Job Summary The incumbent is responsible for implementing the company’s cybersecurity vision from an operational standpoint to enhance the security of stores, warehouses, the distribution center, and the head office. The cybersecurity analyst works closely with the IT infrastructure team, the legal team, and third-party vendors to provide excellent customer service. This role also requires delivering top-tier security expertise to ensure the operation, resolution, and optimization of technological resources used across service points.

Key Accountabilities

• Contribute to establishing Dollarama’s cybersecurity vision and governance.
• Monitor the network and perform intrusion detection analysis using various network defense tools such as intrusion detection/prevention systems, firewalls, and host-based security systems.
• Detect threats based on logs and endpoints to identify and protect against threats from multiple sources.
• Correlate activity across assets (endpoints, network, applications), environments (on-premises, cloud), and identities (executives, IT administrators, users, consultants, etc.) to identify abnormal activity patterns.
• Help establish baseline activity across multiple networks to ensure high-fidelity alerts.
• Review alerts and sensor data, and document formal technical incident reports.
• Collaborate with filtering and threat-hunting teams.
• Work with Security Information and Event Management (SIEM) systems to manage/tune the system, create/manage detection content, and actively monitor alerts.
• Correlate network, cloud, and endpoint activity across environments to identify attacks and unauthorized usage.
• Research emerging threats and vulnerabilities to aid in incident identification.
• Provide user support during incidents, including mitigation measures to contain activity and facilitate forensic analysis if needed.
• Provide Level II support and investigate security incidents as needed, ensuring complete resolution.
• Lead investigations of major cybersecurity incidents.
• Stay informed about emerging threats and vulnerabilities and actively participate in security communities.
• Analyze security impacts when implementing new software or operating systems.
• Participate in documenting security elements following the implementation of new projects or security software.
• Develop and maintain standards, guides, and rules related to the technological security of the company’s systems and infrastructure.
• Act as administrator for the installation, configuration, and maintenance of security-related tools and applications.
• Advise development teams on secure application programming standards.
• Select modules for the Dollarama employee cybersecurity awareness program.
• Develop and execute phishing campaign plans.
• Analyze security logs from various IT systems such as servers (AD, Exchange, etc.), firewalls, anti-spam, EDR, IDS/IPS, etc.

Job Requirements

• Minimum of 5 years of experience in IT in a similar role.
• Degree in computer science and training in cybersecurity.
• Strong knowledge of Microsoft products (Windows 7, Windows 10, Office Suite 2007, 2010, and 2016).
• General knowledge of Linux RHEL.
• Good knowledge of Active Directory, AD security, and Office365.
• Solid understanding of security tools (EDR, SIEM, Firewall, Anti-Spam, IDS/IPS).
• Strong log analysis skills across operating systems such as Windows, Linux, Unix, and security tools.
• General knowledge of digital forensics, threat hunting, and incident response methodologies.
• General knowledge of cloud security components (GCP and Azure) is an asset.
• Excellent problem-solving skills.
• Collaborative, autonomous, professional, and customer service-oriented.
• Demonstrates reliability, rigor, and flexibility.
• CISSP certification is an asset.
• Bilingual (French and English).