It Security Analyst - Operations – Security Services

We are banking at another level.

Choosing BDC as your employer means working in a healthy, inclusive, and skilled workplace that puts forward the best conditions to bring together unique teams where employees are empowered to act. It also means being at the centre of ambitious economic and financial projects to see further and to do things differently, to fuel the success of Canadian entrepreneurs.

Choosing BDC as your employer also means:

• Flexible and competitive benefits, including an Employee Savings and Investment Plan where BDC matches part of your voluntary contributions, a Defined Benefit Pension Plan, a $750 wellness and health care spending account, to name a few   

• In addition to paid vacation each year, five personal days, sick days as necessary, and our offices are closed from December 25 to January 1

• A hybrid work model that truly balances work and personal life

• Opportunities for learning, training and development, and much more... 

POSITION OVERVIEW

The IT Security Analyst is responsible for the day-to-day security activities that ensure that BDC's technology environment is well protected. This position collects and analyzes information about BDC's technology, makes recommendations and remediates security issues.

This role will guide the creation and execution of plans for the deployment, ongoing orchestration, and operationalization of cyber security information protection services and products. The IT Security Analyst will focus on the BDC's Information Protection Operational Plan (DLP) while strategically positioning the organization in anticipation of increasing complexity and emerging threats.

The candidate must demonstrate the utmost rigour and integrity in all our procedures, while guaranteeing the absolute confidentiality of the information processed.

THE CHALLENGES TO BE MET

• Use the company's security processes, procedures and operations manuals relating to the protection of information and evolve them as necessary,

• Interact and collaborate adequately with peers, external and internal partners on information protection management aspects and be able to popularize information for parties who do not have technical knowledge.

• Triage and resolve escalations by collaborating with stakeholders within InfoSec or risk management groups, information technology, legal, human resources, etc.

• Ensure technological monitoring, by being on the lookout for new security threats. If necessary, advise and train team members to maintain the vigilance of the group,

• Identify operational risks, escalate them to the team lead, work closely to provide mitigation recommendations,

• Monitor the results of cyber tools and perform spot checks for the accuracy of the results.

• Produce scripts for task automation.

WHAT WE ARE LOOKING FOR

• One to three years of experience in computer science

• Experience with a programming or scripting language such as Python or PowerShell is an asset.

• Experience with at least one of the DLP tools/data loss prevention solutions: Microsoft, Symantec.

• One of the following certifications is an asset: GSEC, GPPA, GCIA, GCWN, GMON, GCDA, OSCP

• Strong experience with Windows, Office 365, Google Cloud platforms,..

• Bilingualism in French and English.

• Ability to work in an environment that requires high discretion and integrity.

• High analytical capacity, rigorous and meticulous approach.

• Ability to acquire and develop knowledge on an ongoing basis.

• Ability to manage security incidents with responsiveness, diligence and composure in an operations centre.

• Experience in coordinating time-constrained actions during security events.

• Sense of priorities, understanding of the issues, criticality and impact.

• Ability to handle multiple requests and manage priorities.

• Responsive and agile approach to managing changing priorities.

• Ability to share information with peers and transfer knowledge.

• Ability to plan, coordinate, organize, train and implement.

• Demonstrable knowledge of information handling and protection policies and behaviors.

• Effective negotiation and communication skills with different levels of the organization.

• Ability to simplify complex issues.

Proudly one of Canada’s Top 100 Employers and one of Canada’s Best Diversity Employers, we are committed to fostering a diverse, equitable, inclusive and accessible environment where all employees can thrive and feel empowered to bring their whole selves to work. If you require an accommodation to complete your application, please do not hesitate to contact us at accessibility@bdc.ca.

While we appreciate all applications, we advise that only the candidates selected to participate in the recruitment process will be contacted.