Investigator, Cyber Security Operations Centre
Toronto - Wellington St
BDO Canada
Putting people first, every day
BDO is a firm built on a foundation of positive relationships with our people and our clients. Each day, our professionals provide exceptional service, helping clients with advice and insight they can trust. In turn, we offer an award-winning environment that fosters a people-first culture with a high priority on your personal and professional growth.
Your Opportunity
BDO Digital is seeking an experienced Consultant or Senior Consultant to join our Cyber Security Operations Investigation team. You will contribute your investigative skills and experience within our award winning Microsoft managed detection and response services for our clients on a continuous basis.
As a SOC investigator, you will have the opportunity to work within a culture that is highly collaborative, supportive, and offers an opportunity to help grow your career within the cyber security field. If you are passionate about security operations, threat intelligence, analytics, and incident response, and are looking for a challenging and rewarding career, this is the right opportunity for you.
As an Investigator within our Cyber Security Operations Centre, your responsibilities will include:
Responding to escalated incidents from our Microsoft Sentinel clients
Providing contribution across the entire investigative lifecycle or an incident
Interacting with clients on investigations collaborating with them through to completion
Identifying quality issues across all SOC processes in order to improve our quality to clients
Maintaining awareness of contemporary, prevailing cyber threats and their impacts to security
Being proactive in sustaining SOC activities by supporting and executing security engineering tasks
Maintaining extensive awareness of Microsoft and other related security technologies
Participating in morning or evening shift work.
How do we define success for your role?
You demonstrate BDO's core values through all aspect of your work: Integrity, Respect and Collaboration
You understand your client’s industry, challenges, and opportunities; clients describe you as positive, professional, and delivering high-quality work
You understand and demonstrate proven success participating in the cyber operations team effectively
You are focused on effective service delivery to your clients
You share in an inclusive and engaging work environment that respects everyone
You actively support the adoption of new digital tools and innovation
You grow your expertise through learning and professional development
Your experience and education
Required:
Degree or Diploma in cybersecurity, IT or related area
2 to 6 of years experience investigating incidents within a security operations centre
Knowledge and experience with next generation security operations to include Sentinel, contemporary EDRs
Knowledge of familiarity with SIEM, EDR, IDS/IPS, Active Directory, VM and other related solutions
Strong client communication skills to include verbal and written communication
Proven ability to understand and deliver on agreed upon service levels
Knowledge of security threats and common vulnerabilities for legacy and Cloud environments
Strong knowledge of cyber security frameworks and industry recognized security frameworks
Fostering critical thinking within robust security processes and response deadlines
Understanding the role of intelligence, vulnerabilities and hunting within the overall security process
Experience coding in Python or similar languages
Experience with query language methods (e.g. SQL, KQL)
Constantly asking: “Has the situation changed?”
Preferred:
Related cyber experience in risk, architecture, engineering or other related areas
Certification(s) Preferred:
One or more of the following:
Certified Information Systems Security Professional (CISSP)
Certified Cloud Security Professional (CCSP)
Certified Information Systems Auditor (CISA)
Certified Information Security Manager (CISM)
Cloud certifications such as Azure Fundamentals, Azure Security Engineer, AWS Technical Essentials
Microsoft SC-200
Why BDO?
Our people-first approach to talent has earned us a spot among Canada’s Top 100 Employers for 2024. This recognition is a milestone we’re thrilled to add to our collection of awards for both experienced and student talent experiences.
Our firm is committed to providing an environment where you can be successful in the following ways:
We enable you to engage with how we change and evolve, being a key contributor to the success and growth of BDO in Canada.
We help you become a better professional within our services, industries, and markets with extensive opportunities for learning and development.
We support your achievement of personal goals outside of the office and making an impact on your community.
Giving back adds up: Where company meets community. BDO is actively involved in our communities by supporting local charity initiatives. We support staff with local and national events where you will be given the opportunity to contribute to your community.
Total rewards that matter: We pay for performance with competitive total cash compensation that recognizes and rewards your contribution. We provide flexible benefits from day one, and a market leading personal time off policy. We are committed to supporting your overall wellness beyond working hours and provide reimbursement for wellness initiatives that fit your lifestyle.
Everyone counts: We believe every employee should have the opportunity to participate and succeed. Through leadership by our Diversity, Equity and Inclusion Leader, we are committed to a workplace culture of respect, inclusion, and diversity. We recognize and celebrate the valuable differences among each of us, including race, religious beliefs, physical or mental disabilities, age, place of origin, marital status, family status, gender or gender identity and sexual orientation. If you require accommodation to complete the application process, please contact us.
Flexibility: All BDO personnel are expected to spend some of their time working in the office, at the client site, and virtually unless accommodations or alternative work arrangements are in place.
Our model is a blended approach designed to support the flexible needs of our people, the firm and our clients. It’s about creating work experiences that meet everyone’s needs and providing flexibility to adjust when, where and how we work to meet the expectations of our role.
Code of Conduct: Our Code of Conduct sets clear standards for how we conduct business. It reflects our shared values and commitments and includes guiding principles to help us make ethical decisions and maintain trust with each other, our clients, and the public.
Ready to make your mark at BDO? Click “Apply now” to send your up-to-date resume to one of our Talent Acquisition Specialists.
To explore other opportunities at BDO, check out our careers page.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Active Directory Analytics AWS Azure CCSP CISA CISM CISSP Cloud CSOC EDR IDS Incident response IPS Python Sentinel SIEM SOC SQL Threat intelligence Vulnerabilities
Perks/benefits: Career development Competitive pay Equity / stock options Flex hours Flex vacation Startup environment Team events Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Cybersecurity Engineer jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Information Security Architect jobs
- Open Information System Security Officer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Analytics-related jobs
- Open Network security-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs