Senior Analyst, Security Operations Centre, Information Security

ABOUT US

We’re one of Canada’s largest pension investment managers, with CAD$264.9 billion of net assets as of March 31, 2024.

We invest funds for the pension plans of the federal public service, the Canadian Forces, the Royal Canadian Mounted Police and the Reserve Force. Headquartered in Ottawa, PSP Investments has its principal business office in Montréal and offices in New York, London and Hong Kong. 

Capturing and leading complex global investments requires us to work as one to seize valuable opportunities, in close collaboration with some of the world’s top companies. At PSP, you’ll join a team of motivated and engaged professionals, dedicated to propelling our organization further than ever before.

ABOUT THE TEAM

The Information Security team is responsible for activities ranging from governance to security operations. Its main functions include the following:  

• Governance and strategic planning 

• Culture and raising awareness 

• Counsel, architecture and risk management 

• Delivery of security mechanisms 

• Security operations 

• Insurance in terms of security 

The scope of the team extends to the heart of the security mission via counsel and implementation on the evaluation of cyber risks in PSP’s investments. The organization’s support towards information security allowed PSP to build a strong team, mature processes and a modern technology portfolio in the past few years. 

ABOUT YOUR ROLE

As a Senior Analyst, Security Operations Centre, Information Security, you will: 

• Investigate and manage security incidents until resolution and communicate progress to relevant stakeholders

• Monitor, triage, and resolve alerts generated by security tools such as SIEM and EDR

• Create and maintain up-to-date incident response plans outlining procedures to follow in case of a security incident, such as a data breach or cyberattack

• Develop playbooks to help the team effectively manage different types of incidents or threats such as malware, phishing, ransomware, denial-of-service (DoS) attacks, etc.

• Collaborate with partner teams on security issues, strategies, and roadmaps

• Use MITRE ATT&CK framework to structure all the cyber investigations

• Perform log analysis and forensic analysis

• Create documentation and reports after incidents

• Implement new controls to detect and prevent activities of malicious actors

WHAT YOU’LL NEED

• A bachelor's degree in a technical field (Computer Science, IT Engineering, etc.) or equivalent experience

• Minimum of three (3) years of experience in Cybersecurity

• Skills in documentation and dashboard creation skills for reporting

• Strong knowledge of Security Monitoring and Analysis combined with several years of working experience in IT Security Operations, Incident Response or IT Administrator

• Experience using modern monitoring and response solutions like EDR, SIEM, Network Monitoring as well as native cloud security monitoring tools

• Strong understanding of network protocols and security technologies (e.g., firewalls, intrusion detection/prevention systems, endpoint protection)

• Knowledge of the cyberattack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks)

• Knowledge of security threats and vulnerabilities in systems and applications (e.g., buffer overflow, broken access control, cross-site scripting, injections, race conditions, covert channel, replay, return-oriented attacks, malicious code)

• Any advanced certifications in cybersecurity and/or specific training in incident response are an asset

• Bilingualism: English and French (Frequent interactions in English with PSP employees based in our offices in Hong Kong, London and New York, and interactions in French with employees in our local offices in Montreal and Ottawa)

We offer a tailored employee experience and competitive total rewards and benefits package* designed to attract and retain global diverse talent, reward performance, and reinforce business strategies and priorities. Beyond salary and incentive pay eligibility, you have access to:

• Investment in career development

• Comprehensive group insurance plans

• Competitive pension plans

• Unlimited access to virtual healthcare services and wellness programs

• Gender-inclusive paid family leave policy: up to 26 weeks for primary caregivers, 5 weeks for secondary caregivers

• A personalized family-building support, from pre-pregnancy to menopause, with available financial assistance

• Vacation days available on day one with additional days on milestone service anniversaries, and summer Friday afternoons off

• A hybrid work model with a mix of in-office and remote days

*Benefits package may vary based on your employee type.

At PSP, we aim to provide an inclusive workplace where we leverage diversity and where everyone feels valued, safe, respected and empowered to grow. As part of this leadership commitment, we strongly encourage applications from all qualified applicants and strive to offer an inclusive and accessible candidate experience. If you require any accommodation for any part of the recruitment process, please let us know.

Visit us on www.investpsp.com/en/

Follow us on LinkedIn

#LI-AM1