IT Security Analyst

Job Summary:

The IT Security Analyst performs two core functions for the enterprise. The first is the day-to-day operations of the in-place security solutions while the second is the identification, investigation, and resolution of security breaches detected by those systems. Secondary tasks may include involvement in the implementation of new security solutions, participation in the creation and or maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability audits and assessments. The IT Security Analyst is expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals.

What you will do:

Strategy & Planning

•    Participate in the planning and design of enterprise security architecture, under the direction of the Director, IT Governance Risk and Compliance, where appropriate.
•    Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures) under the direction of the Director, IT Governance Risk and Compliance, where appropriate.
•    Participate in the planning and design of enterprise/divisional business continuity plans and disaster recovery plans, under the direction of the Director, IT Governance Risk and Compliance, where appropriate.

Acquisition & Deployment

•    Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
•    Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.
•    Perform or participate in the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with company project management methodologies and standard procedures.

Operational Management

•    Monitor all in-place security solutions for efficient and appropriate operations.
•    Review logs and reports of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices). Interpret the implications of that activity and devise plans for appropriate resolution.
•    Participate in investigations into problematic activity in compliance with the company policies. Interpret activity, investigate and make recommendations for resolution. Work with the Security Operations Centre and the other IT groups on incident investigations.
•    Maintain up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices, cloud assets).
•    Maintain operational configurations of all in-place security solutions as per the established baselines.
•    Participate in and provide information as requested for security compliance reviews and information security audits (internal, external or customer audits).
•    Participate in the design and execution of vulnerability assessments, penetration tests, and security audits.
•    Provide support for divisional IT and other IT groups for all in-place security solutions.
 

What you will need:

Formal Education & Certification

•    Bachelor degree or post-secondary technology diploma in Computer Science or related field and two years of relevant work experience.
•    One or more of the following certifications:
o    ISC2 Certifications: SSCP, CCSP, CISSP
o    ISACA Certifications: CISA, CISM
o    Microsoft Certified Security: Engineer, Administrator or similar
o    CompTIA Security+
•    Knowledge of information security frameworks and relevant regulations, such as ISO 27001, NIST, PCI, GDPR.
•    Knowledge of project management concepts and project work experience is desirable. 

Knowledge & Experience

•    Extensive experience with LogRhythm SIEM or other SIEM platforms, Tenable or Qualys vulnerability management, web application scanning, Mimecast or other email security solutions, Microsoft 365 security solutions, SCCM, Intune, Azure AD, anti-malware solutions.
•    Experience with firewall technologies, IDS/IPS, VPN, TLS, networking, wireless networking, cryptography, authentication protocols, zero trust network access (ZTNA), Zscaler or equivalent solutions.
•    Working / technical knowledge of disaster recovery planning, data protection, network penetration testing, software patching, web applications
•    Strong understanding of IP, TCP/IP, cloud technologies, Azure, network administration protocols, Microsoft operating systems.
•    Familiarity with: PowerShell, SQL databases, SOAR, secure coding tools Veracode, SecOps, risk management.

Personal Attributes

•    Proven analytical and problem-solving abilities.
•    Ability to effectively prioritize and execute tasks in a high-pressure environment.
•    Good written, oral, and interpersonal communication skills.
•    Ability to investigate IT security incidents, root cause analysis and events correlation.
•    Ability to present ideas in business-friendly and user-friendly language.
•    Highly self-motivated and directed.
•    Keen attention to detail.
•    Team-oriented and skilled in working within a collaborative environment.

#LI-ONSITE

About ATS Corporation:

ATS is an industry-leading automation solutions provider to many of the world’s most successful companies. ATS uses its extensive knowledge base and global capabilities in custom automation, repeat automation, automation products and value-added services, including pre-automation and after-sales services, to address the sophisticated manufacturing automation systems and service needs of multinational customers in markets such as life sciences, food & beverage, transportation, consumer products, and energy. Founded in 1978, ATS employs over 6,000 people at more than 50 manufacturing facilities and over 75 offices in North America, Europe, Southeast Asia, and China. The Company’s shares are traded on the Toronto Stock Exchange under the symbol ATS. 
 
IT at ATS is fast paced and focused on continuous improvement. We leverage leading technologies to drive innovation and diversification from our competitors. Our solutions are rooted in automation and our technology capability is focused to elevate digital connectivity, collaboration, analytics, and self-service enablement. Our strategy is to drive global operational excellence and rethink how we deliver services while enabling growth of the organization through technology partnerships with our business segments and customers. ATS IT fosters professional development, digital impacting opportunities, and creative thinking. If you are searching for a career where you can make a digital impact, we want to hear from you!