, trends, exploit techniques, and technologies
- Assist in information security risk assessment activities
- Assist in security investigations, training and awareness exercises
- Other related tasks as required.
Who are you?
Education and Security Clearance
- Graduation with a degree from a post-secondary educational program with specialization in Computer Science, Computer Engineering, Information Security Program; or a related discipline;
OR
- Minimum of one (3) years of practical experience within the last five years, directly related to the functions of this role; and.
- SANS GIAC GCIH / GEVA / GFACT / GDAT, Comptia CPT / CEH / CISM, or other comparable cyber security certification.
- Government of Canada Secret (Level II) or eligible to obtain one
Skills & Requirements
- Strong troubleshooting and analytical skills
- Strong investigative skills and mindset
- Strong leadership and mentorship skills
- Ability to work autonomously with attention to detail
- Ability to communicate effectively and write concisely and clearly
- Demonstrated ability to lead a team
- Willing to work alternative work hours (not shift work)
- Willing to participate in a 24x7x365 on call support rotation
- Demonstrated and strong knowledge in the following areas: security information and event management (SIEM) platforms, intrusion detection system technology, vulnerability assessments, penetration testing tools, exploits, and techniques
- Demonstrated and strong knowledge of security and network devices, both physical and virtual technologies e.g. IDS, Firewalls, VPN, etc.
- Excellent understanding of networking protocols and TCP/IP
- Demonstrated and strong knowledge of information systems hardening i.e. operating systems, network devices, and application security
- Knowledge of incident response methodologies e.g. NIST, SANS
- An inquisitive attitude, strong interpersonal, leadership, and problem-solving skills
- Exhibits a “can do” attitude and a desire to make positives change in the face of adversity
- Extremely high attention to detail
- Experience with tools used in security event analysis, incident response, computer forensics, malware analysis, and other areas of security operations
- Knowledge of security and network devices, both physical and virtual technologies such as IDS, Firewalls, VPN, etc.
- Understanding of networking and TCP/IP
- Knowledge of information systems hardening - operating systems, network devices
- Knowledge of ITIL
2Keys Recruitment Process and Accommodations
2Keys Corporation thanks all applicants; however, only those selected for an interview will be contacted.
2Keys is an inclusive workplace. We are committed to supporting accessibility, diversity and equal opportunity. Requests for accommodation can be made at any stage of the recruitment process providing the applicant has met the requirements for the position. Applicants need to make their accommodation requirements known when contacted.
2Keys Recruitment Process and Accommodations
2Keys Corporation thanks all applicants; however, only those selected for an interview will be contacted.
2Keys is an inclusive workplace. We are committed to supporting accessibility, diversity and equal opportunity. Requests for accommodation can be made at any stage of the recruitment process providing the applicant has met the requirements for the position. Applicants need to make their accommodation requirements known when contacted.
