Cybersecurity Analyst (Remote, Canada)
Remote - Canada
|Permanent / Full Time
Our client in Toronto, a financial services organization, is seeking a Cyber Security Analyst to operate security controls, monitor threats, lead incident response, and support compliance in a regulated environment.
This is a hands-on, tactical cybersecurity role. The successful candidate will work directly with SOC/SIEM, logs, alerts, vulnerabilities, and access controls, and conduct internal security audits and control reviews. This role offers meaningful ownership and close collaboration with an experienced security leader, including hands-on involvement in incident response and security initiatives.
This is a permanent, full-time role. Fully remote within Canada, but you’ll need to work Eastern Time business hours.
Key Responsibilities:
CA$100,000 to CA$110,000 annually, 7-10% performance bonus, with final compensation determined by your qualifications, expertise, experience, and the role's scope.
Of Note:
This is a hands-on, tactical cybersecurity role. The successful candidate will work directly with SOC/SIEM, logs, alerts, vulnerabilities, and access controls, and conduct internal security audits and control reviews. This role offers meaningful ownership and close collaboration with an experienced security leader, including hands-on involvement in incident response and security initiatives.
This is a permanent, full-time role. Fully remote within Canada, but you’ll need to work Eastern Time business hours.
Key Responsibilities:
- SOC/SIEM Operations & Vendor Management
Manage and collaborate with the third-party SOC/SIEM provider for threat detection, investigations, incident response support, reporting, and continuous improvement of detections and processes. - Threat Monitoring & Response
Monitor security alerts and logs, triage and investigate suspicious activity, and respond to potential threats with clear documentation and stakeholder communication. - Incident Response Leadership
Lead incident response activities including investigation, containment, remediation coordination, post-incident reviews, and reporting. - Security Controls & Tooling
Implement, maintain, and continuously improve security controls, tools, and procedures to reduce organizational risk in a practical, tactical way. - Identity & Access Management (IAM)
Support and manage identity and access controls across systems and applications, including access reviews and privileged access practices. - Vulnerability Management
Coordinate vulnerability scanning and remediation tracking, validate fixes, and support prioritization based on risk and business impact. - Governance, Risk & Compliance
Conduct internal security audits and risk assessments, help ensure alignment to internal policies and relevant frameworks, and contribute evidence and documentation for compliance requirements. - Secure Configuration & Hardening
Support secure configurations for servers, networks, endpoints, and cloud environments, helping teams implement baseline controls and reduce misconfiguration risk. - Documentation & Reporting
Prepare security reports, metrics, runbooks, and audit-friendly documentation to support internal reviews and external expectations. - Cross-Functional Collaboration
Partner with IT and business teams to embed security into projects, new technologies, and operational processes.
- A diploma or degree in Computing, Information Technology, or a related field.
- Minimum 5 years of experience in a hands-on, tactical security role, or equivalent demonstrated capability in security operations.
- Strong technical foundation across core areas of computing, including networking, virtualization, containers, cloud services, routing, and related technologies.
- Experience working with SOC/SIEM processes (alert triage, investigations, escalation, reporting) and collaborating with external security providers.
- Ability to conduct internal security audits is mandatory (e.g. basic control reviews, evidence gathering, and documenting findings and remediation actions).
- Working knowledge of incident response practices and the ability to coordinate containment and remediation across teams.
- Experience supporting IAM controls (access reviews, least privilege, privileged access concepts).
- Strong analytical and communication skills, with the ability to work independently, take initiative, and drive issues to resolution.
- Experience in financial services or another regulated industry.
- Desire to pursue CISSP or other expert-level security certifications is an asset.
- Experience with cloud security in Microsoft-centric environments (e.g. Azure and Microsoft security tooling) is an asset.
- Familiarity with common security frameworks and audit processes (e.g. NIST, ISO 27001, CIS Controls).
CA$100,000 to CA$110,000 annually, 7-10% performance bonus, with final compensation determined by your qualifications, expertise, experience, and the role's scope.
Of Note:
- Completed background checks will be required before the start date if you are selected as a winning candidate.