Worker Sub-Type:
Regular
Job Description:
BlackBerry® QNX® is a trusted supplier of safe and secure operating systems, hypervisors, frameworks and development tools, and provides expert support and services for building the world’s most critical embedded systems. The company’s technology is trusted in more than 235 million + vehicles and is deployed in embedded systems around the world, across a range of industries including automotive, medical devices, industrial controls, transportation, heavy machinery and robotics.
BlackBerry QNX software and development tools are standards-based and enable companies to adopt a scalable software platform strategy across product lines and business units. The BlackBerry QNX software portfolio, including our safety pre-certified product versions, is purpose built for embedded systems and scales to support everything from single-purpose devices to highly complex, mixed-criticality platforms.
We at BlackBerry QNX are seeking a skilled and detail-oriented Security Operations Analyst to join our Hybrid Security Operations Center. This dynamic role encompasses responsibilities from both the Security Operations Center (SOC) and the Vulnerability Management domains. The ideal candidate will have strong analytical abilities, experience with security tools and technologies and a proactive approach to threat detection, incident response, and vulnerability management.

Responsibilities:

• Monitor security alerts and notifications from various security tools and systems.
• Investigate and respond to security incidents, performing root cause analysis and document findings.
• Conduct real-time analysis of security incidents and escalate as necessary.
• Implement and manage security controls and measures to protect the organization’s assets.
• Maintain and update incident response playbooks and standard operating procedures.
• Collaborate with IT and other departments to ensure timely resolution of security incidents.
• Generate reports on security incidents, trends (KRIs), and SOC performance metrics (KPIs).
• Conduct regular vulnerability assessments and scans across the organizations network, applications, and systems.
• Analyze and interpret scan results prioritize vulnerabilities based on risk and impact.
• Work with IT teams to remediate identified vulnerabilities and provide guidance on best practices.
• Develop and maintain vulnerability management policies, standards, and procedures.
• Stay updated on the latest vulnerabilities, exploits, and security trends
• Scheduled weekly hours will initially follow a standard work week, with regular office hours. This role will eventually require rotating shift work, including nights and weekends. BlackBerry will provide reasonable notice and further details when changes to working hours are required.

Skills & Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or related field; or equivalent work experience.
• 3+ years of experience in a SOC analyst role and/or vulnerability management role.
• Strong knowledge of security incident response processes and methodologies.
• Experience with security information and event management (SIEM) technologies.
• Proficiency with vulnerability assessment tools such as Nessus, Qualys, or Rapid7.
• Familiarity with common security frameworks and standards (e.g., NIST, ISO 27001, CIS).
• Relevant certifications such as CISSP, GIAC, CEH, or CompTIA Security+, or equivalent are preferred.

Additional Assets:

• Ability to work effectively both independently and as part of a team.
• High level of integrity, professionalism, and attention to detail.
• Excellent analytical, problem-solving, and communication skills.

LI-SK2

Scheduled Weekly Hours:
4

• Monitor security alerts and notifications from various security tools and systems.
• Investigate and respond to security incidents, performing root cause analysis and document findings.
• Conduct real-time analysis of security incidents and escalate as necessary.
• Implement and manage security controls and measures to protect the organization’s assets.
• Maintain and update incident response playbooks and standard operating procedures.
• Collaborate with IT and other departments to ensure timely resolution of security incidents.
• Generate reports on security incidents, trends (KRIs), and SOC performance metrics (KPIs).
• Conduct regular vulnerability assessments and scans across the organizations network, applications, and systems.
• Analyze and interpret scan results prioritize vulnerabilities based on risk and impact.
• Work with IT teams to remediate identified vulnerabilities and provide guidance on best practices.
• Develop and maintain vulnerability management policies, standards, and procedures.
• Stay updated on the latest vulnerabilities, exploits, and security trends
• Scheduled weekly hours will initially follow a standard work week, with regular office hours. This role will eventually require rotating shift work, including nights and weekends. BlackBerry will provide reasonable notice and further details when changes to working hours are required