Security Compliance Analyst - Contract

About Compugen

Compugen is Canada's largest privately-owned Technology Ally. To innovate industries, transform businesses, connect communities, and drive meaningful change, we must think bigger, reach broader, and act bolder. Through knowledge, curiosity, and collaboration, Compugen helps organizations delivering experience by design. This is what it means to be human-centered and technology-enabled.

Dreaming, designing, and delivering isn't just a mantra for us — it's a way of life. We believe that technology is the conduit, but our people – they are the connection that truly makes the magic happen!

Our Culture

We are a human-centered culture where we prioritize your well-being and are invested in helping you reach your fullest potential. We're not only focused on achieving our goals — we're dedicated to helping you achieve yours.

If you're relentlessly curious, driven to make a difference, and collaborative at the core, then you belong with us.

Position Overview:

The IT Security Analyst will focus on the remediation of IT Information Security risks, organizing and following up on activities and improvements to mitigate IT security issues.

Key Responsibilities:

• Security Maintenance: Support various IT teams in maintaining security across hardware, OS, applications, cloud, and mobile.
• Risk Identification: Collaborate with the global IT Security team to identify regional risks and vulnerabilities.
• Asset Management: Identify security gaps in asset management.
• Patch Audits: Audit and resolve issues in patch deployment processes.
• Lifecycle Management: Track and manage end-of-life dates for regional builds and products.
• Vulnerability Highlighting: Use BitSight to identify priority vulnerabilities.
• User Follow-Up: Ensure compliance by following up with users on phishing simulations and cyber training.
• Documentation: Assist in documenting IT security guidelines and policies.
• Audit and Compliance: Respond to security questionnaires, audits, and client requirements.
• Training: Prepare and deliver targeted IT security training.
• Supplier Audits: Conduct security audits of suppliers, products, and services.
• System Monitoring: Actively manage and monitor IT security systems.
• Penetration Tests: Coordinate and analyze external penetration tests.
• Password Hygiene: Ensure password hygiene and least privilege principles.
• Incident Management: Adhere to change, problem, and incident management standards.
• After-Hours Work: Be prepared for after-hours work.
• Issue Resolution: Liaise with IT teams and employees to resolve issues.
• Procedure Compliance: Comply with IT procedures and protocols.
• Documentation: Document security procedures and guidelines.

Skills & Qualifications:

• 3+ years as an IT Security Analyst.
• Maintaining IT security in multi-location, multi-DC environments.
• Using vulnerability management and scanning tools like Qualys and BitSight.
• Managing endpoint protection, firewalls, web proxies, email security, and data loss prevention systems, both on-premises and in the cloud.
• Implementing IT security best practices, including ISO27001 and ASD Essential Eight compliance.
• AZ-900 – Microsoft Azure Fundamentals
• SC-900 – Microsoft Security, Compliance, and Identity Fundamentals

Equity Statement

At Compugen, we're committed to diversity, equity and inclusion, actively recruiting from all groups. We provide accommodation upon request to all applicants during the recruitment process. At Compugen, we believe that everyone deserves a seat at the table. If you require an accommodation, our People & Culture representative will work with you to meet your needs.