JOB SUMMARY:

Reporting to the Director, Cybersecurity, the Senior Cybersecurity Analyst is responsible for safeguarding BCNET’s network and infrastructure. This role requires a strong understanding of network protocols and behavioral patterns, as well as the ability to identify and respond to cybersecurity threats.
The successful candidate will collaborate closely with BCNET’s IT and Network Services teams to ensure the security of the management network and related systems. Responsibilities include monitoring security incidents, implementing protective measures, and maintaining documentation through ticketing systems and change management tools.
This position plays a critical role in protecting the organization by utilizing a variety of technologies and best practices to prevent, detect, and manage information security risks.

QUALIFICATIONS & SKILLS:

Required

• Three to five years of relevant experience as a security analyst, systems/network administrator, network security engineer or security operations engineer
• Proficiency in Windows and Linux server administration
• Knowledge of computer networking, TCP/IP, routing and switching, firewalls, VPN
• Command of Python, Bash, and PowerShell scripting
• Experience developing SIEM correlation rules, reports and dashboards to detect emerging threats
• Solid understanding of events, related fields in log records and alerts reported by various data sources such as Windows/Unix systems, IDS/IPS, AV, HIDS/HIPS, WAFs, firewalls and web proxies
• Proficiency in a variety of query languages (SQL, KQL, EQL)
• Experience with virtualization systems like VMware ESXi, KVM or MS Hyper-V
• College diploma or university degree in computer science or related fields or a suitable combination of education, experience, or other relevant training

Desired

• Hands-on experience investigating common types of attacks such as brute-force, phishing, DLP, DDoS and data exfiltration
• Experience with vulnerability and information security risk assessments
• Knowledge of cybersecurity frameworks (NIST, CIS, ISO 27001)
• Knowledge of investigative forensics and analysis of security incidents
• Understanding of regular expressions, development of custom parsers
• Hands-on experience with threat hunting and modeling aligned with MITRE ATT&CK TTPs
• Experience with red and/or purple-teaming activities

Assets

• Cybersecurity certifications from (including but not limited to) ISC2, ISACA, GIAC, OffSec
• Familiarity with ELK stack, Jira, Confluence
• Exposure to automation tools (i.e. Ansible, Puppet, Chef)
• Experience working within the higher education sector

WHO WE ARE

We are a small dynamic team that loves what we do and thrives on our ability to make a difference for our higher education member community in British Columbia. Our diverse team is passionate, collaborative, responsive and entrepreneurial. We share a desire for learning and working together for the greater good of each other and our members. With a flexible work environment, great benefits and the opportunity to develop your skills, you can put your talent to work and reap the rewards.

WHAT WE DO

We are a member-centric services organization that continually engages with our community to provide technology and services that enables excellence in teaching, learning and research. We equip our members with opportunities to work together to learn, explore, evaluate and shape the development of technology, services and procurement solutions that serve their collective interests.

• Working with the Director, Cybersecurity and as a member of the Cybersecurity team, deploy, maintain and upgrade security tooling, including vulnerability management, logging pipelines, SIEM, EDR, SOAR, and automation
• Monitor security infrastructure activity and connectivity, diagnosing and resolving technical problems or gaps
• Be a contributing voice in sourcing and implementation of relevant tools and countermeasures
• Support the development of incident response plans, business continuity and disaster recovery documentation
• Assess server infrastructure vulnerabilities and issues, maintaining technical liaison with vendors and suppliers
• Advise and make recommendations on technical life cycle planning implementation, improving security controls within BCNET infrastructure
• Employing technical expertise, collaborate with all cross-functional departments in developing, maintaining, and communicating solutions with BCNET staff and customers
• Triage, analyze and prioritize security events, alerts and incidents; maintain documentation for both policy and auditable standards
• Work independently to see operational projects to completion; work collaboratively with peers and other team members to meet objectives
• Participate in the development of best practices, standards, processes and procedures across the technical stack
• Maintain appropriate professional designations and up-to-date knowledge of security landscape
• Occasionally required to provide after-hours support on a rotational basis or be available off-hours to aid in incident response, maintenance, or emergency infrastructure activities