JSOC - Senior Cybersecurity Specialist - Incident Response
Tasks
- Analyzing malicious activity with MITRE ATT&CK
- Analyzing threat indicators
- Communicating investigation findings to stakeholders
- Conducting post-incident reviews
- Conducting threat hunting
- Documenting incident timelines and evidence
- Executing incident containment
- Executing incident eradication
- Gathering indicators of compromise
- Integrating security tools via APIs
- Investigating cyber threats
- Leveraging security tools for analysis
- Maintaining SOC operational metrics
- Maintaining incident response playbooks
- Managing incident response lifecycle
- Monitoring and analyzing cyber attacks
- Performing forensic triage
- Performing incident recovery
- Producing lessons learned reports
- Providing technical guidance to SOC analysts
- Triaging security alerts
Perks/Benefits
- Career growth and development opportunities
- Community causes involvement
- Health and wellbeing resources
- Hybrid work environment
- Inclusive collaborative environment
- Paid sick days
- Paid vacation
- Personal days
- Work-life balance
Skills/Tech-stack
API Integration | Automation and response | Cloud Security | Content Filtering | CrowdStrike Falcon | Cybersecurity Framework | DDoS Protection | Detection rules | Digital forensics | Disk forensics | EDR | ESQL | Elastic Security | Email Security | Firewalls | Forensics | IDS/IPS | Incident Management | Incident Response | JavaScript | KQL | Linux | MITRE ATT&CK | MacOS | Memory Forensics | NIST Cybersecurity | NIST Cybersecurity Framework | Network Forensics | Operating System | Operating system forensics | Phishing Protection | Playbooks | Python | Runbooks | SIEM | SOAR | SaaS security | Security Orchestration | Security Orchestration Automation | Security Orchestration Automation and Response | System forensics | Threat Intelligence | Threat detection | Threat hunting | Timeline Analysis | WAF | Windows
Education
N/A
Related jobs
-
Agile | As-a-Service | Azure Sentinel | Backlog Management | Cloud ComputingHybrid work arrangementSenior-level ContractDowntown Toronto (Ryerson), Canada9h ago
-
IT Security Analyst GRC CAD 100K-141KAccess Control | Access Management | Audit Evidence Collection | Audit evidence | CIS ControlsCritical illness insurance | Employee Assistance Program Counseling | Extended Healthcare Plan | Group RRSP | Group life AD and DSenior-level Full TimeCalgary, Alberta, Canada1d ago
-
IT Security Analyst CAD 90K-135KAntivirus | Azure Security | Azure Security Center | Data Loss Prevention | Data lossCritical illness insurance | Employee assistance program | Extended Healthcare Plan | Group Life AD ND | Group RRSPSenior-level Full TimeEdmonton, Alberta, Canada1d ago
-
Adversary tactics | Alert Tuning | Anti-Malware | Data Flow | Data Flow DiagramsComplimentary hot beverage stations | EV charging | Employee banking privileges | Free employee shuttle service | Generous vacationSenior-level Full TimeToronto, ON, CA, M1K5L11d ago
-
Security Operations Analyst CAD 75K-95KAntivirus | Behavior analytics | Change Management | Computer Emergency Response | Computer SecurityFlexible work environment | Generous time off | Global days of service | Health benefits | Meeting-free daysMid-level Full TimeRemote Canada; Vancouver, British Columbia, Canada R1d ago
-
Security Analyst CAD 74K-97KApplication Firewall | DLP | Data Protection | EDR | FirewallsCareer advancement | Employee volunteer program | Flexible work options | Training and developmentEntry-level Full TimeEdmonton, Alberta, Canada; Calgary, Alberta, Canada1d ago
-
Bash | CloudFormation | Cybersecurity governance | DLP | GitLabDental care | Extended health care | Hybrid work environment | Life insurance | Membership reimbursementSenior-level Full TimeToronto, ON, M9W 1A2, CA1d ago
-
Entry-level Full TimeOttawa, Ontario, Canada2d ago
-
Mid-level Full TimeOttawa, Ontario, Canada2d ago
-
Security engineer (H/F) CAD 88K-100KAccess Management | Alert management | Cybersecurity | Incident Response | ReportingMobility support | Team conviviality and sharing | Training programs | Work autonomy | Work-life balance initiativesEntry-level Full TimeMontréal, QC, Canada2d ago
-
Cyber Security Specialist L1 CAD 55K-70KAntispam | Antivirus | Device hardening | Event management | FTPExtended health benefits | Maternity parental enhancement program | Mentoring and coaching | Paid sick days | RRSP matchingEntry-level Full TimeVancouver, British Columbia, Canada4d ago
-
Security Analyst CAD 74K-97KApplication Firewall | DLP | Data Loss Prevention | Data Loss Prevention Rule Tuning | Data lossCareer advancement potential | Employee volunteer program | Flexible work options | Health and wellness benefits | Retirement savings programEntry-level Full TimeEdmonton, Alberta, Canada; Calgary, Alberta, Canada4d ago
-
Entry-level Full TimeVancouver, BC, CA4d ago
-
Security SOC Analyst - Remote CAD 70K-90KAbnormal Security | Access Management | Conditional Access | CrowdStrike | Dark WebESOP | Employee benefits | Learning and development | Parental leave | Remote workMid-level Full TimeCanada, Canada R4d ago
-
Senior Cybersecurity Specialist CAD 113K-163KAWS Security | Application Security | Application Security Testing | Archer GRC | Azure SecuritySenior-level Full TimeCAN, Ontario, Toronto, 200 Bloor Street …5d ago
-
Systems Analyst Ia - Cybersecurity Analyst CAD 89K-112K800-53 | Access Management | Anti-Malware | Application Security | Compliance and auditMid-level Full TimeVancouver, British Columbia (BC), Canada, V6A …5d ago
-
Systems Analyst Ia - Cybersecurity Analyst CAD 89K-112K800-53 | Access Management | Anti-Malware | Application Security | Cloud SecurityMid-level Full TimeVancouver, British Columbia (BC), Canada, V6A …5d ago
-
Data Engineer (Business Intelligence) CAD 120K-214KAccess Control | Access Controls | Control reporting | Enterprise Threat Detection | GRC Access ControlsSenior-level Contract Full TimeCanada - Remote R5d ago
-
API Security | Application Security | Bash | Bot Detection | Bot managementAccidental death and dismemberment | Dental insurance | Employee assistance program | Employee discounts | Extended health insuranceSenior-level Full TimeOttawa 20 Colonnade, Canada5d ago
-
AWS | Alert triage | Authentication | Azure | Cloud ComputingEmployee networks | Limited travel opportunity | Paid adoption leave | Paid parental leave | Professional development opportunitiesMid-level Full TimeCAN ON Remote, Canada R5d ago
-
Security Operations Specialist CAD 70K-110KAWS | Access Management | Authentication Review | Cloud Security | DASTCo-working access | Health and wellness benefits | Learning allowance | Phone and internet subsidy | Remote workMid-level Full TimeToronto, ON Hub R5d ago
-
Senior Analyst, IT Security CAD 94K-117KAccess Control | Access Management | Active Directory | Entra ID | Event managementBilingual proficiency French and English | Hybrid workSenior-level Full TimeVanier Hall, Canada6d ago
-
Sr Analyst CAD 72K-101KBackup and Restore | Cause analysis | Configuration Management | Cybersecurity | Endpoint SecurityOvertime opportunities | Training and mentorship | Weekend and holiday coverageSenior-level Full TimeMississauga / Forsythe - ON, Canada6d ago
-
SOC Analyst L1 CAD 68K-104KAlert Tuning | Correlation rules | Dashboarding | Event analysis | Incident ResponseCompany culture | Free parking | Gym on-site | Health benefits | Life insuranceMid-level Full TimeToronto, ON, CA6d ago
-
AWS | Application Security | Cloud Security | DLP | EDRHealth coverage | Home office stipend | Inclusive culture | Parental leave | Professional development budgetMid-level Full TimeCanada R6d ago