Security Analyst
Ottawa, Ontario, Canada (Hybrid)
CIRA
CIRA manages the .CA domain name registry and helps build a better online Canada through our cybersecurity and internet performance solutions.Join the team that is building a trusted internet for Canadians! CIRA may be best known for managing the .CA domain but our impact reaches far beyond that. We’re at the forefront of advancing cybersecurity technologies and leading projects that improve the digital experience for users across Canada and the world. Our broad scope of activities is driven by one central goal: to strengthen and secure Canada’s digital landscape.
By joining our team, you’ll have the opportunity to make a meaningful impact, ensuring that the internet remains open, safe and accessible for everyone!
Who you are:
You’re deeply committed to cybersecurity and thrive on the challenges it presents. A genuine passion for technology drives you, as you continually explore avenues to elevate security. Your expertise lies in secure software development, particularly in seamlessly integrating security into the CI/CD pipeline. You must have a strong understanding of pivotal technologies including containers and cloud technologies with hands-on experience securing them.
What you will do:
The Security Analyst role is to ensure the security of CIRA’s IT infrastructure by ensuring all assets are protected and properly monitored.
- Manage and configure security tools (cloud security platforms, container defenders, CICD integration, firewalls, IDS/IPS, SIEM systems, XDR/EDR, VPN...).
- Continuously monitoring of system events, and alerts to ensure all assets are being tracked and protected.
- Manage and coordinate regular patching of security systems and assets.
- Work closely with operations teams to ensure security patches and updates are applied in a timely manner, especially for critical vulnerabilities.
- Maintain accurate documentation of security systems, configurations, and incidents.
- Ensure compliance with internal security policies and industry standards (e.g., ISO, CIS, NIST….).
- Assist in security audits and provide evidence of security measures.
- Manage system updates and security configurations across the IT environment.
- Provide expertise during security incidents, including containment, eradication, and recovery.
- Participate in a rotating 24/7 call schedule.
What you bring:
- 5+ years of experience in the security field.
- Experience securing container environments.
- Experience integrating security scanning into CI/CD pipelines.
- Experience securing cloud environments.
- In depth knowledge of security technologies such as firewalls, SIEM, IDS/IPS, VPNs, DLP and endpoint protection solutions.
- Experience securing infrastructure as code.
- Experience with security automation
- Experience with incident response practices.
- Familiarity with security compliance frameworks and standards.
Who we are:
At CIRA, we’re driven by a passion to make a positive impact on Canada’s digital future. We’re not just asking, ‘What more can we do?’—we’re actively exploring new frontiers to enhance and secure the internet for all Canadians. Our recognition as one of the National Capital Region’s Top Employers for eight years is a testament to our vibrant culture. We believe in fostering an environment where collaboration and candour are second nature and where diverse perspectives are integral to our success, because we know that great ideas come from everywhere. If you’re passionate about innovation and ready to make a difference in a dynamic field, join us and help shape the future of the internet!
CIRA embraces a blend of remote and IRL in-office work to keep our team connected and engaged. Our Ottawa headquarters is a hub for regular events and social activities that bring our team together, encouraging a strong sense of community within our organization. No matter where you work from, you'll always feel part of our vibrant team and our shared mission.
For any accommodations during the recruitment process, please contact us at peopleandculture@cira.ca.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Automation CI/CD Cloud Compliance EDR Firewalls IDS Incident response IPS IT infrastructure Monitoring NIST SIEM VPN Vulnerabilities XDR
Perks/benefits: Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.