Location
North York, ON | Canada
Job description
Take your Career to the next Level with MEVOTECH.
Mevotech is a trusted North American aftermarket auto parts leader that specializes in the engineering, design and distribution of driveline, steering and suspension parts (branded and private label). With over 600 Canadian and U.S. team members, we can attribute our continued success to the passion, spirit and dedication of our employees. Mevotech was recognized with a 2023 Canada’s Best Managed Companies award for its industry-leading performance, global business practices, and sustained growth. Check out our career website to learn about our amazing culture and our commitment to employee wellness and engagement.
JOB PURPOSE The Cyber Security Analyst reports directly into the Manager, Cyber Security. Supporting operations of the in-place security solutions while the second is the identification, investigation, and resolution of security breaches detected by those systems. Secondary tasks may include involvement in the implementation of new security solutions, participation in the creation and or maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability audits and assessments. The Cyber Security Analyst is expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals.
KEY DUTIES AND RESPONSIBILITIES Strategy & Planning - Participate in the planning and design of enterprise security architecture, under the direction of the Cyber Security Manager, where appropriate.
- Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures) under the direction of the Cyber Security Manager, where appropriate.
- Participate in the planning and design of an enterprise business continuity plan and disaster recovery plan, under the direction of the Cyber Security Manager, where appropriate.
Acquisition & Deployment - Maintain up-to-date detailed knowledge of the Cyber Security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
- Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.
- Perform the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security documents specifically.
Operational Management - Maintain up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices).
- Maintain operational configurations of all in-place security solutions as per the established baselines.
- Monitor all in-place security solutions for efficient and appropriate operations.
- Review logs and reports of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices). Interpret the implications of that activity and devise plans for appropriate resolution.
- Participate in investigations into problematic activity
- Participate in the design and execution of vulnerability assessments, penetration tests, and security audits.
- Provide on-call support for end users for all in-place security solutions.
QUALIFICATIONS, SKILLS, AND EDUCATIONAL REQUIREMENTS - College diploma or university degree in Computer Science and/or two years equivalent work experience.
- One or more of the following certifications is considered an asset:
- CompTIA Security+
- GIAC Information Security Fundamentals
- Microsoft Certified Systems Administrator: Security
- ISC 2 Certified in Cyber Security
- Extensive experience with EDR, SIEM, Anti-Spam, Anti-Phishing and other enterprise security tools.
- Experience with scripting and automation of security related tasks.
- Strong understanding of IP, TCP/IP, and other network administration protocols.
- Strong understanding of server and desktop operating systems.
- Familiarity with industry standard frameworks such as NIST CSF, CIS Controls v8, ISO 27001 etc.
- Proven analytical and problem-solving abilities.
- Ability to effectively prioritize and execute tasks in a high-pressure environment.
- Good written, oral, and interpersonal communication skills.
- Ability to conduct research into Cyber Security issues and products as required.
- Ability to present ideas in business-friendly and user-friendly language.
- Highly self-motivated and directed.
- Team-oriented and skilled in working within a collaborative environment
Diversity & Inclusion
- At Mevotech, diversity goes beyond demographics. We embrace unique perspectives and voices in our culture. We actively seek out different viewpoints and incorporate them into our organization.
Accessibility Accommodations
- Mevotech provides accessibility accommodations during the recruitment process. If you require accommodations, please let us know, and we'll work with you to meet your needs.
#LI-Onsite
Job tags
Salary
