_This opportunity is currently available for internal applicants only as THERE IS A STRONG INTERNAL CANDIDATE FOR THIS POSITION. _

The Information Technologies is currently seeking a Full-time Limited Term Analyst, IT Security Operations for approximately 12 months.

The IT Cybersecurity Operations team is responsible for the planning and implementation of cybersecurity measures designed to protect the staff, capital assets, and proprietary information of the University by providing strategic direction, tactical management, emergency planning, and advisory services. The IT Security team provides leadership and technical guidance to both IT and Client departments on the identification and mitigation of risk. In addition, this team is the primary responder to any issue that may lead to disruptions within the organization; as such they are responsible for creating and implementing processes and solutions for the detecting, investigating and mitigation of incidents that could affect the University.

The position reports to the Lead, IT Cybersecurity Operations. The position works 35 hours per week, with normal business hours being 8:30 - 4:30, Monday to Friday. The position can be subject to high stress and requires balancing multiple priorities with tight deadlines. There may be a requirement for after-hours work, depending on the nature of the projects and initiatives currently underway.

Summary of Key Responsibilities (job functions include but are not limited to):

• Primary person responsible for review and assignment of security incidents and issues reported by automated systems, staff, and routine security scanning
• Coordinates and monitors information security activities throughout the University, including the preparation of periodic status and progress reports
• Analyzes technical and functional information and security application specifications for accuracy and completeness
• Actively participate as part of a team focused on the formal and informal evaluation of technologies for cyber risk
• Monitors and investigates potential information security breaches, and reports to the Lead for IT Cybersecurity Operations
• Assists in the design, implementation, and maintenance of comprehensive security program for all University information systems
• Develops and implements procedures for ensuring network survivability and recovery
• Familiar with and capable of creating and presenting cybersecurity awareness and training materials
• Provides briefings to stakeholders on major new technologies, issues, and changes that impact cyber risks
• Provides technical expertise working independently and with team members to ensure the maximum protection by cybersecurity systems
• Prepare and provide written and verbal recommendations for mitigating cyber risks across a wide array of technologies
• Supports cybersecurity technical capabilities and infrastructure onsite and at remote locations
• Assist in support of existing Security Tools and deployment of new security tools
• Document the standard operating procedures for supporting each capability as well as recovering from any system degradation/incidents
• Provide the requisite training on new capabilities and operational practices to other operations team members
• Ensures assigned deliverables are completed on time and meet all expectations
• Use cybersecurity tools to perform threat hunting and IOC analysis for network and computer systems
• Performs information security problem determination and root cause analysis
• Performs research on new and improved ways to protect the University's information assets

Qualifications / Requirements:

• Has completed a bachelors degree in Computer Science, Computer Engineering, Cybersecurity, or Information Technology or can demonstrate equivalent work experience in an information security environment
• Up to 4 years experience working in an Information Security Environment or recent graduate from a Cybersecurity postsecondary program
• Knowledge of technical infrastructure, networks, databases, and systems in relation to IT Security and IT Risk
• Knowledge of general networking concepts, technology, and tools
• Experience in using tools for network monitoring, scripting, and packet analysis considered an asset
• Experience in working with security technologies such as SIEM, XDR, Antimalware, IDS/IPS, Next Gen Firewalls, Vulnerability Management
• Project management skills and general organizational capabilities
• Familiarity with a variety of Server and Workstation Operating Systems
• Prior experience performing security reviews and risk assessments considered an asset
• Experience in working within a Windows and Linux infrastructure
• Experience in scanning for vulnerabilities and in reconnaissance methods
• Knowledge of incident handling methodologies
• Good verbal and written communication skills
• Experience in working in a customer-service-oriented organization
• Demonstrated experience with development and support of information security programs considered an asset
• Industry certifications are considered an asset e.g. CEH, CFR, CCNA, CCIE, CISSP, GIAC, etc.
• Have strong written, verbal and interpersonal communication skills.