Cyber Risk Analyst
Surrey, British Columbia
Sunrise Farms
Role:
We are seeking a skilled and proactive Cybersecurity Analyst to join our IT security team. The Cybersecurity Analyst will be responsible for monitoring, analyzing, and responding to security events and incidents to protect the organization's information assets. The ideal candidate will have a strong background in cybersecurity practices, a keen eye for detail, and the ability to stay current with evolving threats
Responsibilities:
- Monitor and analyze security alerts generated by various tools and systems, including intrusion detection/prevention systems (IDS/IPS), security information and event management (SIEM) platforms (Sentinel), and endpoint detection and response (EDR) solutions.
- Analyze security alerts and determine the appropriate response.
- Lead the investigation and response to security incidents, coordinating with internal and external teams to mitigate threats.
- Document incidents and responses, conducting post-incident analysis to improve future detection and response efforts.
- Conduct regular threat assessments and vulnerability scans to identify potential security risks.
- Utilize threat intelligence feeds and stay informed about the latest cybersecurity trends and threats.
- Ensure compliance with internal security policies, procedures, and regulatory requirements.
- Assist in the development and implementation of security policies and guidelines.
- Perform risk assessments and recommend appropriate security controls to mitigate identified risks.
- Participate in risk management activities, including business continuity planning and disaster recovery exercises.
- Conduct security awareness training sessions for employees to promote a culture of security within the organization.
- Develop and distribute educational materials on security best practices.
- Maintain detailed and accurate documentation of security incidents, findings, and remediation actions.
- Prepare regular reports on security posture, incident trends, and risk assessments for management review.
- Work closely with IT, development, and operations teams to ensure security is integrated into all processes and systems.
- Liaise with external security vendors and partners as needed.
Requirements:
- Education: Bachelor's degree in computer science, Information Security, or a related field.
- Experience: Minimum of 2-3 years of experience in cybersecurity or related roles.
- Certifications: Relevant certifications such as CompTIA Security+, or equivalent are preferred.
- Knowledge of Azure, including Azure security services and best practices.
- Proven experience in cyber security operations, with a focus on monitoring, detection, and response.
- In-depth knowledge of common cyber threats, attack vectors, and mitigation techniques.
- Expertise in Kusto Query Language (KQL) and Microsoft Sentinel.
- Experience in configuring, administering, and operating Microsoft 365 suite.
- Familiarity with security tools such as SIEM, IDS/IPS, EDR, firewalls, and endpoint protection.
- Strong analytical and problem-solving skills, with the ability to investigate complex security incidents.
- Excellent communication skills, both verbal and written, with the ability to convey technical information to non-technical audiences.
- Ability to work effectively both independently and as part of a team, with a strong sense of accountability and ownership.
- Experience with scripting languages (e.g., Python, PowerShell) and familiarity with automation tools is desirable.
- Knowledge of Cybersecurity Frameworks and controls like NIST CSF 2.0 and CIS Controls.
- Knowledge of regulatory compliance requirements (e.g., HIPAA, PCI DSS, ISO27000) is a plus.
Please note that the expected new hire salary range provided is derived from a group of like roles within Sunrise Farms. The final offer amount for this role will be dependent on geographical region, applicable experience, and skillset of the candidate.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation Azure Compliance CompTIA Computer Science EDR Firewalls HIPAA IDS Industrial Intrusion detection IPS ISO 27000 Monitoring NIST PCI DSS PowerShell Python Risk assessment Risk management Scripting Sentinel SIEM Threat intelligence Vulnerability scans
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cyber Security Architect jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Information System Security Officer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Analytics-related jobs
- Open Network security-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs