Security Analyst

Posted 4 months ago

Security Analyst

Client: Public Sector

JO: 3012

Term: Up to six (6) months with a possibility to extend.

Project Location: Covid-19 protocol. The contracted resource will be required to work remotely due to the Covid-19 situation but, we may require the resource to work on premises in the future if the pandemic situation changes for better. The resource will be provided with a laptop and will be given remote access.

The Security Analyst will support in the implementation and operation of security controls and monitoring services. The Security Analyst may also develop security policies or technical standards, conduct technical reviews, security risk and vulnerability assessments, and participate in security investigations and incident response activities with extensive experience related to Cyber Security and generally accepted industry standards.


  • Develop security policies, standards, guidelines or procedures
  • Conduct security risk assessments
  • Develop and maintain technical solutions to help mitigate security vulnerabilities
  • Support the activities that provide security monitoring and incident response services
  • Perform technical security assessments and design reviews
  • Support the activities that provide security monitoring and incident response services
  • Perform technical forensic investigations
  • Generate forensic and incident reports
  • Other duties as assigned


  • Knowledge of current Cyber Security practices
  • Experience providing advisory services to all levels of an organization up to senior business and Information Technology leaders
  • Experienced in Information Communication and technology policies, standards, guidelines or procedures development
  • Experience with ISO/IEC 27000 family of security control framework within the last three (3) years
  • Familiarity with provincial privacy legislations and federal privacy legislation
  • Experience within public sector or crown IT organizations
  • Must have completed at least two (2) Risk Assessments within the last twelve (12) months using the Government of Canada’s HTRA methodology
  • Experience with the Federal Office of the Superintendent of Financial Institutions (OSFI) cyber-security assessment methodology within the last three (3) years
  • Experience implementing and supporting QRadar for SIEM or log management within the last three (3) years
  • Experience deploying and supporting Venafi for digital certificate lifecycle management within the last five (5) years
  • Experience conducting risk assessments for a Canadian financial institution within the last twelve (12) months
  • Comprehensive knowledge of multiple OS platforms with an emphasis on Windows Server and Linux
  • In-depth knowledge of enterprise network services and protocols (TCP/IP, DNS, SMTP, Active Directory, HTTP)
  • Understanding of digital evidence gathering as it pertains to various investigation scenarios
  • Experience with various open source and commercial forensic tools that support both desktop, tablet and mobile devices
  • Familiarity with information architecture and controls
  • Excellent analytical skills
  • Excellent technical and non-technical communication skills
  • Comfortable driving components of complex projects independently

Job URL:

Millennium Consulting:

Apply Online