IT Security Analyst

Closing date: Sunday, November 10, 2024

IT Security Analyst

Directorate: Information Services

Classification: SEN 8: $83,756 - $105,973

Job Type: Indeterminate Appointment (permanent, full-time)

Location: Ottawa, Ontario, Canada

How will you contribute?

The IT Security Analyst is accountable for providing technical expertise on the operational implementation of the Senate’s IT security program and for recommending changes in IT policies, processes and practices. It is accountable for contributing cybersecurity expertise and advice in regard to requirements linked to threat and risk assessments, disaster recovery and the security of existing and new applications, networks, and business systems. The position is responsible for assisting with proactively monitoring, identifying, analyzing, investigating, preventing, and responding to cybersecurity threats to ensure information and IT assets are protected. It also plays a key role in building the processes, automating/customizing the technology and being instrumental in the overall organizational awareness and appreciation to enhance the Senate’s IT Security posture.

Prerequisites

• A bachelor’s degree or college diploma in Information Technology Security or in a related field or an acceptable combination of education, training and experience. IT Security training and experience will be considered an asset;
• Have a valid Certified Information Systems Security Professional (CISSP) certification, CISSP Associate, or be willing to prepare and undertake the CISSP certification.
• Experience in installation, administration, maintenance and troubleshooting security solutions;
• Experience with identity, credential and access control management and Active Directory services;
• Experience with IT security Operations that include patch management, vulnerability management, antimalware, IT security incident response;
• Experience developing and maintaining relationships with internal stakeholders;
• Experience in the development and implementation of IT security policies, procedures, and standards based on Government of Canada (GC) or National Institute of Standards and Technology (NIST), best practices, and compliance requirements;
• Experience configuring and securing Microsoft’s Azure Cloud environment;
• Knowledge of theories, principles and practices of computer science, specifically as related to IT security, technical architecture and integration, IT risk and security;
• Basic understanding of System Development Life Cycle (SDLC) as it relates to IT Security, and the development, coordination, implementation, monitoring and maintenance of IT security protocols;
• Ability to read and understand detailed technical architecture and have integration expertise with major vendor solutions;
• Knowledge of emerging cybersecurity developments in the rapidly evolving field of information technologies;
• Knowledge of IT industry standards and best practices in government and private industry;
• Ability to provide written and oral analytical and specialized advisory services, perform IT security audits and threat and risk assessments;
• Ability to provide strategic advice and recommendations on the development and review of long-term technological and operational plans;
• Ability to provide advice across the Information Services Directorate relevant to IT security, and to collaborate closely with Information Management and Application Development specialists, to ensure a seamless IT security stance is provided for all directorate’s clients.
• One or more of the following certifications will be considered an asset:
  
  • GIAC Security Essentials (GSEC); or
  • (CEH) Certified Ethical Hacker.

Linguistic Requirements

English Reading Comprehension: B

English Written Expression: B

English Oral Interaction: C

French Reading Comprehension: B

French Written Expression: B

French Oral Interaction: C

Conditions of Employment

Candidates must consent to supply personal information and obtain a security accreditation to be eligible for appointment.