Senior Information Security Analyst - (00499.4)

The Senior Information Security Analyst is responsible for proactively safeguarding Thompson Rivers Universitys (TRU) digital assets. This role involves designing and implementing security solutions identifying vulnerabilities ensuring compliance and rapidly responding to security incidents while maintaining the highest standards of organizational security.

MAJOR DUTIES & RESPONSIBILITIES

• Represents TRU in provincial and federal cyber security initiatives and conferences such as BCNET CANHEIT and RENISAC.
• Investigates and advises the Director Information Security on latest security practices current security landscape and emerging threats. Recommends enhancements to the organizations security posture.
• Designs implements and maintains security solutions that protect the organizations systems networks and data against threats breaches and unauthorized access.
• Regularly conducts vulnerability assessments and penetration tests to identify and rectify potential security weaknesses.
• Coordinates incident response efforts by utilizing skills of identification containment eradication and recovery and participating in postincident reviews.
• Ensures the proper deployment configuration and maintenance of security tools and platforms by working with external contractors auditors and performing internal assessments of the effectiveness of our tools.
• Monitors systems for signs of intrusions taking immediate corrective action as needed which may involve system isolation intruder containment and direct adversary engagement.
• Conducts and contributes to risk assessments providing recommendations for risk mitigation.
• Creates and maintains comprehensive documentation related to security architectures procedures and protocols.
• Leads or participates in securityrelated projects including liaising with coworkers and contractors.
• Engages in continuous professional development including security certifications bootcamps and attending / presenting at conferences.
• Stays updated with the latest in cybersecurity threats trends and technologies.
• Maintains a strong sense of ethics and integrity ensuring all actions align with company policies and professional standards.
• Provides mentorship to intermediate and junior security team members fostering a culture of continuous learning and growth.

REPORTS TO

Director Information Security

Requirements

EDUCATION :

• 4Year University degree in Computer Science or related field

EXPERIENCE :

• 5 years experience in information technology with a minimum of 3 years recent experience in a fulltime information security role including :

3 years of experience working with security systems and tools including firewalls IDS / IPS SIEM systems postmortem forensics and encryption technologies

• 3 years of securing cloud platforms (e.g. AWS Azure Google Cloud) using their respective security tools controls and best practices
• Experience and / or training in computer network penetration testing and purple team tactics

SKILLS KNOWLEDGE OR ABILITIES RELATED TO THE JOB

• Understanding of authentication mechanisms such as CASB SAML OAuth Shibboleth and directory services such as Windows AD and LDAP
• Knowledge of secure coding practices threat modelling and security testing methodologies
• Understanding of cryptographic protocols and tools including when to use them
• Knowledge of designing security architectures that protect against threats and accommodate business needs
• Awareness of legal and security standards (e.g. FOIPPA PCIDSS ISO 27001 NIST)
• Proficient with scripting / programming languages (e.g. Python PowerShell Bash)
• Excellent oral and written communication skills
• Ability to explain complex security topics in an understandable manner to nontechnical stakeholders
• Ability to conduct vulnerability assessments using various tools and techniques
• Ability to manage ones own time effectively balancing multiple tasks and responding promptly to emerging challenges
• Highpressure environment (responding swiftly to security breaches and making prompt recommendations)
• May be required to come in afterhours on short notice in case of security breach or critical incident

WORKING CONDITIONS

• Sitting at desk and computer for long periods of time
• Travel by foot to office lab or classrooms in various campus locations in all weather conditions
• Exposure to unclean conditions in client areas e.g. under desks keyboards dust within computers
• Ability to lift weights exceeding 20 kg

Market Supplement : This position is eligible for an annual market supplement of $22309.56 (or $858.06 per pay period) as per the TRU / CUPE LOU on Market Supplements that is set to be reviewed on February 9 2027.

This is a fully remote position subject to the Work from Home LOU in the TRU / CUPE Collective Agreement . The successful applicant may work from a remote location from anywhere within the province of British Columbia

Required Experience :

Senior IC

Key Skills

IT Experience,Splunk,IDS,Cybersecurity,FIPS,PCI,NIST Standards,Information Security,Encryption,FISMA,RMF,Siem

Employment Type : Full-Time

Experience : years

Vacancy : 1

Information Security Analyst • Kamloops, British Columbia, Canada