Cyber Security Analyst
Company Description
01 Millennium Consulting is a trusted IT services partner with over two decades of experience serving large organizations. Based in Toronto, Canada, we have an extensive network of clients across the country. We are committed to diversity and inclusion, actively hiring senior IT professionals, as well as recent immigrants, students, women, Indigenous peoples, and minorities, to foster a diverse and thriving workplace.
Security Analyst
Contract: Up to six (6) months with a possibility to extend.
The Security Analyst will support in the implementation and operation of security controls and monitoring services. The Security Analyst may also develop security policies or technical standards, conduct technical reviews, security risk and vulnerability assessments, and participate in security investigations and incident response activities with extensive experience related to Cyber Security and generally accepted industry standards.
Responsibilities:
- Develop security policies, standards, guidelines or procedures
- Conduct security risk assessments
- Develop and maintain technical solutions to help mitigate security vulnerabilities
- Support the activities that provide security monitoring and incident response services
- Perform technical security assessments and design reviews
- Support the activities that provide security monitoring and incident response services
- Perform technical forensic investigations
- Generate forensic and incident reports
- Other duties as assigned
Qualifications/Experience:
- Knowledge of current Cyber Security practices
- Experience conducting risk assessments for a Canadian financial institution within the last twelve (12) months
- Experience providing advisory services to all levels of an organization up to senior business and Information Technology leaders
- Experienced in Information Communication and technology policies, standards, guidelines or procedures development
- Experience with ISO/IEC 27000 family of security control framework within the last three (3) years
- Familiarity with provincial privacy legislations and federal privacy legislation
- Must have completed at least two (2) Risk Assessments within the last twelve (12) months using the Government of Canada’s HTRA methodology
- Experience with the cyber-security assessment methodology within the last three (3) years
- Experience implementing and supporting QRadar for SIEM or log management within the last three (3) years
- Experience deploying and supporting Venafi for digital certificate lifecycle management within the last five (5) years
- Comprehensive knowledge of multiple OS platforms with an emphasis on Windows Server and Linux
- In-depth knowledge of enterprise network services and protocols (TCP/IP, DNS, SMTP, Active Directory, HTTP)
- Understanding of digital evidence gathering as it pertains to various investigation scenarios
- Experience with various open source and commercial forensic tools that support both desktop, tablet and mobile devices
- Familiarity with information architecture and controls
- Excellent analytical skills
- Excellent technical and non-technical communication skills
- Comfortable driving components of complex projects independently