Enable job alerts via email!

Data Analyst (Vulnerability Management)

Resonaite

Toronto

Hybrid

CAD 80,000 - 100,000

Full time

Today
Be an early applicant

Job summary

A public sector client in Toronto is seeking a contract Data Analyst to support their Cyber department. The role entails delivering vulnerability management reporting, conducting scans on IT and Operational Technology systems, and assessing/remediating vulnerabilities. Ideal candidates will have 3–5 years of experience and relevant cybersecurity certifications. This hybrid role offers a flexible work arrangement, requiring 3 days per week in the office.

Qualifications

  • 3–5 years of hands-on experience in vulnerability management using Tenable IT and OT stacks.
  • Proven experience in identifying, assessing, and remediating vulnerabilities in large or complex environments.
  • Familiarity with OT security standards (IEC 62443, NERC CIP, or similar).

Responsibilities

  • Deliver comprehensive Vulnerability Management reporting and metrics.
  • Perform regular vulnerability scans across IT and OT systems.
  • Configure and maintain asset tagging for criticality and ownership.

Skills

Vulnerability management
Threat intelligence
Cybersecurity principles
Operational Technology systems
Networking protocols

Education

Cybersecurity certification (e.g., CISSP, CEH, OSCP)
Technical certifications (e.g., Tenable Vulnerability Management Specialist)

Tools

Tenable IT and OT stacks
SIEM
EDR
ITSM
Job description

Our client in the public sector is seeking a contract based Data Analyst to support their Cyber department.

Duration: 6 months + extension

Hybrid: 3d/week Toronto

Responsibilities
  • Deliver comprehensive Vulnerability Management reporting and metrics, including KPIs and KRIs.
  • Perform regular vulnerability, discovery, and policy scans across IT and OT systems.
  • Configure and maintain asset tagging (criticality, ownership, function, location, etc.).
  • Generate and present scheduled scan reports
  • Conduct policy compliance scans against CIS benchmarks and relevant industry standards.
  • Issue patch advisories and coordinate remediation efforts with stakeholders.
  • Support onboarding of new entities for both IT and OT domains.
  • Manage VM operational activities, including system maintenance and dashboard configuration.
  • Develop custom dashboards to display vulnerability data tailored to specific divisions and agencies.
  • Leverage threat intelligence and contextual data to improve vulnerability prioritization.
  • Collaborate with cross-functional teams to recommend and implement mitigation strategies.
  • Contribute to initiatives that expand vulnerability management coverage and maturity across the enterprise.
Requirements
  • 3–5 years of hands‑on experience in vulnerability management using Tenable IT and OT stacks.
  • Proven experience in identifying, assessing, and remediating vulnerabilities within large or complex government or private‑sector environments.
  • Solid understanding of Operational Technology (OT) systems such as SCADA, ICX, and other industrial control environments.
  • Familiarity with OT security standards (IEC 62443, NERC CIP, or similar).
  • Experience integrating vulnerability management tools with SIEM, EDR, ITSM, and Threat Intelligence platforms.
  • Cybersecurity certification (e.g., CISSP, CEH, OSCP, or equivalent) required.
  • Technical certifications (e.g., Tenable Vulnerability Management Specialist, OT Security certification) are an asset.
  • Strong grasp of networking protocols, operating systems (Windows, Linux), and cybersecurity principles.
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
TrustpilotImage showing a rating of 4.5 out of 5 stars on Trustpilot for JobLeads, indicating a high level of customer satisfaction.
Rated “Excellent” based on 18,710 reviews