The Cybersecurity Specialist will support the client’s Cyber Operations team by monitoring security events, responding to incidents, driving vulnerability and patch management efforts, and developing security playbooks. This role requires strong technical expertise, analytical thinking, and collaboration with internal teams and external security partners to enhance the organization’s overall security posture.

---

Responsibilities

• Partner with the Managed Security Services Provider (MSSP) to monitor activity across endpoints, networks, and applications (on-premise and cloud) and identify anomalous behavior.
• Fine-tune SIEM alerts and optimize WAF and DLP policies.
• Support cyber incident response activities, including assessment, containment, mitigation, documentation, and reporting.
• Develop and test incident response playbooks for scenarios such as malware outbreaks, DDoS attacks, compromised systems, and web defacement.
• Collaborate with internal IT teams and external groups during time-sensitive investigations within the client’s SOC.
• Manage the security monitoring onboarding process for new and existing applications, platforms, and services.
• Lead and recommend improvements through cybersecurity tabletop exercises.
• Define baseline security monitoring requirements and support SIEM rule development and tuning.
• Drive the vulnerability management lifecycle, including identification, evaluation, remediation, and reporting.
• Configure and tune email security tools to reduce phishing incidents.
• Identify operational and tactical improvements in threat intelligence and security operations.
• Support MDR analysts with advanced investigations and serve as an escalation point for intrusion activity.
• Perform other cybersecurity operations duties as required.

---

Qualifications

• Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field.
• Minimum of 8 years of progressive experience in computing and information security, including security technologies and incident remediation.
• One of the following certifications (required):

• Certified Information Systems Security Professional (CISSP)

  o        Certified Information Security Manager (CISM)

  o        Systems Security Certified Practitioner (SSCP)

  o        CompTIA Security+

• Experience working with security frameworks such as:
• ISO 27000
• NIST
• IEC 62443 / ISA 99
• MITRE ATT&CK
• Expertise in incident response, vulnerability management, and patch management.
• Experience creating, modifying, and updating SIEM rules, alerts, and reports.
• Strong understanding of MITRE ATT&CK mapping and EDR/SIEM reporting.
• Experience triaging malware-related events, analyzing security logs, and working with EDR/MDR/NDR tools.
• Ability to preserve forensic evidence through remote EDR controls.
• Experience tuning advanced phishing detection tools.
• Knowledge of operating system vulnerabilities and network infrastructure.
• Understanding of TCP/IP, WANs, LANs, and common internet protocols (SMTP, HTTP, FTP, POP, LDAP).
• Strong analytical, problem-solving, and troubleshooting skills.
• Excellent written and verbal communication skills.
• Ability to manage multiple priorities in a fast-paced environment.

We appreciate the time and effort all applicants invest in their submissions. Please note that only candidates shortlisted for this role will be contacted directly. However, your profile will remain under consideration for future opportunities that align with your experience and career goals. All qualified applicants will receive fair consideration for employment. We welcome individuals of all backgrounds, experiences, and identities including those who identify as women, members of racialized groups, Indigenous Peoples, persons with disabilities, and 2SLGBTQIA+ communities. If you require an accommodation, please review our accessibility policy and reach out to our accessibility officer with any questions. Our human recruiters review all applications and always make the final hiring decision. On occasion, we also use AI-assisted tools to help review applications.