Title: Network Security AnalystDuration: Permanent Full time
Location: Kanata, ON ( 2/3 days per week onsite)Do you want to work with an Innovative Global Telecommunications leader right here in Ottawa?WHAT WILL YOU DOProvide technical support to product development teams on security best practices, standards, and guidelines, and act as a security consultant to assist as required
Support the product teams with technical risk assessments and resolution of vulnerabilities and security issues
Work with the product teams to ensure they comply with the company product security posture.Review and approve security plans for each S/W or H/W release
Conduct threat modeling
Conduct security audits and review artifacts (scans, defects, pen test reports) to ensure severity and risks are well managed
Provide support with security testing and act as consultant to the security test teams
Assess the compliancy to the security posture (e.g. security score cards)Support customer facing teams with RFPs, audits, customer requests such as security questionnaires, contract renewals, analysis of customer reported security findings
Provide support for customer security reviews and deep dives
Assess security risks and recommend security solutions for new and existing products and services
Research and stay current on the latest security trends, threats, and technologiesQUALIFICATIONSBachelor's degree in Computer Science, Information Security, or related field
Experience in security-related roles, such as security analyst, security engineer, or security consultant
Strong knowledge of security frameworks, standards, and best practices, such as ISO 27001, NIST, CIS, OWASP.Experience with spearheading security requirements for application security. Solid understanding on IP networking.Strong knowledge of security protocols, PKI/X.509, Identity Management and centralized authentication (e.g. HTTPS, TLS, Radius, LDAP, SAML, OAuth, OpenID), Linux and OS hardening, API security (e.g. REST)Experience or familiarity with virtualized and cloud-based software architectures, including Virtualized Network Functions, Cloud-Native Network Functions, DevOps/DevSecOps methodologies, Public Clouds. Experience with security testing and assessment methods, such as penetration testing, vulnerability scanning, risk analysis.
Experience with threat modeling and methodologies (e.g. STRIDE, OCTAVE, PASTA, VAST, Attack Trees, etc.)Excellent communication and presentation skills, both written and verbal
Ability to work independently and collaboratively with cross-functional teams across the globe.Certifications such as CISSP, CISM, CEH, or OSCP are a plusPERKSStrong team-based culture and fun, positive, work environment
Competitive salary
Excellent health/dental Flex benefits
Bonus structure and company reward programRSP matching program
