Various IT Security Analyst Positions

Company Description

The House of Commons Administration delivers outstanding services to Members of Parliament and their employees in support of parliamentary democracy. Our success is made possible by our talented and dedicated workforce. We leverage diversity in all its forms and recognize that everyone has valuable contributions to make and the potential for individual growth. If you dream of joining an organization that is small enough for you to be noticed, but big enough to provide you with a meaningful career, then we want to hear from you!

Job Description

The House of Commons’ Digital Services and Real Property is currently looking to staff and build a pool for the Junior (L1), Intermediate (L2), and Senior (L3) IT Security Analysts.

As part of our IT Security Operations Team, you will play a vital role in protecting our technologies and responding to cybersecurity threats. You will have the opportunity to join an innovative and dynamic team, delivering critical services to Members of Parliament, their staff, and the House of Commons administration.

The Junior IT Security Analyst (L1) works under the guidance of senior IT security professionals and plays a critical role in monitoring security events, analyzing alerts, and assisting in incident response. This position focuses on daily security operations, including monitoring security tools, assisting with vulnerability scans, and supporting investigations into potential cybersecurity threats. This role provides an excellent opportunity to develop foundational skills in IT security, gain hands-on experience with security technologies, and build a strong career path in cybersecurity.

The Intermediate IT Security Analyst (L2) is responsible for analyzing complex security incidents, supporting security implementations, and improving defenses against cyber threats. This role involves proactively monitoring security events, conducting vulnerability assessments, participating in forensic investigations, and recommending mitigation strategies. Working closely with senior analysts, you will help respond to cyber threats, enhance security controls, and contribute to strengthening the House of Commons' security posture. This position offers opportunities for increased autonomy, skill development in advanced security tools, and involvement in strategic security initiatives.

The Senior IT Security Analyst (L3) is a highly experienced cybersecurity professional responsible for leading IT security efforts within the Security Operations Centre (SOC). This role involves overseeing security controls, conducting in-depth forensic investigations, developing incident response strategies, and providing expert guidance on security best practices. You will play a pivotal role in mentoring junior and intermediate analysts, advising on threat mitigation, and shaping the House of Commons' cybersecurity strategy. This position is ideal for individuals who thrive in a leadership role, can handle complex security challenges, and are committed to advancing cybersecurity resilience.

Top Reasons to Join the IT Security Operations team:

You will join an innovative and dynamic team of IT security professionals. You will have the opportunity to deliver quality service directly to Members of Parliament, their staff and the HoC administration. In addition, you will work with a transformational leader who motivates the team to innovate and create organizational change, promotes collaboration and fosters a trusted, supported environment to learn and grow. 

• Training and development opportunities.
• Work-life balance /35-hour workweek
• 4 weeks’ vacation (minimum)

Qualifications

Education :

• University degree in information technology, computer sciences or another related field, OR an acceptable combination of education, training and experience;

Experience:

Junior IT Security Analyst (L1):

• Basic knowledge of IT security concepts, including authentication, authorization, and access control mechanisms;
• Basic knowledge of cybersecurity incidents, events, and security monitoring tools such as SIEM and firewalls;
• Basic knowledge of Active Directory;
• Familiarity with IT networking fundamentals, including TCP/IP, DNS, HTTPS, and firewall logs;
• Exposure to endpoint protection applications such as antivirus, web filtering, and encryption;
• Ability to communicate effectively in a team environment and document security incidents.

Intermediate IT Security Analyst (L2):

• Experience with SIEM tools, Endpoint Detection and Response (EDR) solutions, and/or security orchestration tools (SOAR is an asset);
• Hands-on experience in analyzing and responding to security incidents, including threat hunting and vulnerability management;
• Proficient in conducting security hardening, vulnerability assessments, and forensic investigations;
• Familiarity with cyber-attack tactics, techniques, and procedures (TTPs), aligned with MITRE ATT&CK
• Experience working with cloud security technologies (AWS, Google Cloud, Azure);
• Familiarity with Active Directory security configurations and features;
• Knowledge of IDP/IPS systems, intrusion detection techniques, and security automation processes;
• Strong communication and collaboration skills to work effectively within a team.

Senior IT Security Analyst (L3):

• Extensive experience identifying, analyzing, and mitigating cyber threats using incident response frameworks such as the cyber kill chain;
• Expertise in threat hunting, forensic analysis, and malware investigation;
• Strong proficiency in managing cyber incidents through countermeasures and mitigation strategies;
• Experience leading security audits, penetration testing, and security assessments;
• Proficiency in deploying, configuring, and managing SIEM, EDR, and other security tools in a Security Operations Centre (SOC);
• Knowledge of security threat landscapes, including malware capabilities, attack vectors, and advanced persistent threats (APTs);
• Experience providing mentorship, training, and leadership to junior analysts;
• Ability to handle complex security incidents, make critical decisions, and coordinate with cross-functional teams.

Assets:

• Security-focused certifications such as Comptia Security+, Comptia CYSA, SANS (GCIA, GCIH), CISSP (L3 preferred) or other applicable certifications;
• Practical experience with SOC operations, security automation, and advanced threat detection techniques.

Additional Information

We are committed to creating an inclusive workplace by providing a barrier-free recruitment and selection process. If you have an accommodation request, require material in an accessible format, or need additional support with the application process, please contact Recruitment and Selection Services at HOCCareers-CarrieresCDC@parl.gc.ca.

Each bilingual position is assigned a linguistic profile that identifies the level of second language proficiency for reading comprehension, written expression and oral interaction required. The profile for this position is (BBB). Consideration may be given to candidates with other linguistic profiles. 

We invite you to save a copy of the notice of job opportunity. Once the closing date has passed, these documents will no longer be available.

Annual rates of pay:
Junior IT Security Analyst (IT Security Analyst, Monitoring) (ADG-E)- $75,547- $95,589; Intermediate IT Security Analyst (ADG-D) $83,912 - $106,175; Senior IT Security Analyst (ADG-C) $95,700 - $121,088.

Qualified candidates may be considered for future vacancies for this role or for other similar and/or related roles on an indeterminate and/or fixed term basis.

Learn more about us! Visit Ourcommons.ca.

To learn about our hiring process, visit Eligibility and Selection