Cybersecurity Incident Response Analyst

Individually we are people, but together we are Aviva. Individually these are just words, but together they are our Values – Care, Commitment, Community, and Confidence.

We are looking for an experienced cybersecurity incident responder who can manage incidents at Tier 3 level and who is experienced in investigating cybersecurity incidents using incident response tools. The Cybersecurity Analyst – Incident Response role will also support internal fraud and financial crime investigations where there is a cyber element. This position has an on-call rotation to provide prompt response and mitigate impact 24/7.

The candidate will have experience with Information Technology and a solid understanding of Cybersecurity principles.

The role is part of Aviva’s Canada Cybersecurity Operations team and will be primarily based out of our Markham office.

What you'll do

1. Take ownership of incident response activities and create summary reports for management and other internal stakeholders.
2. Analyze advanced cybersecurity alerts from managed service providers to determine impact, select effective containment and remediation activities, and ensure appropriate recovery.
3. Maintain effectiveness of incident response tools, including EDR, SIEM, and SOAR, by identifying enhancement opportunities in configuration and alerting rules while practicing and improving practical skills.
4. Conduct detailed technical investigations of cybersecurity incident root causes, including threat vector, techniques, and tactics.
5. Be diligent throughout shifts and on call to respond quickly to cybersecurity alerts and be available for time-sensitive responses.
6. Work with key internal teams from Group CISO, Privacy Office, and Financial Crime Teams to support other investigations with a cyber element.
7. Adapt to a fast-paced environment.

What you'll bring

1. At least 5 years of experience directly working in cybersecurity incident response, preferably in a large financial services institution.
2. Strong incident response technical skills, knowledge of network protocols and communication principles, understanding of vulnerabilities and remediation techniques.
3. Ability to analyze cybersecurity alerts to determine business impact and select appropriate containment and remediation activities for recovery.
4. Maintain effectiveness of incident response tools, including EDR, SIEM, and SOAR, by identifying enhancement opportunities in configuration and alerting rules while practicing and improving practical skills.
5. Conduct detailed technical investigations of cybersecurity incidents and root causes, including threat vectors, techniques, and tactics.
6. Proven ability to establish effective working relationships and collaborative approaches with internal and external peers.
7. Obtained or pursuing recognized cybersecurity incident response or related certifications, such as CISSP, OSCP, CHFI, etc.
8. Experience reviewing, analyzing, discussing, explaining, and reporting on cyber threats and results.
9. Strong interpersonal and communication skills, with the ability to respond to multiple incidents simultaneously and prioritize effectively.
10. Preferred experience in threat hunting, threat intelligence, or forensics in addition to incident response.

What you’ll get

1. Competitive rewards package including base salary, annual bonus eligibility, retirement plan, share plan, health benefits, wellness, and volunteer opportunities.
2. Generous vacation package with the option to purchase 5 extra days off per year.
3. Employee programs focused on diversity and inclusion, including gender, LGBTQ+, and cultural initiatives.
4. Corporate wellness programs supporting physical and mental health.
5. Hybrid flexible work model.

Please note that we may use AI tools in our recruitment process. This position has been posted internally and externally.

Aviva Canada provides accommodations for employees with disabilities. If you require accommodation upon employment, please contact your Talent Acquisition Partner to arrange appropriate support. This applies throughout your employment with Aviva Canada.

We’re here to protect our 33 million customers from life’s unexpected twists and turns – freeing them from fear of uncertainty. We are one of the few insurance companies worldwide offering life, general, and health insurance, along with asset management – a true composite insurer. Our competitive advantage lies in putting customers at the heart of everything we do, creating a bright and sustainable future for our customers, employees, and communities.