Senior IT Security Analyst

Permanent contract Montreal IT (Information Technology)

Senior IT Security Analyst

• Montreal, Canada
• Permanent contract
• IT (Information Technology)

Responsibilities

ABOUT THE JOB :

The Amer Infrastructure Security team (GTS / SEC) ensures that processes / measures implemented by our Global Technology Systems team in IT security and operational risks are aligned with Group ISS policies, GTS IT security standards and local regulations.

The Security Operation Center security analyst contributes to the realization of thorough analysis / investigations leading to proper and timely qualification of alerts / incidents;

and to the identification of appropriate / pragmatic actions / recommendations for timely remediation of true positive incidents.

The SOC security analyst contributes to the design, the implementation, and the maintenance of up to date of IT infrastructures security incidents operational procedures, so called Playbooks (, how to manage IDS, AV alerts;

how to perform investigations; etc.).

In the end, the SOC security analyst contributes to the production and communication of SOC activity related clear information either included in regular weekly and monthly dashboards;

or in specific security events extracts / reports answering specific stakeholders needs.

What will be your DAY-TO-DAY?

Management of IT infrastructures security events / incidents

• Monitoring of IT security events; specifically alerts triggered by the RSA Analytics / NetWitness SIEM (, alerts on the following area : IDS;
• AV - Virus infections, intrusions);
• Conduct Cybersecurity investigations and work with peers on incident response, investigate complex incident to help less experienced analysts.
• Design and implementation of IT infrastructures security incidents operational procedures (, how to manage IDS, AV alerts;

how to perform investigations using RSA; etc.).

• Hunting on the information system, analysis of new malware / suspicious scripts and extraction of IOCs
• Produce weekly and monthly dashboard on the SOC IT security / incidents activity, , KRIs on IDS and AV alerts.
• Report to SOC Manager

Management of SOC tools; specifically, the SIEM platform (RSA Security Analytics and Splunk)

• Daily management and monitoring of the platform (, to ensure that security events are collected and processed properly).
• Development / customization / maintenance of correlation rules.
• Develop and improve playbook to improve / automate our investigations and remediation procedures.
• Managing IDS, AV policy, EDR policy.

Profile required

Skills and Qualifications :

Must Have :

• Experience in the management of IT infrastructures security events / incidents
• IS Security (knowledge of IT security principles, best practices, tools that are used in securing IT resources) and related risks
• Good MS Office (Word, PowerPoint, Visio, Excel) skills.
• Client Focus
• Teamwork
• Analytical thinking
• Willing to learn
• Ability to communicate clearly with technical teams and with non-technical stakeholders.

Desired / Strong Plus :

• Previous experience as SOC analyst.
• Knowledge of application architecture
• Knowledge of Cloud provider offers
• Knowledge in SOAR products
• Experience in crisis management and incident response

TECHNICAL SKILLS Required :

• Knowledge of SIEM products (, Splunk and RSA NetWitness)
• Knowledge of network security products (SourceFire IDS / IPS; Cisco, Firewall,Proxies,VPN, Microsoft EDR ..)
• Good knowledge of network basics (OSI, NAT, )
• Knowledge on security framework (MITRE ATT&CK, NIST)
• Knowledge of network packets analysis and broad knowledge on threat analysis

PRIOR WORK EXPERIENCE

4 / 5+ years in IT infrastructures security ideally in a SOC; specifically in the management of IT infrastructures security events / incidents and the management of SIEM platforms (preferably in a SOC team)

Why join us

OUR Benefits :

WHAT WE DO DIFFERENTLY AT SOCIÉTÉ GÉNÉRALE

Competitive compensation & benefits offering, including but not limited to :

Minimum of 20 Vacation days + 4 personal days Supportive Maternity, paternity, parental and adoption leave policy Health spending ($2,000 / year) and personal spending ($1,000 / year) accounts with 75+ eligible reimbursement categories (health, training, electronics etc.

Fully sponsored virtual healthcare assistance and Employee Assistance Program to you and your immediate family

• Various Employee Resource Groups (ERG) to engage with such as Pride and Allies, American Women Network, Black Leadership Network, One planet, etc.
• A culture of continuous development by encouraging our employees various training programs (online training and coaching platform such as Coursera, GoFluent, Pluralsight, First Finance, and others)
13 hours ago