Security Operations Specialist

at  Queens University

Security Operations Specialist
About Queen’s University
Queen’s University is the Canadian research intensive university with a transformative student learning experience. Here the employment experience is as diverse as it is interesting. We have opportunities in multiple areas of globally recognized research, faculty administration, engineering & construction, athletics & recreation, power generation, corporate shared services, and many more.
We are committed to employment equity and diversity in the workplace and welcome applications from individuals from equity seeking groups such as women, racialized/visible minorities, Indigenous/Aboriginal peoples, persons with a disability, persons who identify in the LGBTQ+ community and others who reflect the diversity of Canadian society.
Come work with us!
Job Summary
Reporting to the Chief Information Officer (CIO), the Security Operations Specialist plays a key role in the planning, design, and delivery of ongoing cybersecurity operations within Canadian Cancer Trials Group (CCTG). Working within the systems team, the Specialist will work to minimize risks against internal and external threats by assisting in the cybersecurity solution design, implementation, testing, maintenance, active monitoring, reporting, intrusion detection/ prevention, and escalation within the CCTG security architecture to maintain the integrity and/or efficiency of the networks and servers. The Specialist is a subject matter expert in cybersecurity architecture, tools and technologies, and is responsible for project planning and management. The Specialist provides management of intrusion detections and prevention systems for both the network and host-based systems, as well as the security management systems. The Specialist is an excellent problem solver, an excellent communicator and is a demonstrated leader in establishing relationships and communicating with internal and external stakeholders. The Specialist will provide guidance and assistance from various sources to ensure current and future security in architectural design and systems implementation. The Specialist will play a leading role in cybersecurity incident response.
The schedule for this position may require the incumbent to work occasional early mornings, evenings and/or weekends for both scheduled maintenance and upgrades, and in response to urgent security issues.
Job Description

REQUIRED QUALIFICATIONS:

• University Degree in computer science or equivalent combination of education and work experience, with a minimum of 5 years’ experience in a Security Specialist role.
• Professional certifications from bodies such as ComTIA A+, Security+, Network+, SANS GSEC, and/or other information security certifications.
• Experience in information security, ideally in multi-platform environments in three or more of the following areas: web applications, operating system security, cloud computing, desktop applications, networking, DLP, anti-malware, IDS/IPS, penetration & vulnerability testing.
• The ability to read and understand vulnerability bulletins and security event data from many sources.
• Ability to understand and utilize HTTP and similar protocols for analysis and troubleshooting.
• Familiarity with information security best practices.
• Demonstrated technical proficiency in the implementation and maintenance of multi-user Windows and Linux computer systems.
• Experience with analyzing security attacks and exploits.
• Demonstrated knowledge and experience in Unix/Linux OS and scripting and automation, Power shell, and firewall management. Knowledge of VMWare technology, databases, Active Directory, PHP and web stacks on Linux is considered an asset.
• Consideration may be given to an equivalent combination of education and experience.

SPECIAL SKILLS:

• Respects diversity and promotes equity and inclusion in the workplace.
• Demonstrated expertise in Windows / Linux server administration, hardware, networks, and common applications software.
• Advanced analytical and problem-solving skills to assist in finding effective solutions.
• Communications and interpersonal skills to interact with a variety of people with various levels of technological sophistication. Demonstrated client-service approach.
• Highly developed interpersonal skills to deal with both technical and non-technical staff at all levels. The ability to work in groups or as part of a team.
• Ability to keep up and adapt to, a constantly changing technological environment.
• Demonstrated editing and writing skills to prepare documentation.
• Ability to follow formal business practices with high attention to detail.
• Ability to support teaching and training initiatives.

• Oversees the development and maintenance of security measures to protect computer systems, networks and data. Stays up-to-date on the latest intelligence, including hackers’ methodologies, in order to anticipate security breaches. Responsible for preventing data loss and service interruptions by evaluating technologies and recommending the most effective solution to protect a network.
• Employs constant learning of security concepts and practices to proactively identify threats, vulnerabilities, and exploits and utilizing this information, installs, configures and leverages tools, processes and standards to configure, monitor, and audit systems and applications on a regular basis.
• Gains an understanding of CCTG IT structure, as well as Queen’s University as a whole, to establish effective cybersecurity plans.
• Performs configuration of linux, unix and Windows based servers for cybersecurity related software and platforms.
• Oversees network disaster recovery plans. Investigates security violations by applying their understanding of multiple technologies and security threats to provide assistance, guidance, problem resolution and technical support in the on-going protection of the CCTG systems and infrastructure.
• Develops and maintains technology standards and provides technical security leadership which may include input for the design of solutions, security training material, workshops and communication updates.
• Develops migration strategies for both hardware and software. Creates scripts and implements tools to automate and develop a variety of configuration and updating tasks including signature updates, rule changes, and policy updates on security devices, network appliances, servers and endpoints.
• Performs security assessments to ensure compliance with security policies, standards and procedures, and works with the various areas and takes corrective actions on any identified security exposures found.
• Participates in the CCTG Computer Security Incident Response Team as subject matter expert.
• Creates, maintains and publishes security documentation.
• Assists in management of network security such as firewall changes, data encryption and other network security measures.
• Advise and provide expert knowledge and support to other CCTG IT teams and CCTG non-IT staff.
• Other security-related duties and projects as assigned by the manager.
• Ability to work outside of business hours is required.