Security à Canada

Doing business to business, person to person. Payworks is a leading workforce management solutions provider and multi-year winner of Canada’s Best Managed Companies program. We are proud to be Canadian owned and operated as well as committed to developing world-class products and providing a progressive workplace culture where Doing Right by People is our purpose.

With clients of all sizes from coast to coast and more than 600 employees, we currently have an exciting opportunity on our Information Security team for the right candidate. Because when it comes to great people, there’s always room for one more.

DOING RIGHT BY PEOPLE – IT’S WHAT WE DO

Reporting to the Manager, IT Security, the Information Security Analyst will be responsible for using an analytical thought process and sound judgment in executing daily analyst activities. Leveraging industry leading security technologies, this role is the first line of defense against information security threats. You will be responsible for identifying and immediately responding to such risks with a strong attention to detail and technical/investigative mindset. This will include the monitoring of Payworks IT infrastructure and associated alerts as well as responding to tickets and other requests from outside the Corporate Security Team.

• Comprehensive employer paid benefits, including a Health Spending Account, for you and your family and excellent pension plan with employer contributions.
• Plenty of professional development opportunities.
• Community-minded culture – Receive two paid days per year to volunteer and lots of opportunity to “Pay it Forward”.
• Time and flexibility to meet your needs – Hybrid work model with flexible work options, plus 3 weeks vacation to start, flex time and parental leave benefits.
• Cool perks – Annual Lifestyle Spending Account, Costco membership, fun office environment and events, and more!

• Responsible for first response in support of the resolution of security related incident tickets, internal inquiries and events. Proactively monitor Payworks assets, brand and environment for threats, and indicators of compromise.
• Conduct and utilize vulnerability scanners, intrusion detection appliances, collation reports, failed logins, and various system activity tools to analyze security related events, develop solutions or escalate to other Payworks teams to define preventive activities.
• Provide the business with guidance on vulnerability trends, exposures, mitigation, priorities, patching and validation.
• Conduct, manage, and maintain security awareness training for employees to educate them about security best practices and policies.
• Perform security audits and assessments to evaluate the effectiveness of security controls and identify areas for improvement. Contribute to Payworks audit and compliance objectives, help staff and company adhere to policy and process.
• Enhance and support existing incident response process and procedures, oversee and participate in regular tabletop exercises with both the security department and other business departments.
• Embrace emerging technology and security trends, global events, activities and best practices.
• Utilize security tools and technologies such as security information and event management (SIEM), firewalls, intrusion detection/prevention systems (IDS/IPS), anti-malware systems (HIPS/AV), email security solutions, camera systems, security awareness training platform and endpoint detection and response (EDR/XDR) solutions.
• Participate in projects as assigned to ensure security requirements are met and development is in accordance with current policies, standards, and guidelines.

• University Degree or College degree within the IT Security field and approximately 3-5 years of previous experience in a similar technology role considered a strong asset.
• Strong communicator with proven ability to explain complex topics or concepts that can be easily understood by a wider audience in the organization.
• Is a collaborative team player, always willing to share experiences and technical knowledge with their peers and others in the organization.
• Experience in using tools or languages such as PowerShell, ReGex, or others considered an asset.
• Familiarity with tools and techniques related to preventing intrusions and system vulnerabilities.
• Recent experience being a member of an incident response team is considered an asset.
• Cloud infrastructure and/or security experience considered an asset.
• Experience with any of the following vendors, tools or products considered an asset: LogRhythm, TCP dump, Wireshark, Palo Alto Networks Firewalls, BeyondTrust, Cisco DUO, Cortex XDR, BitSight, OneTrust, McAfee, Nessus, WhiteHat Sentinel Dynamic, Burp Suite, Rapid7 products, Proofpoint products, and NetScaler Web Application Firewalls.
• SANS, ISC2, ISACA, Offensive Security, CompTIA, EC-Council and Cisco certifications are an asset.
• Values ongoing professional development opportunities and new challenges.
• Shift work will be required during Payworks’ standard business hours, alternating between team members to ensure adequate coverage of the Payworks’ Security Operations Center (SOC).
• After-hours and weekend support may be required on an ad-hoc basis in order to support incident and security event response.

We are proud to support a Flexible Work Plan that recognizes the diverse needs and lifestyles of our people. The Information Security Analyst has the option to work fully from the Payworks office or on a hybrid work model, working in the office at least three (3) days a week. This role may require participation in an on-call rotation for after-hours support, including evenings, weekends, and holidays, as needed.

Payworks is committed to providing an inclusive, accessible environment, and collaborating with employees, clients and guests to identify and effectively remove barriers, in a manner that respects the principles of independence, dignity, integration, reasonable accommodation and equal opportunity. Payworks welcomes and encourages applications from all persons. Individuals applying for employment with Payworks may request accommodations at all stages of recruitment and employment from Human Resources.

Employees at Payworks’ come from different backgrounds, and we celebrate those differences. We are looking for the best candidate for this opportunity, but do not expect applicants to meet every qualification in order to be considered.