Cyber Security Analyst

SRG Security Resource Group Inc is a leading physical and cyber security company based in Regina, Saskatchewan, dedicated to securing people, assets, and information using innovative and cost-effective solutions. Our team of experts deliver comprehensive cyber security services to clients in a variety of industries, including healthcare, finance, education, and government.

SRG is seeking an Cyber Security Analyst to join our team to grow with us as we grow. 

The kind of experience this client will provide is second to none in the industry for the successful candidate.

Responsibilities

This is a full-time role for an Cyber Security Analyst. This role will be responsible for providing crucial knowledge and experience with investigation, forensic analysis, documentation, and decision making with security event alerting and incident management in providing cyber security services solutions to protect our clients' information, networks, applications, and systems.

This is an important role, on a very dynamic team, with a company that is an industry leader in Cyber Security. SRG uses some of the most advanced technology and tools in Cyber Security, allowing our team members to accomplish the required outcomes with little time wasted chasing the data and information along the way.

What are some of the tasks that will make up your contribution to this team?

• Review security events that are populated in a Security Information and Event Management (SIEM) system and remediate accordingly.
• Investigate and perform in-depth analysis of exploits and recommend remediation.
• Conduct proactive threat hunting.
• Utilize a variety of cloud-based and on-premises security tools and techniques to proactively analyze suspicious events, network anomalies and other potential threats to determine validity, impact, scope and recovery options.
• Provide expertise to support timely and effective decision making of when to declare a cyber security incident. Provide information regarding intrusion events, security incidents, and other threat indications and warning information to the client.
• Document all activities during an incident and provide leadership with status updates during the life cycle of the incident.
• Use automated malware analysis tools to determine threat impact and take actions appropriately.
• Support and administration of security tools and platforms in diverse, cloud-based and on-premises environments.
• Configuring and monitoring Security Information and Event Management (SIEM) platform for security alerts. 

Qualifications

·        Post secondary degree or diploma or relevant work experience.

·        Five or more years of work experience in cyber security.

·        Working knowledge of the Mitre Att&ck Framework

·        Experience in an Operations Center (SOC/NOC) monitoring environment.

·        Experience working with SIEM technologies specifically Splunk Azure Sentinel, with a Managed Security Service Provider (MSSP).

·        Demonstrable knowledge of threats, attacks, logs, operating systems and security technology (firewalls, anti-malware, proxies, etc.) 

·        Knowledge and understanding of cyber risks and security issues in cloud-based and on-premises environments.