Sr. IT Security Analyst

Press Tab to Move to Skip to Content Link

Hybrid Work Environment (3 days in office, 2 days remote with flexible hours)

Dress Code Business Casual

Location Downtown Toronto, Outside of Union Station (TTC & GO accessible)

A Great Place to Work

The Senior IT Security Analyst will be responsible for leading cybersecurity initiatives with a focus on incident response, endpoint protection, security event monitoring, and identity & access management. This role plays a critical part in safeguarding the organization’s IT infrastructure, detecting and mitigating threats, and ensuring compliance with security standards.

Job Responsibilities

• Incident Response : Lead investigations of cybersecurity incidents, perform root cause analyses, and recommend corrective actions. Develop and maintain incident response playbooks.
• Endpoint Security : Manage and optimize endpoint protection platforms (e.g., EDR, antivirus, DLP) across the enterprise.
• Security Monitoring : Configure, monitor, and analyze logs from SIEM tools such as Splunk to detect suspicious activity and generate reports.
• Identity and Access Management (IAM) : Oversee IAM processes, enforce access controls, and ensure proper provisioning and deprovisioning of user accounts.
• Risk Assessment : Conduct security risk assessments and vulnerability scans and assist in remediation efforts.
• Policy and Compliance : Develop and enforce IT security policies, standards, and procedures in alignment with industry best practices and regulatory requirements.
• Collaboration : Work closely with IT operations, infrastructure, and application teams to ensure security is embedded throughout the organization.

Education and Experience

• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field
• 7+ years of experience in information security, with a strong background in :

Cybersecurity incident detection and response

• Endpoint security technologies (e.g., Cisco Secure Endpoint, Forcepoint SSL Decryption, Sophos, Trellix EDR)
• SIEM tools, specifically Splunk
• Identity and Access Management systems (e.g., EntraID, Saviynt, Sale Point)
• Deep understanding of cybersecurity frameworks (NIST, ISO 27001, CIS Controls)
• Experience with scripting and automation (e.g., Python, PowerShell, Regex) is a plus

At least one of the following certifications required :

• A certificate from (ISC)2

Preferred : CISSP - Certified Information Systems Security Professional

• A certificate from SANS

Preferred : GCIH - GIAC Certified Incident Handler

• CEH - Certified Ethical Hacker

Bonus : Splunk certifications (e.g., Splunk Certified Power User)

• Strong analytical and problem-solving skills
• High attention to detail and critical thinking
• Excellent communication skills (written and verbal)
• Ability to work independently and manage multiple priorities