Security Analyst, Security Operations - Montreal, QC.
Syntax is a leading Managed Cloud Provider for Mission Critical Enterprise Applications and has been providing comprehensive technology solutions to businesses of all sizes since 1972. Syntax has undisputed strength to implement and manage ERP deployments (Oracle, SAP) in a secure, resilient, private, public or hybrid cloud. With strong technical and functional consulting services, and World Class Monitoring & Automation, they serve some of North America’s largest corporations across a diverse range of industries. Syntax has offices worldwide, and partners with Oracle, SAP, AWS, Microsoft, IBM and other global technology leaders.
The Security Analyst primary responsibility within the Security Operations division is to support Information Security Operations Center (iSOC) on security functions such as Information Security Event Analysis, Incident Response, Vulnerability Management, and Security Service Delivery initiatives for Syntax. Lastly, this position is responsible for the protection of both customer and company data along with supporting all other security topics.
Support the security operations processes; internally and as a service provided to customer
Perform analysis of security-related cyber events
Support the security awareness programs, including user guides and training materials
Follow/Maintain security operations playbooks and Incident Response Plans
Participate in emergency action when required to safeguard assets from cyber security compromise and to assist with the eventual recovery of compromised systems
Contain and mitigate incidents
Understand the cyber security implications surrounding the overall architecture of networks, operating systems, hardware platforms, applications, and the services and protocols upon which those applications rely on
Perform cyber security audits/assessments, network scans, and penetration tests against digital assets as necessary
Continuous improvement of security operations processes and procedures
Analyze gaps in security operations processes and procedures and remediate issues in a timely manner
Acquire knowledge and understanding of current and emerging IT security technologies
Develop and maintain policies, guidelines, and standard operating procedures (SOPs)
Liaise with customers, customer managers, operational teams, and service management to ensure full integration of security operations processes
Maintain chain of custody
Customer/Vendor relationship management
Hours of work are typically Monday through Friday, 8:00 a.m. to 5:00 p.m., however, occasional evenings, weekends and additional on-call requirements will be necessary to meet customer needs and other company objectives. This position will participate in an on-call rotation.
Travel up to 10%
Security knowledge, in Security Operations domains (EDR, Cisco Networking and platforms, Qualys, RiskSense, Splunk)
Infrastructure platform knowledge
Scripting experience with Python, Perl, Powershell, Bash, etc.
Knowledge of datacenter and cloud technologies
Experience in operating vulnerability scanning infrastructure and services
Previous hands on experience in application or network penetration testing
Knowledge of industry standards and audit controls
Knowledge of technology and security topics including network security, wireless security, application security, infrastructure hardening and security baselines, web server and database security
Project Management knowledge
Qualys Cloud Platform
ServiceNow management, a plus
Application development, a plus
- Bachelor’s Degree in Information Systems or related field (work experience and/or industry relevant certifications may be considered in lieu of a degree)
- Technical troubleshooting skills required
- Expert level understanding of malware lifecycle
- Understanding of cyber-attack vectors and attack methodologies
- Complete understanding of TCP/IP networking
- Complete understanding of file and system permissions for UNIX and Windows systems
- Understanding of AV/EDR technologies and protective strategies
- Understanding of network and system firewalls
- Ability to work and follow ITIL processes for change management and ticket management
- Must be self-motivated with strong sense of ownership
- Excellent communication skills and the ability to interact with employees, customers and vendors
- Excellent documentation skills
You must be legally entitled to work in Canada and/or in the U.S. We are unable to sponsor at this time.