Security Operations Centre Analyst

Some of what you will do:
Staples Canada is looking for a Junior Security Operations Centre (SOC) analyst who will report into the Manager of InfoSec Risk & Compliance. You will be a key member of the Staples Canada Security Operations Centre Team and responsible for executing activities relating to monitoring and responding to security events. You will report cyber threats and then implement changes to protect Staples Canada environments. You will have the chance to work with multiple technology platforms and interfaces with other groups within IT to continuously improving the SOC process, policies, and playbooks to effectively protect our critical assets.

Specifically, you will:

• Monitor, analyze, and escalate cybersecurity events using tools like SIEM and EDR; triage messages from the Cybersecurity/SOC mailbox.
• Create monthly security and vulnerability awareness communications and provide management with KPI updates on security tooling.
• Leverage tools like Splunk, Cyderes, and CrowdStrike to identify malicious activity and follow up on generated reports.
• Review and input IOCs from internal and external sources into appropriate monitoring tools.
• Support SOC in coordinating security projects, including asset management and collaboration with Cyderes and internal teams.
• Assist IT Ops teams with troubleshooting and requests, escalating issues when necessary.
• Participate in the on-call rotation to ensure continuous security coverage.

Some of what you need:

• Diploma in Computer Technology, Engineering or related.
• CISSP, CEH or CASP is an asset.
• 1-2 years of relevant experience in performing investigation activities for security related events in a complex       incident management or Security Operations Centre (SOC) environment 
• Security monitoring experience with cybersecurity and SIEM technologies
• Experience with building SOC processes, playbooks, correlation rules, and incident report 
• Experience with threat hunting and security incident investigation
• Experience with supporting cloud infrastructure (Azure, AWS, GCP or more)
• Knowledge of NIST Cyber Security Framework and MITRE ATT&CK
• Knowledge of security products and device monitoring tools including Firewalls, EDR, IDS/IPS, Phishing and e-mail security, content filtering, wireless, DDoS, WAF, SIEM, and more.
• Knowledge of incident investigation, working with in-house and vendor teams to research, identify and report on incidents.
• Knowledge of security incident management, malware analysis and vulnerability management processes
• Strong technical and learning agility, able to adapt to constantly evolving threats, domains, and technologies.
   

Some of what you will get:

• Associate discount
• Health and Dental benefits
• RRSP/DPSP
• Performance bonuses
• Learning & Development programs
• And more...

#LI-Hybrid

Staples Canada is an equal opportunity employer committed to diversity and inclusion and we encourage applications from all qualified candidates, including those with disabilities.