IT Security Operations Analyst
Location: Montreal, Quebec, CA, H3B 2N2
Department: IT Operations & Services (IT03)
Resolute Forest Products, founded more than two centuries ago, is a global leader in the forest products industry. Through the years, it has built more than 20 predecessor companies and supported hundreds of communities.
The company owns or operates some 40 facilities, as well as power generation assets, in the United States and Canada. Our 6,600+ employees work hard to produce quality market pulp, tissue, wood products and papers that are marketed in over 60 countries.
Resolute offers a rewarding and safe work environment with opportunities and challenges that will help grow your skills.
The location in Montreal, (Quebec, Canada), is seeking talent to fill the position of IT Security Operations Analyst. This job is full-time permanent.
The information security team provides an IT secure environment by monitoring, analyzing, and protecting the organization from cybersecurity incidents using a combination of technology solutions and a robust set of processes.
The Operations team supports and optimizes these environments, ensuring a protected environment and business continuity.
Reporting to the Security Operations Team lead, you will be responsible for the ongoing operations of the internet traffic, networks, desktops, servers, endpoint devices, databases, applications, and other systems that are continuously examined for signs of a security incident. You will be responsible for your time efficiency with incidents, service requests, and other deliverables and facilitating the integration of new support by providing leadership and mentoring of technical resources. You will also serve as the point of contact for your team, partnering with business, project, or technical teams in projects and resolving issues.
Job Responsibilities/Accountabilities:
- Identify potential security incidents assigned by the SOC team lead.
- Prioritize and categorize security incidents on the company's ticketing platform according to the Cybersecurity Incident Response Plan.
- Apply containment and remediation mechanisms necessary to prevent the spread of a security incident based according to the defined SLAs.
- Escalate to the Threat Intelligence (SOC III) team when needed.
- Contribute to the deployment of security incidents playbooks.
- Ensure queues, tickets, and priorities are being worked effectively.
- Correctly document and complete the necessary information on the company's ticketing platform.
- Ensure patch cycles in the company SIEM are maintained.
- Report on status: ticket reporting, incident statistics, etc.
- Contribute to administering security tools such as SIEM, EDR, etc.
- Contribute to Operations processes and standards.
- Consult, recommend, and advise on operations optimization opportunities, such as tooling evolution, managed service opportunities, virtualization, etc.
- Be willing to participate in on-call teams during non-office hours.
- When required: assist with current Operations workload and incident resolution.
- Strong analytical and problem-solving skills.
- Critical thinking and good judgment: able to make informed & fact-based recommendations.
- Self-starter, comfortable with leading, taking initiative, and driving accountability.
- Skilled at successfully managing activities and deliverables when faced with conflicting priorities.
- Leadership & teamwork to positively impact and influence behaviors and decisions.
- Confidence to represent the team’s needs in dealing with partners or providers.
- Well-developed written and verbal communication and collaboration skills.
Technical Skills:
- Solid experience in designing and implementing IT security solutions or environments.
- Able to understand and explain the capabilities and drawbacks of various technologies & configurations.
- Acquired skillset to identify probable root causes of issues or incidents.
- Demonstrable skills in change management for implementing changes, both in-person and remotely.
- Subject matter expertise, including a solid working knowledge in SOC, EDR, network security, web security, mail security, and vulnerability management technologies.
Professional Experience/Qualifications:
- You hold a university degree in IT security or other relevant area or equivalent work experience.
- You have at least 3 years of relevant experience in IT technologies, Incident & Change or ITIL Processes, and/or Vendor Relations.
- You detain an IT security certification: CEH, CISSP, CompTIA, or others would be an asset.
What we are offering:
- Competitive salary and annual bonus.
- At least three weeks of vacation and three floating holidays a year from the first day of work, depending on your experience.
- Full range of group insurance from the first day of work.
- Defined-contribution pension plan with generous employer participation from the first day of work.
- Employee and family assistance program.
- Education assistance program.
- Hybrid workplace: in-person and remote work.
- Work environment based on respect, inclusion and diversity.
- Office accessible by public transit.
Resolute is firmly committed to placing greater emphasis on the principles of equity, diversity and inclusion to empower all employees to reach their full potential. We form a dynamic team whose diverse backgrounds and wealth of perspectives are one of the keys to our success. We offer an inclusive, rewarding and safe work environment with opportunities that will help grow your skills.
Four core values influence everything we do at Resolute and help ensure our continued growth and success. Resolute Forest Products is committed to the principles of employment equity.