Security Analyst

at  Town of Oakville

QUALIFICATIONS:

• College diploma or university degree in Computer Science, Computer Engineering, Information Technology or in a related discipline(s), or an equivalent of two years of experience in an IT security role.
• 2+ years of experience in an IT Security role with practical exposure to real-world scenarios and to various environments and software solutions.
• IT Security Certifications like CompTIA Security+, ISC2 or other security-related certifications would be an asset.
• Experience with various operating systems, network security devices, monitoring, and protocols.
• Experience with supporting, patching and remediation in response to security flaws.
• Must possess a basic understanding of security concepts, including malware, encryption, and phishing, with a strong awareness of common threats and defense mechanisms. An understanding of cloud security is considered a plus.
• Must be familiar with security tools, such as security incident and event management (SIEM), anti-virus, firewalls, etc., with a strong understanding of their role in safeguarding against potential threats.
• Basic knowledge in project management.
• Strong analytical and troubleshooting skills.
• Strong communication, collaboration and consulting skills with the ability to foster positive working relationships.
• Ability to convey technical information in a clear and understandable manner.
• Familiarity with security frameworks and networks, cybersecurity awareness including cloud and application security.
• Must remain up-to-date with evolving threats and technologies combined with an adaptability to respond appropriately.
• Please note that successful candidates, who are new hires and/or who have not performed in this position previously will be required to provide a satisfactory criminal record check dated within the last 30 days as a condition of employment.

• Provide technical assistance to the team: supporting, training, and providing guidance on basic to moderate technical issues.
• Perform basic troubleshooting such as analyzing system, firewall or security device/application logs and working closely with internal ITS teams or vendors.
• Contribute to the collaboration with other technical groups (internal and external) to establish and support applications and services running on the corporate network.
• Review and maintain accurate and up-to-date documentation of systems, processes, and procedures to aid in troubleshooting and support activities.
• Responsible for and assists with incident response, security events, incident monitoring activities and service request activities to ensure response within established timelines. This involves establishing monitoring schedules, reviewing alerts, and identifying potential incidents.
• Execution of non-standard service requests related to ITS assets and related technologies including investigation, analysis, and planning.
• Build and maintain relationships with business stakeholders and managed services providers; understanding needs, requirements, and desired outcomes related to technology solutions.
• Serve as a point of contact for the ITS intake process including pre-consultation discussions to help guide business stakeholders through the ITS intake process.
• Identify opportunities to leverage existing assets/technologies and to continuously improve solutions and services.
• Coordinate and provide input into technology aspects of business cases (including costs and effort) to provide value and partner with business stakeholders. This includes leading cross-functional ITS collaboration.
• Facilitate requirements gathering and ensure delivered solutions meet business need, technical requirements and are compliant with ITS standards and best practices.
• Create and maintain technical and non-technical documentation related to solutions such as manuals, specifications, presentations, troubleshooting guides, etc.
• Assist with planning of lifecycle activities (tracking, deployment, maintenance, retirement) related to hardware assets including coordination with other ITS sections and engagement of business groups in planning activities.
• Guide and perform lifecycle activities such as installation of updates, patches, monitoring performance and troubleshooting issues.
• Assist with change enablement processes including ensuring documentation of implementation plans, test plans and coordination between functional teams to understand impacts of change on capacity and availability.
• Participate in cross-functional collaboration of root cause identification and coordination of activities required to address.
• Participate in the planning and scheduling of disaster recovery and business continuity exercises. This includes collaborating with relevant teams to test response plans and ensuring critical systems and data are safeguarded.
• May be required to provide occasional backup for support, provide on-call emergency response on a regular and rotating basis, and work evenings and/or weekends.
• Perform other duties as assigned.