Technology Security Analyst

At Halton Region, we treat everyone with respect, honesty, fairness and trust. As an equal opportunity employer, we are committed to establishing a qualified workforce that is reflective of the diverse population we serve. Halton Region is committed to providing accommodation to individuals with disabilities throughout the recruitment process. 

Over the next 4 years, the Region’s goal is to become a Digital First organization that is committed to delivering high-quality services in the digital age. Our Digital Mission is to offer 125 of our most used customer-facing services and the top 50 internal processes and staff experiences as complete digital services by 2025. 

Through collaboration, innovation, digital and information decision-making models, accountability, and partnerships, Halton Region aims to Build a Strong Digital Culture. The Region aims to invest in education, and training, celebrate and showcase successes and build a community of practice that will share knowledge and tap into individual skills. 

There is no better time to join Halton Region as we transform our conventions and practices to better serve our community and employees. 

As an employer of choice, Halton Region recognizes the many benefits of hybrid work arrangements including flexibility and better work-life balance for our employees. This position is eligible for our Hybrid Work Program.

Posting ID: 3148
Department: Digital & Information Services
Division: Digital Workplace & Technology
Pay Range: $77,641 - $103,521 
Job Type: Permanent
Hours of Work: 35 hours per week
Work Location: 1151 Bronte Road, Oakville, Ontario 
Employee Group: OCT
Posting Date: May 10, 2024 
Application Deadline: June 2, 2024 
 

Job Summary

Reporting to the Digital Senior Security Advisor, the Technology Security Analyst is responsible for the implementation and operation of security controls as defined in five of the six pillars the NIST CSF and relevant industry specific security frameworks (PCI-DSS etc.). 

Duties & Responsibilities

• On going review and investigation of escalated security alerts from Halton’s MSSP (managed security service provider)
• Monitors and where required remediates issues or implements controls to mitigate risks due to malware, phishing (and its variants), account hijacking and other attacks. 
• Ensures compliance of the Region’s information systems, internally developed applications (including third party libraries) and operational procedures current security policies, standards, and procedures through regular audit and reviews. 
• Administer (including patching) OR review & assess security infrastructure such as XDR/EDR/NDR solutions, network security solutions (firewalls, IPS, WAF) and GPOs, MDM policies or other configuration policy controls and their on-going activities.  
• Monitors and advises on the required adjustments of security controls for on premise, cloud, messaging (e-mail etc.) and other applications based upon internal and external threat conditions. 
• Conducts regular risk assessment and vulnerability analysis of critical IT systems, network segmentation controls and core business applications (ideally including internally developed applications) and on-premises IT and cloud infrastructure, including IoT (Internet of Things) devices. 
• Performs other operational security duties as assigned. 
• Develop and provide clear and concise documentation for each project assigned. 
• Execute/implement project related deliverables such as those defined in a project manager’s work break down structure. 

Skills & Qualifications

Essential

• Diploma in Computer Science from a recognized Community College and/or University. 
• Two (2) or more years IT security experience  
• Understanding and experience in Zero Trust Security architecture and its practices 
• Strong knowledge of network, operating system, cloud, and directory services and especially IAM (identity access management) and PAM/PIM (privilege access/identity management).  
• Experience and knowledge of common security solutions such as Windows Defender or similar third-party solutions. 
• Experience and knowledge with Microsoft based cloud and on-premises directories, OS (Operating System), Applications and Services. 
• Excellent verbal, listening & writing skills.  
• Strong interpersonal skills and the ability to work in a team environment 
• Security generalist comfortable working in other domains of security 
• Ability to work day-to-day on operational security duties while also contributing to assigned projects  

Preferred 

• Achieved and maintains at least one of the following certifications: security certification (SSCP, CCSP, OSCP etc.) OR audit certification (CISA etc.) OR cloud (CCSK, AZ-900 etc.) OR any certification from a recognized organization or vendor (ISC^2, ISACA, OffSec, CSA, CompTIA, EC-Council, Microsoft, Cisco, etc.)  
• Experience with network-based security solutions (firewalls, WAFs, IPS/IDS etc.), host and network-based diagnostics (Netflow, Sysmon, etc.)  
• Experience and knowledge of application (primarily web) security and projects (OWASP)  
• Familiarity with OT (SCADA/PCS) technology and its security 
• Familiarity with forensics and e-Discovery tools and methodologies 

Working/ Employment Conditions

• Current (obtained within the past six (6) months), original and acceptable Criminal Records Check by the first day of employment. 

Important information about your application:

• In accordance with requirements in Ontario Regulation 191/11 – Integrated Accessibility Standards and the Ontario Human Rights Code, Halton Region will accommodate the needs of individuals with disabilities throughout the recruitment process.  If you require accommodation at any stage of the recruitment process, please inform the Talent Acquisition representative of the nature of the accommodation(s) you require.  
• Please submit your application online. We will accommodate individual needs for applicants with disabilities and others who are not able to apply online. If you experience any issues with submitting your application, please contact HR Access at 905-825-6000 extension 7700.   
• Applications will be accepted until 11:59 p.m. on the deadline date specified on the posting.
• We encourage applications from all qualified individuals; however, only those under consideration will be contacted.
• Personal information collected through the job application process will only be used for the purpose of determining qualifications for employment.
• If selected for an interview, you will be contacted by email and/or phone. Please ensure the contact information provided on your resume is up to date and that you check your email and voicemail regularly.

Halton Region serves more than 624,000 residents throughout Burlington, Halton Hills, Milton and Oakville. We are committed to delivering high-quality programs and services that make Halton a great place to live and work. We engage great people who contribute to meaningful work that makes a positive difference in our community. At Halton, you are encouraged to grow and succeed in your career and are recognized for your accomplishments and contributions. As an employee, you will be part of a progressive, service-focused, and award-winning employer with a diverse and inclusive work environment.