The Security Monitoring Specialist role is a technical, cross-site position requiring 24/7 availability.

The main responsibilities of this role is to:

Duties and Responsibilities

• Monitor and triage SIEM alerts, firewall logs, email gateway/spam appliance logs, EDR logs, Intrusion Prevention System logs, Active Directory/Linux Logs for unusual or suspicious behavior and report on findings as well as escalate to the appropriate team member for further investigation
• Monitor current trends of malware and intrusions and recommend enhancements to current security systems.
• Recommend, schedule, and apply fixes and security patches to information security technologies and end-user computing devices as necessary (including Microsoft updates/patches)
• Collaborate with technical support groups and provide remediation recommendation to ensure end user systems flagged as malicious have been appropriately mitigated
• Review emerging security technologies, security controls testing, and conduct vulnerability assessments and escalate to the appropriate team member for further investigation.
• Conduct and review security scans to identify root cause of problems and recommend resolutions
• First level troubleshooting of security related issues such as malware, Trojans, intrusion incidents etc.
• Under direction of the Manager IT Security or the Director IT Security, administer and configure the security systems related to specific IT systems. Some of these systems include the Firewalls, e-Mail scanning systems, Remote Access technologies and VPNs, Anti-virus tools, Intrusion Detection Systems, Patch Management and others
• Assist in the enforcement of policies, procedures, access controls and associated plans for information security based on industry best practice and managerial direction
• Conduct risk management, threat management, and security assessments for the organization
• In conjunction with the other members of lT Security team would maintain and configure devices that protect perimeter and internal networks
• Responds quickly to mitigate the impact of security threats by ensuring that security systems are operating as expected and continually reviewed and updated

Knowledge and Skills:

• A diploma in computer science, cybersecurity, or business administration is preferred
• Security certifications such as SSCP or Security+ are nice to have.
• Minimum of 1 year of experience in the IT Security field is preferred.
• Monitoring firewall logs, intrusion prevention logs, and network traffic for unusual or suspicious behavior.
• Experience with anti-spam/antivirus and malware identification is preferred
• Monitor current trends of malware and intrusions
• Basic knowledge of VPNs (IP Sec and SSL) and remote access technologies is nice to have.
• Basic understanding of security vulnerabilities and exploit lifecycle is nice to have
• Demonstrated flexibility and ability to adapt to change.
• Demonstrated strong analytical, organizational, conceptual and decision-making skills and the ability to work within a team environment.
• Demonstrated excellent verbal and written communication skills.
• Ability to work in a constantly changing and fast-paced environment that requires 24/7 availability.
• Ability to handle situations involving unplanned outages
• Well-developed problem solving skills
• High level of initiative and self-direction
• Demonstrated commitment to continuous professional learning
• Demonstrated ability to effectively work in teams and on projects

Unity Health Toronto is committed to creating an accessible and inclusive organization. We strive to provide a recruitment process that is barrier-free and in compliance with the Accessibility for Ontarians with Disabilities Act (AODA) and the Ontario Human Rights Code. We understand that you may require an accommodation at any stage of the recruitment process. When you are contacted, please inform the Talent Acquisition Specialist and we will work with you to meet your accommodation needs. We want to emphasize that all accommodation requests are handled with the utmost confidentiality, respecting your privacy and dignity.