Sr. IT Security Analyst

Press Tab to Move to Skip to Content Link

Hybrid Work Environment (3 days in office, 2 days remote with flexible hours)

Dress Code Business Casual

Location Downtown Toronto, Outside of Union Station (TTC & GO accessible)

A Great Place to Work

The Senior IT Security Analyst will be responsible for leading cybersecurity initiatives with a focus on incident response, endpoint protection, security event monitoring, and identity & access management. This role plays a critical part in safeguarding the organization’s IT infrastructure, detecting and mitigating threats, and ensuring compliance with security standards.

• Incident Response: Lead investigations of cybersecurity incidents, perform root cause analyses, and recommend corrective actions. Develop and maintain incident response playbooks.
• Endpoint Security: Manage and optimize endpoint protection platforms (e.g., EDR, antivirus, DLP) across the enterprise.
• Security Monitoring: Configure, monitor, and analyze logs from SIEM tools such as Splunk to detect suspicious activity and generate reports.
• Identity and Access Management (IAM): Oversee IAM processes, enforce access controls, and ensure proper provisioning and deprovisioning of user accounts.
• Risk Assessment: Conduct security risk assessments and vulnerability scans and assist in remediation efforts.
• Policy and Compliance: Develop and enforce IT security policies, standards, and procedures in alignment with industry best practices and regulatory requirements.
• Collaboration: Work closely with IT operations, infrastructure, and application teams to ensure security is embedded throughout the organization.

• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field
• 7+ years of experience in information security, with a strong background in:
  • Cybersecurity incident detection and response
  • Endpoint security technologies (e.g., Cisco Secure Endpoint, Forcepoint SSL Decryption, Sophos, Trellix EDR)
  • SIEM tools, specifically Splunk
  • Identity and Access Management systems (e.g., EntraID, Saviynt, Sale Point)
• Deep understanding of cybersecurity frameworks (NIST, ISO 27001, CIS Controls)
• Experience with scripting and automation (e.g., Python, PowerShell, Regex) is a plus

• A certificate from (ISC)2
  • Preferred: CISSP - Certified Information Systems Security Professional
• A certificate from SANS
  • Preferred: GCIH - GIAC Certified Incident Handler
• CEH - Certified Ethical Hacker

Bonus: Splunk certifications (e.g., Splunk Certified Power User)

• Strong analytical and problem-solving skills
• High attention to detail and critical thinking
• Excellent communication skills (written and verbal)
• Ability to work independently and manage multiple priorities