Advisor Security Operations Center

Posting End Date:

August 01, 2024

Employee Type:

Regular-Full time

Union/Non:

This is a non-union position

Working in the 24x7x365 Security Operations Center (SOC) the primary goal of this position is to provide tiers 2 and 3 support and domain knowledge for the global incident response operations, monitoring, analysis and forensic investigations.

What you will do:

• Independently build out ADT’s and provide guidance to both TIER 1 analysts in the SOC and management.

• Design and implement documentation related to detections and design work.

• Ensure validation of detection and design implementation are done effectively.

• Utilize Demisto to automate elements of detection and design to enable SOC workflows.

• Support development, enhancement, documentation and communication of detection and design best practices & standards.

• Develop and maintain working relationships with teams on behalf of detection and design, leading to improved integration to IT, the business and industry.

• Implement and enhance the RFI process efforts to ensure visibility gaps are closed in a timely manner.

• Coordinate and perform other technical duties as required.

Who you are:

Required:

• Degree/diploma in Information Systems, Information Security, Engineering, or equivalent work experience.

• Three or more years of related experience in specific cyber security roles or in a security operations center or other security operations roles.

• Working knowledge of various IT systems, including IP transport (routing/switching/firewalls), security appliances (IPS/IDS/proxy/AV/EDR), application frameworks, monitoring systems, and other technologies.

• Working knowledge of various communications protocols, including SNMP and Syslog.

• Knowledge of SIEM technologies: Splunk, QRadar, HP Arcsight, LogRhythm.

• Ability to work on and continuously deliver on numerous competing priorities simultaneously.

• Excellent analytical, problem solving, technical writing, verbal communication, and interpersonal skills.

• Enhanced Reliability Check (ERC) minimum, GoC security clearance would be an asset.

• Excellent communication skills with the ability to interact with global teams, develop staff, be a thought leader, and drive innovation.

Preferred:

• Knowledgeable on Enbridge ICS technology, networks and systems

• Knowledgeable on Enbridge cyber security technologies (firewalls, IPS/IDS, endpoint, identity, UBA).

Enbridge Flex-Work Program

Enbridge provides competitive workplace programs that differentiate us and offer flexibility to our team members. Enbridge’s FlexWork (Hybrid Work Model) offers eligible employees the opportunity to work variable daily schedules with a flexible start and end time, to opt for a compressed workweek schedule, and the option to work from home on Wednesdays and Fridays. Role requirements determine your eligibility for each option or combination of options. #LI-Hybrid #joinourteam

Physical requirements:

Include but are not limited to: Grasping, kneeling, light - moderate lifting (objects up to 20 pounds), reaching above shoulder, repetitive motion, sitting, standing, visual requirement (able to see screens, detect color coding, read fine print), hearing requirement.

Mental requirements:

Include but are not limited to: Ability to: understand, remember and apply oral and/or written instructions or other information, understand complex problems and collaborate/explore alternative solutions, prioritize thoughts and ideas into understandable terminology, coordinate and prioritize work schedule on a short-term basis, make decisions which have moderate impact on the immediate work unit and monitor impact outside this area, understand and follow basic instructions and guidelines, complete routine forms, compose letters, outlines, memoranda and basic reports and communicate with individuals via telephone.

Diversity and inclusion are important to us. Enbridge is an Equal Opportunity and Affirmative Action Employer. We are committed to providing employment opportunities to all qualified individuals, without regard to age, race, color, national or ethnic origin, religion, sex, sexual orientation, gender identity or expression, marital status, family status, veteran status, Indigenous/Native American status, or disability. Applicants with disabilities can request accessible formats, communication supports, or other accessibility assistance by contacting careers@enbridge.com.

Information For Applicants:

• Applications can be submitted via our online recruiting system only.
• We appreciate your interest in working with us; however, only those applicants selected for interviews will be contacted.
• Final candidates for this position may be required to undergo a security screening, including a criminal records check.

To learn more about us, visit www.enbridge.com